Privacy Policy
Last updated: March 22, 2026
1. Information We Collect
We collect information you provide directly: name, email address, organization name, and billing details. We also collect usage data such as pages visited, features used, and log data (IP address, browser type, device identifiers).
2. How We Use Your Information
We use your information to provide, maintain, and improve Reqlume; process transactions and send transactional emails; respond to support requests; and comply with legal obligations. We do not sell your personal data to third parties.
3. Data Storage & Security
Your data is stored on Neon PostgreSQL (encrypted at rest) and Cloudflare R2 (private bucket, no public access). All connections use TLS 1.2+. We follow industry-standard practices including password hashing (PBKDF2/bcrypt), JWT token rotation, and brute-force login protection.
4. Data Retention
Account data is retained while your account is active. When you delete your account, we remove personal data within 30 days. Anonymized audit logs may be retained for compliance purposes.
5. Your Rights (GDPR)
If you are in the EEA, you have the right to access, rectify, erase, restrict processing, port your data, and object to processing. Contact us at privacy@reqlume.com to exercise your rights.
6. Cookies
Reqlume uses essential cookies for authentication (JWT stored in localStorage) and session management. We do not use third-party tracking cookies or analytics scripts.
7. Third-Party Services
We use Stripe for payment processing, Resend for transactional email, Sentry for error monitoring, and Cloudflare for file storage. Each processes data under their own privacy policies.
8. Changes to This Policy
We may update this policy from time to time. We will notify you of material changes via email or an in-app notification.
9. Contact
Questions about this policy? Email privacy@reqlume.com.