Respony

Privacy Policy

Last Updated: December 9, 2025

1. Introduction

Respony ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered customer research platform (the "Service").

By using our Service, you consent to the data practices described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide, including:

  • Account Information: Name, email address, profile picture (via Google OAuth)
  • Profile Information: Role, company/organization, industry, website URL
  • Research Content: Survey questions, research briefs, and related content you create
  • Survey Responses: Responses provided by participants in your research

2.2 Information Collected Automatically

We use cookieless analytics (PostHog) to collect:

  • Usage Data: Pages visited, features used, time spent on Service
  • Device Information: Browser type, operating system, device type
  • Anonymized IP: We anonymize IP addresses for privacy

2.3 Cookies

Our Service operates in cookieless mode for analytics. We do not use tracking cookies. Essential cookies may be used for authentication purposes only.

3. How We Use Your Information

We use collected information to:

  • Provide, maintain, and improve the Service
  • Process your transactions and subscriptions
  • Generate AI-powered survey questions and insights
  • Send service-related communications
  • Respond to your inquiries and support requests
  • Analyze usage patterns to enhance user experience
  • Detect, prevent, and address technical issues
  • Comply with legal obligations

4. AI Processing

Our Service uses artificial intelligence to generate survey questions and analyze responses. Your research content and survey responses may be processed by AI models to provide these features. We do not use your data to train our AI models without explicit consent.

AI processing is performed through third-party providers (OpenRouter) who are bound by confidentiality agreements and are prohibited from using your data for their own purposes.

5. Data Sharing and Disclosure

We may share your information with:

  • Service Providers: Third-party vendors who assist in operating our Service (hosting, payment processing, analytics)
  • AI Providers: To process AI features (OpenRouter)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

6. Data Security

We implement appropriate technical and organizational measures to protect your information, including encryption in transit (HTTPS), secure database storage, and access controls. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

7. Data Retention

We retain your information for as long as your account is active or as needed to provide services. Research data and survey responses are retained for 12 months unless you request earlier deletion. You may request deletion of your data at any time.

8. Your Rights (GDPR)

If you are in the European Economic Area (EEA), you have the following rights:

  • Access: Request access to your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Request restriction of processing
  • Portability: Request transfer of your data to another service
  • Objection: Object to processing of your data
  • Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at support@respony.com. We will respond within 30 days.

9. International Data Transfers

Your information may be transferred to and processed in countries outside your country of residence. We ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission, to protect your data during such transfers.

10. Children's Privacy

Our Service is not intended for children under 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us immediately, and we will delete such information.

11. Third-Party Services

We use the following third-party services:

  • Google OAuth: For authentication
  • Vercel: For hosting
  • Digital Ocean: For database hosting
  • PostHog: For cookieless analytics
  • OpenRouter: For AI processing
  • Paddle: For payment processing

Each provider has their own privacy policy governing the use of your data.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Material changes will be communicated via email or through the Service.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Respony
Email: support@respony.com
Website: https://respony.com
Data Protection Officer: dpo@respony.com