Legal

Privacy Policy

Last updated: May 22, 2026

This Privacy Policy explains how Review Services Ltd (“reviewservice.io,” “we,” “us,” or “our”), a Wyoming corporation, collects, uses, discloses, and safeguards your personal information when you visit reviewservice.io or use our services (the “Service”).

1. Information we collect

1.1 Information you provide

We collect information you submit through forms, account creation, checkout, and support requests, including: name, email address, business name, billing details (processed by Stripe), order details, and any messages you send us.

1.2 Information collected automatically

We and our service providers automatically collect certain information when you interact with the Service: IP address, device and browser type, operating system, referring URL, pages viewed, time on page, and approximate location derived from IP. This is collected via server logs and (where you consent) cookies and similar technologies. See our Cookie Policy for details.

1.3 Information from third parties

Payment processors (Stripe), email infrastructure (Resend), and authentication providers (Supabase) may share limited information with us in order to deliver the Service.

2. How we use information

We use personal information to:

Provide, maintain, and improve the Service;
Process orders and payments and deliver receipts;
Communicate with you about your account, orders, and support requests;
Send marketing communications you have opted in to (you may opt out at any time);
Prevent fraud, abuse, and unauthorized access;
Comply with legal obligations and enforce our terms.

3. Legal bases (EU/UK visitors)

If you are in the EU, UK, or EEA, we process your personal information on the following bases under GDPR/UK GDPR: performance of a contract (Art. 6(1)(b)), legitimate interests (Art. 6(1)(f)) such as fraud prevention and product improvement, consent (Art. 6(1)(a)) for cookies and marketing, and legal obligation (Art. 6(1)(c)).

4. How we share information

We share personal information only as needed to operate the Service:

Service providers: Supabase (database + auth), Stripe (payments), Resend (email), Vercel (hosting + analytics), Google (analytics), Meta (advertising). Each is bound by contractual data protection obligations.
Legal: when required by law, subpoena, or to protect our rights, users, or the public.
Corporate transactions: in connection with a merger, acquisition, or sale of assets, with notice to affected users.

We do not sell personal information.

5. International data transfers

We are based in the United States. Personal information may be transferred to and processed in the U.S. and other countries that may have different data protection laws than your jurisdiction. Where required, we rely on Standard Contractual Clauses or other approved mechanisms.

6. Data retention

We retain personal information for as long as your account is active and as needed to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Order records are retained for at least seven (7) years for tax purposes.

7. Your rights

7.1 EU/UK/EEA visitors (GDPR)

You have the right to access, correct, delete, port, restrict, or object to processing of your personal information, and to withdraw consent at any time. To exercise these rights contact us at privacy@reviewservice.io. You may also lodge a complaint with your local data protection authority.

7.2 California residents (CCPA/CPRA)

California residents have the right to know what personal information we collect, request deletion, request correction, and opt out of the sale or sharing of personal information (we do not sell personal information). Submit requests at privacy@reviewservice.io or via the “Do Not Sell or Share My Personal Information” link in the footer.

8. Security

We use industry-standard administrative, technical, and physical safeguards to protect personal information, including TLS encryption in transit, encryption at rest for sensitive fields, role-based access control, and regular security review. No system is perfectly secure; we cannot guarantee absolute security.

9. Children

The Service is not directed to children under 16, and we do not knowingly collect personal information from them. If you believe we have collected information from a child, please contact us.

10. Changes

We may update this Privacy Policy from time to time. We will post the new version and update the “Last updated” date at the top. Material changes will be notified by email or in-product notice.

11. Contact

For privacy questions or to exercise your rights:
Review Services Ltd
{{BUSINESS_ADDRESS}}
Email: privacy@reviewservice.io