Pricing

Login

Get 14-Days Free

Some sections of the site are currently being updated as we roll out improvements.

Some sections of the site are currently being updated as we roll out improvements.

Privacy Policy

How Reepl collects, uses, and protects your personal data, and your rights under GDPR and applicable data protection law.

Last updated: March 31, 2026

1. Introduction


This Privacy Policy explains how Autodeus Technologies Private Limited ("Reepl", "we", "us", or "our"), the operator of reepl.io and app.reepl.io, collects, uses, discloses, and protects personal data when you use our services.

We are committed to protecting your privacy in accordance with the EU General Data Protection Regulation (Regulation (EU) 2016/679) ("GDPR"), the UK General Data Protection Regulation ("UK GDPR"), and all other applicable data protection legislation.

If you have any questions about this policy or our privacy practices, please contact us at the details in Section 14.

2. Who We Are

For the purposes of applicable data protection law, the data controller is:

Autodeus Technologies Private Limited
9th Floor, GIFT Tower One
GIFT City, Gandhinagar, Gujarat 382355
India

Corporate Identity Number (CIN): U72900GJ2017PTC098295
Email: privacy@reepl.io

3. Data We Collect

We collect and process the following categories of personal data:

3.1 Who We Are

When you create an account or sign in, we collect:

  • Full name and email address

  • Profile photograph (where provided)

  • Password credentials (stored in encrypted form; we never have access to your plaintext password)

  • Account preferences and language settings

  • Date of account creation and last login timestamp

3.2 LinkedIn and Social Media Data

When you connect a LinkedIn account or other social media platform to Reepl, we collect and process the data you expressly authorise us to access via those platforms' official APIs, which may include:

  • Your public profile information (name, headline, profile image, job title)

  • Content you have published, such as posts and articles

  • Engagement activity you choose to import (such as comments or reactions), where enabled by you in your privacy settings

  • Account identifiers required to authenticate your connection

We only access the specific permissions you grant. You can revoke this access at any time by disconnecting the integration from within Reepl or directly through the respective platform.

3.3 Content Data

Data you create or upload while using Reepl, including:

  • Post drafts, templates, and scheduled content

  • Carousel designs and media assets

  • Comments, notes, and content ideas

  • Brand kit settings and voice profile configurations

3.4 Contact and CRM Data

When you use Reepl's contact management features, we store information about the professional contacts you choose to add, which may include:

  • Names, job titles, and employer information

  • Notes and tags you apply to contacts

  • Interaction history you record within the platform

    This data is provided entirely by you. Reepl does not independently source or enrich contact records.

3.5 Subscription and Billing Data

When you purchase a subscription, we collect:

  • Subscription plan and billing cycle

  • Payment status and transaction identifiers

We do not store full payment card details. Card processing is handled by our third-party payment processor, which is responsible for the security of your payment information under its own privacy policy and applicable PCI DSS obligations.

3.6 Usage and Technical Data

We collect technical data about how you interact with our services, including:

  • IP address and approximate geographic location (country/region level)

  • Browser type, version, and operating system

  • Pages visited, features used, and actions taken within the application

  • Session duration and usage frequency

  • Error logs and performance data

3.7 Cookie and Tracking Data

We use cookies and similar technologies as described in Section 10 below.

3.8 Support and Communications Data

When you contact us for support or otherwise communicate with us, we retain records of that correspondence, including your contact details and the content of your messages.

4. How We Use Your Data

We use personal data for the following purposes, each grounded in a lawful basis under Article 6 GDPR:

Purpose

Creating and managing your account

Providing core product features (scheduling, AI writing assistance, analytics)

Processing subscription payments and preventing fraud

Sending transactional emails (receipts, account alerts, security notices)

Sending product update and marketing emails

Improving and developing our services through usage analytics

Session recording and user experience research

Detecting, investigating, and preventing abuse, fraud, and security incidents

Complying with legal obligations (including data retention requirements)

Enforcing our Terms of Service and defending legal claims

Lawful Basis

Performance of a contract (Art. 6(1)(b))

Performance of a contract (Art. 6(1)(b))

Performance of a contract; Legitimate interests (Art. 6(1)(b), (f))

Performance of a contract (Art. 6(1)(b))

Legitimate interests with opt-out, or consent where required (Art. 6(1)(f) or (a))

Legitimate interests (Art. 6(1)(f))

Consent (Art. 6(1)(a))

Legitimate interests; Legal obligation (Art. 6(1)(f), (c))

Legal obligation (Art. 6(1)(c))

Legitimate interests (Art. 6(1)(f))

Where we rely on legitimate interests, we have assessed that our interests are not overridden by your rights and interests. You may object to processing based on legitimate interests at any time (see Section 9).

Where we rely on consent (for example, for analytics cookies and session recording), you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal. You can manage your consent preferences in Settings > Data and Privacy within the app, or via our cookie consent banner.6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  1. Sharing Your Data

We do not sell, rent, or trade your personal data. We share data only in the following circumstances:

5.1 Service Providers (Data Processors)

We engage trusted third-party service providers who process data strictly on our behalf and under our instructions, under written data processing agreements. These include providers of:

  • Cloud infrastructure and hosting services

  • Authentication and identity management

  • Payment processing

  • Transactional and marketing email delivery

  • Analytics and session recording (subject to your consent)

  • Artificial intelligence and language model services (for AI-assisted features)

  • Customer support tooling

We maintain an up-to-date list of our sub-processors. If you would like to request this list, please contact us at the address in Section 14.

5.2 Social Media Platforms

Where you connect a third-party platform (such as LinkedIn or X/Twitter), data is transmitted to and from that platform in accordance with the permissions you have granted and the platform's own terms and privacy policy.

