Start Your Free Trial

Privacy Policy

Effective Date: March 1, 2025
Last Updated: May 9, 2025

Introduction

ReplixAI (“we,” “us,” or “our”) is committed to protecting your personal data and respecting your privacy. This Privacy Policy explains what data we collect, how we use it, with whom we share it, how we protect it, and what rights you have over it, when you use our website at replixai.com or our customer support automation platform at app.replixai.com.

Please read this policy carefully. By using our Services, you agree to the collection and use of information as described here.

1. Data We Collect

a) Account & Registration Data When you create a ReplixAI account, we collect your full name, email address, and password (stored in hashed form). You may also sign in using Facebook/Meta OAuth, in which case we receive your name, email address, and a unique identifier from Meta.

b) Social Media Integration Data When you connect your Instagram Business account or Facebook Page to ReplixAI, we receive OAuth access tokens, page identifiers, and the message data necessary to operate automated responses on your behalf. We request only the minimum permissions required to provide the Services.

c) Training Content Documents, text, FAQs, product information, and policies you upload to train your AI support agent. This content is private to your account and is not shared with other users or used to train shared AI models.

d) Customer Conversation Data The text content of inbound messages from your customers and the AI-generated responses sent on your behalf. This data is used to power the AI, populate your analytics dashboard, and allow human handoff features. We do not read or use this data beyond operating your account.

e) Payment and Billing Data Subscription payments are processed by Lemon Squeezy, our payment processor. ReplixAI does not store your full card details or financial account numbers. Lemon Squeezy may share transaction references, subscription status, and billing history with us for account management purposes. Please review Lemon Squeezy’s Privacy Policy for details on how they handle payment data.

f) Usage and Analytics Data Information about how you interact with our platform — pages visited, features used, chatbot configuration activity, session duration, and click paths. This is used to improve our product.

g) Technical Data IP address, browser type and version, device type, operating system, referring URLs, and timestamps. Collected automatically when you access our website or platform.

h) Communications Data Messages, support requests, feedback, and other correspondence you send to us directly.

i) Cookie Data Cookies and similar tracking technologies. See Section 6 for full details.

2. How We Use Your Data

We use the data we collect for the following purposes:

  • To create, authenticate, and manage your ReplixAI account

  • To operate the AI support automation service on your linked social media accounts

  • To process subscription payments and manage billing through Lemon Squeezy

  • To power your analytics dashboard and support reporting features

  • To provide customer support and respond to your inquiries

  • To detect, prevent, and investigate fraud, abuse, or security incidents

  • To analyze usage patterns and improve the performance and features of our platform

  • To send transactional communications (account alerts, billing notifications, service updates)

  • To send marketing communications, where you have given consent or where permitted by law, with an easy opt-out in every message

  • To comply with applicable legal obligations

We do not sell your personal data. We do not use your data for purposes unrelated to providing our Services.

3. Legal Basis for Processing (GDPR)

For users in the European Economic Area (EEA) or United Kingdom, we process your personal data on the following legal bases:

  • Contract performance — processing necessary to deliver the Services you subscribed to

  • Legitimate interests — fraud prevention, security monitoring, and service improvement, where these do not override your rights

  • Legal obligation — where required to comply with applicable law

  • Consent — for marketing communications and non-essential cookies, where required

4. Sharing and Disclosure

We do not sell, rent, or trade your personal data. We may share data with:

  • Lemon Squeezy — for payment processing and subscription management

  • Meta (Facebook/Instagram) — to operate the integrations you authorize. Data shared is limited to what the Meta API requires

  • Cloud Infrastructure Providers — hosting, database, and caching providers that support platform operations. These providers are bound by data processing agreements

  • AI Model Provider (OpenAI) — message data is processed by GPT-4o mini to generate responses. OpenAI does not use API data to train their models. See OpenAI’s API Data Usage Policy

  • Analytics Providers — for aggregate, anonymized or pseudonymized usage insights

  • Legal Authorities — if required by law, court order, or to protect the safety, rights, or property of ReplixAI or others

  • Business Transfers — in the event of a merger, acquisition, or asset sale, your data may be transferred as part of that transaction with appropriate protections

5. Data Retention

We retain your account and training data for as long as your account is active. Customer conversation data is retained for 90 days by default to power analytics features, after which it is deleted. You may request earlier deletion at any time.

After account closure or termination, we retain data for up to 30 days to allow for dispute resolution or reactivation, then delete it unless we are required by law to retain it longer.

6. Cookies and Tracking

We use the following types of cookies:

Cookie Type

Purpose

Essential

Required for login sessions, security, and core platform function

Functional

Remember your preferences and account settings

Analytics

Aggregate traffic and usage analysis (e.g., Google Analytics)

Marketing

Track conversions from ads (only where you have consented)

You can manage or disable non-essential cookies through your browser settings or our cookie consent banner. Disabling essential cookies will affect platform functionality. See our full Cookies Policy for details.

7. Data Security

We implement the following security measures to protect your data:

  • Encrypted connections (HTTPS/TLS) for all data in transit

  • Hashed credential storage using industry-standard algorithms

  • Role-based access controls on our infrastructure

  • Regular security reviews and vulnerability monitoring

No system can guarantee absolute security. We encourage you to use a strong, unique password and enable two-factor authentication when available.

8. International Data Transfers

ReplixAI operates infrastructure that may be located outside your country. If you are in the EEA or UK, data transferred outside those regions is subject to appropriate safeguards, such as Standard Contractual Clauses, to ensure your data receives equivalent protection.

9. Your Rights

Depending on your location, you may have the following rights:

  • Access — request a copy of the personal data we hold about you

  • Correction — request correction of inaccurate or incomplete data

  • Deletion — request deletion of your personal data (subject to legal retention requirements). See our Data Deletion page

  • Portability — request a machine-readable export of your data

  • Objection — object to processing based on legitimate interests

  • Restriction — request restriction of certain processing

  • Withdraw Consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing

  • Marketing Opt-Out — unsubscribe from marketing communications at any time via the unsubscribe link in any email

To exercise any right, email us at support@replixai.com with the subject “Data Rights Request.” We will respond within 30 days.

10. Third-Party Links

Our website may contain links to third-party services. We are not responsible for the privacy practices of those services. We recommend reviewing their privacy policies before sharing any information.

11. Children’s Privacy

ReplixAI is a B2B platform not directed at individuals under the age of 16. We do not knowingly collect personal data from minors. If you believe a minor has provided data to us, contact us at support@replixai.com and we will delete it promptly.

12. Changes to This Policy

We will notify you of material changes to this Privacy Policy via email and a notice on our website at least 14 days before changes take effect. Your continued use of the Services after the effective date constitutes acceptance of the revised policy.

13. Contact and Data Controller

REmail: support@replixai.com
Phone: +92 346 3557128
Website: replixai.com

If you have a concern about how we handle your data and are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.