Reclaimo

Privacy Policy

Last updated: April 3, 2026

1. Introduction

Reclaimo ("we", "us") is committed to protecting your privacy. This policy explains how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable laws.

2. Data Controller

Reclaimo is the data controller for personal data processed through the Service. Contact: support@reclaimo.eu.

3. Data We Collect

Shop owners (account holders): Name, email address, password (hashed), shop name, shop URL, API credentials (encrypted).

End customers (complaint submitters): Name, email address, phone number (optional), order number, complaint description.

Automatically collected: We do not use cookies for tracking. We do not use analytics tools that track individual users.

4. How We Use Your Data

We process personal data for the following purposes:

  • Providing the complaint management service
  • Sending email notifications about complaint status changes
  • Processing payments through Stripe
  • Communicating service updates

Legal basis: Performance of a contract (Art. 6(1)(b) GDPR) and legitimate interest (Art. 6(1)(f) GDPR).

5. Data Sharing

We share data only with:

  • Stripe — for payment processing
  • Resend — for sending email notifications
  • Vercel — hosting provider (EU/US)
  • Neon — database provider (EU)

We do not sell personal data to third parties.

6. Data Retention

Account data is retained for the duration of your account. Complaint data is retained for 24 months after resolution, unless you request earlier deletion. You may delete your account and all associated data at any time.

7. Your Rights (GDPR)

You have the right to:

  • Access — request a copy of your personal data
  • Rectification — correct inaccurate data
  • Erasure — request deletion of your data
  • Portability — receive your data in a structured format
  • Objection — object to processing based on legitimate interest
  • Restriction — request restriction of processing

To exercise these rights, contact support@reclaimo.eu. We will respond within 30 days.

8. Data Security

We implement appropriate technical and organizational measures to protect your data, including: encrypted connections (HTTPS), hashed passwords, and access controls. API credentials are stored securely and never exposed to end users.

9. International Transfers

Data may be processed in the EU and US. Where data is transferred outside the EU, we ensure appropriate safeguards are in place (Standard Contractual Clauses).

10. Changes to This Policy

We may update this policy from time to time. We will notify registered users of significant changes via email.

11. Contact

For privacy-related inquiries: support@reclaimo.eu.

You have the right to lodge a complaint with a supervisory authority if you believe your data is being processed unlawfully.