5.3 Legal and Regulatory Disclosure

We may disclose personal data if required to do so by law, court order, or at the request of a competent regulatory authority, or where we reasonably believe such disclosure is necessary to protect our rights, your safety, or the safety of others.

5.4 Business Transfers

In the event of a merger, acquisition, or sale of all or a material portion of our assets, personal data may be transferred to the acquirer, subject to the same protections described in this policy.

  1. International Data Transfers

Our primary infrastructure is located within the European Economic Area (EEA). Where we engage service providers established outside the EEA — including in the United States — we rely on one or more of the following transfer mechanisms to ensure an adequate level of protection:

  • European Commission adequacy decisions

  • Standard Contractual Clauses (SCCs) approved by the European Commission

  • Binding Corporate Rules where applicable

If you would like further information about the specific safeguards in place for any particular transfer, please contact us.

  1. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law.

Data Category

Account and profile data

Content data (drafts, posts, templates)

Billing records and transaction history

Support correspondence

Analytics and usage data

Security and access logs

Data backups following account deletion

Retention Period

Duration of your account, plus 30 days following closure

Duration of your account, plus 30 days following closure

7 years (statutory accounting requirement)

3 years from the date of last correspondence

24 months on a rolling basis

12 months

90 days, after which backups are permanently destroyed

When you request deletion of your account, we initiate a soft deletion immediately and complete permanent deletion of your personal data within 30 days of the request, subject to any legal hold obligations. Once permanently deleted, your data cannot be recovered.

8. Account Deletion and the Right to Erasure

You may delete your account at any time from Settings > Account > Delete Account.

Please be aware that upon submitting a deletion request:

  • Your account will be immediately deactivated. You will not be able to log back in once the request is submitted.

  • You will not be able to create a new account using the same email address. This restriction exists to protect the integrity of our free trial programme.

  • All personal data will be permanently deleted within 30 days of your request.

  • If you have an active paid subscription, it will be cancelled at the end of the current billing period. You will retain access to paid features until the period ends.

If you believe your deletion request was submitted in error, please contact our support team as soon as possible. Recovery may be possible during the initial period before permanent deletion is executed.

9. Your Rights Under GDPR

Subject to applicable law and certain exceptions, you have the following rights in respect of your personal data:

Right of access (Article 15) -- You may request a copy of the personal data we hold about you and information about how we use it.

Right to rectification (Article 16) -- You may request that we correct any inaccurate or incomplete personal data we hold about you. Most account data can be updated directly within the app.

Right to erasure (Article 17) -- You may request the deletion of your personal data where there is no compelling reason for us to continue processing it. You can exercise this right directly through the account deletion feature described in Section 8, or by contacting us.

Right to restriction of processing (Article 18) -- You may request that we restrict processing of your personal data in certain circumstances, for example while you contest its accuracy.

Right to data portability (Article 20) -- You may request that we provide your personal data in a structured, commonly used, machine-readable format, or transmit it to another controller where technically feasible.

Right to object (Article 21) -- You may object at any time to processing of your personal data based on legitimate interests, including profiling. You may also object to processing for direct marketing purposes at any time.

Right to withdraw consent (Article 7(3)) -- Where processing is based on your consent, you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

Rights related to automated decision-making (Article 22) -- We do not make solely automated decisions that produce legal or similarly significant effects on you. AI-assisted features generate suggestions only; all publishing and content decisions remain with you.

To exercise any of these rights, please contact us at the address in Section 14. We will respond within one calendar month of receiving a verifiable request. In complex cases, we may extend this period by a further two months and will inform you accordingly.

We may need to verify your identity before processing a request. We will not charge a fee for reasonable requests.

10. Cookies and Tracking Technologies

We use cookies and similar technologies for the following purposes:

Strictly necessary cookies -- Required for the platform to function. These include session authentication tokens and security cookies. These cannot be declined.

Analytics and performance cookies -- Help us understand how users interact with the service, which features are most used, and where improvements are needed. These include session recording tools. These are only activated with your consent.

You can manage your cookie preferences through the cookie consent banner displayed on your first visit to the platform, or at any time via Settings > Data and Privacy in the app.

For information on how to control cookies at the browser level, please refer to your browser's help documentation.11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this page.

  • Notify you via email or an in-app notification for significant changes.

Your continued use of the Services after any changes constitutes acceptance of the updated policy.

11. Children's Privacy

Our services are not directed at individuals under the age of 16. We do not knowingly collect personal data from children. If you believe we have inadvertently collected data from a child, please contact us and we will delete it promptly.

12. Security

We implement technical and organisational measures designed to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, or access. These measures include encryption of data in transit and at rest, access controls, and regular security reviews.

No method of transmission over the internet is completely secure. While we take reasonable precautions, we cannot guarantee absolute security.

If we become aware of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and, where required, affected individuals without undue delay.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will notify you by email or through a prominent notice within the application, and update the "Last updated" date at the top of this page.

Your continued use of Reepl after the effective date of an updated policy constitutes acceptance of the revised terms.

  1. Contact Us and Complaints

Data protection enquiries and rights requests:
Email: privacy@reepl.io

Postal address:
Autodeus Technologies Private Limited
9th Floor, GIFT Tower One
GIFT City, Gandhinagar, Gujarat 382355
India

We aim to respond to all requests within 30 days.

Complaints:
If you are not satisfied with how we handle your personal data or respond to your request, you have the right to lodge a complaint with your local data protection supervisory authority. In the European Union, you may find your national authority at edpb.europa.eu. In the United Kingdom, the relevant authority is the Information Commissioner's Office (ICO) at ico.org.uk.

This policy was prepared in accordance with the requirements of Regulation (EU) 2016/679 (GDPR) and the UK GDPR.