Privacy Policy

1. Overview

RepliIQ ("we", "us", "our") is committed to protecting your privacy. This policy explains what information we collect, how we use it, and your rights regarding that information. We comply with the Australian Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

2. Information We Collect

Account information (from you)

• Name, email address, and business details when you create an account
• Billing information processed by Stripe (we do not store card numbers)
• Business content you upload: FAQs, services, pricing, PDFs

Chat widget data (from your end-customers)

• Conversation messages between your customers and your AI agent
• Contact details customers voluntarily provide (name, phone, suburb) when requesting a callback
• A random visitor ID stored in the customer's browser (not personally identifiable)
• Page URL where the widget was embedded

Usage data (automatic)

• Conversation counts, API usage metrics (for plan limit enforcement)
• Standard web logs (IP address, browser type) retained for 30 days

3. How We Use Your Information

• To provide, operate, and improve the Service
• To process payments and manage subscriptions
• To send transactional emails (lead notifications, billing receipts, account alerts)
• To enforce usage limits and detect abuse
• To respond to support requests

We do not:

• Sell your data or your customers' data to third parties
• Use your business content to train AI models
• Use conversation data for advertising purposes
• Share your customers' contact details with any third party except as required by law

4. Third-Party Services

We use the following third-party services to operate the platform:

5. Data Retention

• Account data: retained while your account is active, deleted 30 days after account closure
• Conversation data: retained based on your plan — 90 days (Starter), 12 months (Growth), or indefinitely (Pro) — then automatically deleted
• Lead contact details: retained until you delete them from your dashboard
• Payment records: retained for 7 years as required by Australian tax law

6. Data Security

We implement industry-standard security measures including: TLS encryption in transit, encryption at rest for sensitive fields (API keys, tokens), access controls, and regular security reviews. Our database is hosted in the AWS Sydney region. No security system is impenetrable; we encourage you to use a strong password and keep your account credentials confidential.

7. Your Rights

Under the Australian Privacy Act, you have the right to:

• Access the personal information we hold about you
• Request correction of inaccurate information
• Request deletion of your account and associated data
• Lodge a complaint with the Office of the Australian Information Commissioner (OAIC)

To exercise these rights, contact us at hello@repliiq.ai. We will respond within 30 days.

8. Cookies

We use minimal cookies: a session cookie for authentication (Clerk), and a localStorage key in the chat widget to assign anonymous visitor IDs (not personally identifiable). We do not use advertising or tracking cookies.

9. Children's Privacy

The Service is not directed at children under 18. We do not knowingly collect personal information from minors. If you believe a minor has provided us with personal information, contact us and we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email and update the "Last updated" date above. Continued use of the Service after notice constitutes acceptance of the updated policy.

11. Contact Us

Privacy enquiries: hello@repliiq.ai

Postal address: Melbourne, Victoria, Australia

OAIC complaints: oaic.gov.au