replyt.

Privacy Policy

Last updated: April 29, 2026

1. Overview

Replyt ("we", "our", or "us") operates the Replyt platform, a SaaS service that monitors online communities such as Reddit and Hacker News for keyword mentions and generates AI-powered reply suggestions. This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information.

By using Replyt, you agree to the collection and use of information as described in this policy.

2. Information We Collect

Account information: When you sign up, we collect your name, email address, and a hashed password. If you sign in with Google, we receive your name and email from Google.

Project data: Information you provide about your product or service, including project name, description, website URL, and tracking keywords.

AI provider credentials: If you configure an AI provider API key (Gemini, OpenAI, or Claude), it is encrypted at rest using AES-256 before storage. We never store or transmit your API key in plain text.

Mention data: Posts and comments collected from Reddit and Hacker News matching your keywords. This is publicly available content retrieved from third-party APIs.

Reply drafts: AI-generated and manually written reply drafts you create within the platform.

Usage data: Standard server logs including IP addresses, browser type, pages visited, and timestamps, used for security and performance purposes.

3. How We Use Your Information

  • To provide and operate the Replyt service
  • To scan online communities for mentions matching your keywords
  • To generate AI-powered reply suggestions using your configured AI provider
  • To send email notifications about new mentions (daily digest)
  • To authenticate your identity and secure your account
  • To analyze and improve service performance
  • To communicate important service updates

4. Third-Party Services

Replyt integrates with the following third-party services to deliver its functionality:

  • Supabase — database and authentication infrastructure. Data is stored in Supabase-managed PostgreSQL instances.
  • Reddit / Hacker News — public APIs used to search and retrieve publicly available posts and comments.
  • Arctic Shift — a Reddit data archive used as a fallback search source.
  • Serper.dev — Google Search API used to identify high-ranking Reddit threads (Pro and Agency plans).
  • Google Gemini, OpenAI, Anthropic Claude — AI providers used to score mentions and generate reply suggestions. Your encrypted API key is only decrypted at request time and sent directly to the provider.
  • Vercel — hosting and edge infrastructure.

5. Data Retention

We apply automatic data retention policies to keep your feed manageable and our systems clean:

  • New unactioned mentions older than 14 days are automatically deleted
  • Ignored mentions older than 7 days are automatically deleted
  • Draft replies older than 60 days are automatically deleted
  • High-Ranking Google Posts (SEO mentions) are retained for up to 60 days
  • Approved and replied mentions are retained until you delete them or close your account

You may delete your account and all associated data at any time from your account settings.

6. Data Security

We implement industry-standard security measures including encrypted data transmission (HTTPS), encrypted storage of sensitive credentials, and row-level security policies on our database. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and all associated data
  • Portability: Request an export of your data in a machine-readable format
  • Opt-out: Unsubscribe from email notifications at any time

To exercise any of these rights, contact us at info@replyt.co.

8. Chrome Extension

The Replyt Chrome Extension ("the Extension") is an optional companion tool that automatically posts approved Reddit replies from your Replyt queue. The following disclosures apply specifically to the Extension:

  • Authentication token: When you connect the Extension for the first time, you paste a personal bearer token generated in your Replyt account settings. This token is stored locally in chrome.storage.local on your device and is never shared with third parties. It is used solely to authenticate API requests from the Extension to replyt.co.
  • Reddit access: The Extension opens Reddit threads in your browser using your existing Reddit session (your own logged-in cookies). It injects reply text into Reddit's comment editor and submits the form on your behalf. The Extension does not store, transmit, or log your Reddit credentials, session cookies, or any Reddit account data.
  • Permissions used: tabs (to open Reddit threads), storage (to persist your connection token and session state locally), scripting (to inject the reply text into Reddit's editor). Host permissions are limited to replyt.co and reddit.com only.
  • No remote code: The Extension does not load or execute any remote code. All JavaScript runs locally from the installed extension package.
  • Data transmitted: The Extension sends only the reply result (sent or failed) and your bearer token to replyt.co. No other browsing data is collected or transmitted.

You can revoke the Extension's access at any time by clicking "Revoke" in Replyt → Settings → Chrome Extension, or by uninstalling the Extension from Chrome.

9. Cookies

Replyt uses essential cookies required for authentication and session management. We do not use tracking cookies, advertising cookies, or third-party analytics cookies.

10. Children's Privacy

Replyt is not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by displaying a notice in the application. Continued use of Replyt after changes constitutes acceptance of the updated policy.

12. Contact

For privacy-related questions or requests, contact us at:
info@replyt.co

© 2026 Replyt. All rights reserved.Terms of Service