Privacy Policy

What we collect

When you create a Recouply account, we collect your email address and any profile information you provide. When you connect your Stripe account, we store your Stripe API key (encrypted at rest) and the webhook token used to receive payment events.

We also store data about your customers' failed payments — including email addresses, payment amounts, and retry history — so we can run recovery sequences on your behalf. This data comes from Stripe and is processed solely to provide the service.

How we use your data

• To operate the dunning and payment recovery service
• To send recovery emails to your customers on your behalf
• To send you alerts about payment failures and recoveries (if enabled)
• To manage your billing and subscription with Recouply
• To improve the product and fix issues

We do not sell your data or your customers' data to third parties.

Third-party services

Recouply uses the following third-party services to operate:

• Supabase — database and authentication
• Stripe — payment processing and billing
• Resend — transactional email delivery
• Vercel — application hosting

Each of these services has its own privacy policy and handles data in accordance with applicable laws.

Data retention

We retain your account data for as long as your account is active. If you cancel your subscription and close your account, we will delete your data within 30 days upon request. Payment event history may be retained for up to 90 days after cancellation for audit purposes.

Security

Your Stripe API key is encrypted at rest. All data is transmitted over HTTPS. We use row-level security on our database so that your data is never accessible to other users.

Your rights

You can request a copy of your data, correction of inaccurate data, or deletion of your account at any time by emailing hello@recouply.co.

Contact

Questions about this policy? Email hello@recouply.co.