Section 01
Information We Collect
We collect information you provide directly to us, as well as information generated through your use of the OptiReply platform.
- Account information: Name, email address, business name, and password when you register
- Business profile data: Google Business Profile information you connect to OptiReply
- Review data: Customer reviews retrieved from your connected Google Business Profile
- Usage data: How you interact with the platform, features used, and response history
- Billing information: Payment details processed securely through Stripe (we never store card numbers)
- Device & log data: IP address, browser type, and access timestamps
Section 02
How We Use Your Information
We use collected information solely to operate, improve, and support the OptiReply platform.
- Provide and deliver core platform features including AI response generation
- Process payments and manage your subscription
- Send transactional emails (account alerts, billing receipts)
- Analyze aggregated usage patterns to improve platform performance
- Respond to support requests and inquiries
- Comply with legal obligations
We do not sell your personal data. We do not use your data to train public AI models. We do not use your customer review data for any purpose beyond delivering OptiReply's core functionality.
Section 03
Data Storage & Security
OptiReply is built on Supabase infrastructure with industry-standard security practices in place.
- All data is encrypted in transit using HTTPS/TLS
- Database access is restricted to authorized systems only
- Passwords are hashed and never stored in plaintext
- Role-based access controls limit internal data exposure
- Payment processing is handled entirely by Stripe — we never store card data
Section 04
Third-Party Services
We work with trusted third-party providers to deliver OptiReply's features. Each is contractually bound to protect your data.
- Supabase — Database, authentication, and backend infrastructure
- Stripe — Payment processing and subscription management
- Google APIs (upon approval) — Google Business Profile integration
- AI providers — Response generation (data used only for generating your requested output)
- Vercel — Frontend hosting and delivery
- Google Analytics — Anonymized usage analytics
Section 05
Google API Data (upon approval)
OptiReply integrates with Google Business Profile APIs (upon approval) to retrieve and display your business reviews.
OptiReply's use and transfer of information received from Google APIs (upon approval) adheres to the Google API Services User Data Policy, including the Limited Use requirements.
- Google data is accessed only with your explicit authorization
- We access only the minimum scopes required to deliver the service
- Google review data is never shared with third parties for advertising or profiling
- You can revoke Google API (upon approval) access at any time through your Google Account settings
- We do not use Google data to train AI models
Section 05B
Google API Limited Use Disclosure (upon approval)
OptiReply's use and transfer of information received from Google APIs (upon approval) to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
We strictly adhere to the following:
- No Data Training: We do not use data obtained through Google Business Profile APIs (upon approval) to train, retune, or improve our AI models or any machine learning models.
- Internal Use Only: We only use the data to provide the services visible in our dashboard — responding to reviews and providing business insights.
- Human Oversight: All AI-generated responses are intended for human review and approval before being published to Google.
- No Unauthorized Transfer: We do not transfer Google API (upon approval) data to any third party except as necessary to provide our service.
- Minimal Scope: We request only the minimum permissions necessary to deliver OptiReply's core features.
For more information, see Google API Services User Data Policy (upon approval).
Section 06
Your Rights
As a user of OptiReply, you have the following rights over your data under applicable Canadian privacy law (PIPEDA) and international standards.
- Access: Request a copy of the personal data we hold about you
- Correction: Request correction of inaccurate personal data
- Deletion: Request deletion of your account and associated data
- Portability: Request an export of your data in a portable format
- Withdrawal: Withdraw consent for data processing at any time
To exercise any of these rights, contact us at privacy@seven9it.com or visit our Data Deletion page.
Section 07
Data Retention
We retain your data for as long as your account is active or as needed to provide services.
- Account data is retained for the duration of your subscription
- Upon account deletion, personal data is removed from active systems within 30 days
- Anonymized, aggregated analytics data may be retained indefinitely
- Billing records are retained as required by applicable financial regulations
Section 08
Cookies
OptiReply uses minimal cookies necessary for platform operation and analytics.
- Session cookies: Required for authentication and maintaining your logged-in state
- Analytics cookies: Google Analytics (anonymized) to understand usage patterns
You can disable cookies through your browser settings, though this may affect platform functionality.
Section 09
Children's Privacy
OptiReply is a business tool intended for use by adults and businesses. We do not knowingly collect personal information from anyone under the age of 18. If you believe a minor has provided us with personal information, please contact us immediately.
Section 10
Contact Us
For privacy-related questions, requests, or concerns, please contact us: