Privacy Policy

We use the information we collect to:

• Provide the service — display your reviews, generate AI response suggestions, and send review request messages on your behalf
• Process payments — manage your subscription and billing through Stripe
• Communicate with you — send account notifications, service updates, and support responses
• Improve the product — analyze usage patterns to fix bugs and build better features (aggregate, de-identified data only)
• Security — detect and prevent fraud, abuse, and unauthorized access
• Legal compliance — meet our obligations under applicable laws

We do not sell your data or your customers' data to any third party. We do not use your data for advertising targeting on other platforms.

To deliver VerifyLocal, we rely on trusted third-party services. Each has its own privacy policy governing their handling of data:

When you use VerifyLocal to send review requests, your customers' contact information is transmitted to Twilio and/or SendGrid solely for message delivery. These providers act as data processors under our instruction.

We retain your data for as long as your account is active. Specifically:

• Active accounts: All data is retained and accessible while your subscription is active
• After cancellation: Your data is retained for up to 90 days so you can reactivate your account if you change your mind. After 90 days, your data is permanently deleted.
• Earlier deletion: You may request immediate deletion of your data at any time by contacting us
• Billing records: We retain minimal billing history (invoices, subscription dates) for up to 7 years as required by tax and accounting laws
• Backups: Deleted data may persist in encrypted backups for up to 30 days before being purged

We take reasonable technical and organizational measures to protect your data, including:

• Encryption in transit (HTTPS/TLS) for all data moving between your browser and our servers
• Encryption at rest for your data stored in Supabase
• Row-level security policies in our database to prevent cross-account data access
• Secure authentication with hashed passwords (no plaintext storage)
• Payment data handled entirely by Stripe's PCI-compliant infrastructure

No system is 100% secure. If you discover a security vulnerability, please report it responsibly to youngvisionariesai@gmail.com.

Depending on where you live, you may have certain rights over your personal data. We honor these rights for all users, regardless of location:

• Access: Request a copy of the personal data we hold about you
• Correction: Ask us to fix inaccurate or incomplete data
• Deletion: Request deletion of your personal data (subject to legal retention requirements)
• Data portability: Request your data in a machine-readable format (JSON or CSV)
• Opt-out of communications: Unsubscribe from marketing emails at any time using the unsubscribe link in those emails. Note: transactional messages (receipts, security alerts) cannot be opted out while your account is active.

To exercise any of these rights, email us at youngvisionariesai@gmail.com with the subject line "Privacy Request." We will respond within 30 days.

If you are a California resident, the California Consumer Privacy Act (CCPA) gives you additional rights, including the right to know what personal information we collect and share, the right to delete your personal information, and the right to opt out of the sale of your personal information.

We do not sell personal information. To exercise your rights, contact us at youngvisionariesai@gmail.com. We will not discriminate against you for exercising your privacy rights.

If you are located in the European Economic Area (EEA) or United Kingdom, the General Data Protection Regulation (GDPR) or UK GDPR may apply to your data.

Our legal bases for processing your data include:

• Contract performance: Processing necessary to provide the service you subscribed to
• Legitimate interests: Security monitoring, fraud prevention, and product improvement
• Legal obligation: Compliance with applicable laws (e.g., financial record-keeping)
• Consent: For marketing communications (you can withdraw consent at any time)

You have the right to lodge a complaint with your local data protection authority. To exercise any GDPR rights, contact us at youngvisionariesai@gmail.com.

VerifyLocal uses cookies and similar technologies to keep you logged in, remember your preferences, and understand how the app is used.

• Authentication cookies: Required for you to stay logged in. These are session-based and deleted when you log out.
• Preference cookies: Remember settings like sidebar state or display preferences.
• Analytics: We may use lightweight analytics to understand aggregate usage patterns (page views, feature adoption). This data is aggregated and not tied to individual identities.

We do not use third-party advertising cookies or tracking pixels. You can clear cookies through your browser settings, though this will log you out of the app.

VerifyLocal is a business software product intended for adults. We do not knowingly collect personal information from anyone under the age of 13.

If you believe a child has provided us with personal information, contact us at youngvisionariesai@gmail.com and we will promptly delete it.

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. When we make material changes, we will notify you by email and/or by posting a notice in the app before the changes take effect.

The "Last updated" date at the top of this page reflects when the policy was last revised. We encourage you to review it periodically.

Questions, requests, or concerns about this Privacy Policy? We're happy to help: