ReplyAide policy

Privacy Policy

ReplyAide collects the information needed to run account login, quota protection, Google Business review workflows, AI-assisted reply generation, subscription access, and support. Google review data is used only to provide the connected business owner with reply automation, approval controls, reporting, and safe autopost rules. ReplyAide's use and transfer of information received from Google APIs is intended to comply with the Google API Services User Data Policy, including the Limited Use requirements.

Last updated: June 20, 2026 Applies to ReplyAide Google Business and Studio ready
Privacy PolicyPolicy
1
Information ReplyAide processes

Account information such as email address, login method, session state, plan, quota usage, and basic account preferences

Rule
2
Google OAuth and Google Business data

ReplyAide requests the Google Business Profile OAuth scope https://www.googleapis.com/auth/business.manage so an authori

Rule
3
AI processing and safety routing

ReplyAide may send the minimum Google review text, rating, selected business context, tone instructions, and safety rule

Rule
4
Account quota and anti-abuse

ReplyAide uses account, session, device, IP-derived, user-agent, and quota signals to prevent repeated free-tier abuse,

Rule

Plain-English summary

Privacy Policy

ReplyAide collects the information needed to run account login, quota protection, Google Business review workflows, AI-assisted reply generation, subscription access, and support. Google review data is used only to provide the connected business owner with reply automation, approval controls, reporting, and safe autopost rules. ReplyAide's use and transfer of information received from Google APIs is intended to comply with the Google API Services User Data Policy, including the Limited Use requirements.

Information ReplyAide processes

  • Account information such as email address, login method, session state, plan, quota usage, and basic account preferences.
  • Business setup information such as business type, main reply channel, monthly volume, reply goals, tone preferences, safety rules, escalation rules, and selected locations.
  • Google Business Profile information the user authorizes, such as account identifiers, location identifiers, business profile names, review identifiers, review text, ratings, reviewer display information provided by Google, timestamps, and existing or generated reply status.
  • AI workflow inputs and outputs needed to classify review risk, draft replies, apply tone and policy instructions, and decide whether a reply should remain in human approval.
  • Support, billing, checkout, subscription, license key, and troubleshooting information voluntarily provided by the user or processed by the checkout provider.

Google OAuth and Google Business data

  • ReplyAide requests the Google Business Profile OAuth scope https://www.googleapis.com/auth/business.manage so an authorized business owner or manager can connect Google Business Profile accounts, choose locations, read reviews, generate replies, and post approved replies where the Google account has permission.
  • ReplyAide uses Google account identifiers, location identifiers, business profile names, review identifiers, review text, ratings, reviewer display information provided by Google, timestamps, existing replies, generated replies, and reply posting status only to provide the review management, reply drafting, approval, reporting, and safe autopost features shown in the product.
  • ReplyAide does not request Gmail, Google Drive, Google Calendar, Google Contacts, Google Ads, or unrelated Google account data for Google Review Autopilot.
  • ReplyAide does not sell Google user data, use Google review data for unrelated advertising, create fake reviews, remove reviews, manipulate ratings, or use Google user data to train a general-purpose public AI model.
  • The user can disconnect Google access through ReplyAide controls where available or revoke ReplyAide from Google Account permissions at https://myaccount.google.com/permissions. After revocation, ReplyAide cannot continue syncing reviews or posting replies until the user reconnects.

AI processing and safety routing

  • ReplyAide may send the minimum Google review text, rating, selected business context, tone instructions, and safety rules needed to a managed AI provider to classify risk and draft a reply.
  • Google Business data sent to AI routing is limited to the information needed for the requested reply workflow and is not used by ReplyAide for unrelated advertising or for training a general-purpose public AI model.
  • Low-risk reviews may be routed for safe autopost only when paid plan access, Google access, quota, and owner-configured safety rules allow it.
  • Sensitive reviews involving legal, refund, hygiene, medical, personal information, profanity, threats, harassment, discrimination, policy disputes, or similar high-risk content are held for human approval.
  • ReplyAide does not allow AI outputs to bypass blocked-topic rules, account quota, Google permission checks, or owner approval requirements.
  • API keys for ReplyAide's managed routing are stored as server secrets and are not displayed to the user.

Account quota and anti-abuse

ReplyAide uses account, session, device, IP-derived, user-agent, and quota signals to prevent repeated free-tier abuse, protect service reliability, and enforce plan limits. These signals are used for fraud prevention, rate limiting, quota enforcement, and security rather than public advertising.

Subscriptions, checkout, and email

Purchases, invoices, subscriptions, taxes, file delivery, license keys, customer records, receipts, and optional email marketing may be handled by the checkout provider and email providers. ReplyAide should only send marketing email to people who purchased, subscribed, or otherwise opted in, and each marketing message should include an unsubscribe path where required.

Third-party services

ReplyAide may use third-party providers for hosting, authentication, Google OAuth, Google Business Profile APIs, AI processing, payments, tax handling, invoices, receipts, file delivery, license keys, email, analytics, form handling, and customer support. Those providers have their own privacy terms and security practices.

Retention and deletion

  • ReplyAide keeps account, quota, license, Google connection, review workflow, and support records only as long as needed to provide the service, maintain security, resolve disputes, comply with legal or tax duties, and enforce plan limits.
  • Google OAuth access and refresh tokens are stored as protected server credentials and are used only for the connected Google Business review workflow.
  • If a user disconnects Google access or asks ReplyAide to delete Google Business data, ReplyAide will remove or disable active Google OAuth tokens and delete connected location and review workflow records from active systems within 30 days where technically and legally possible.
  • Security logs, abuse-prevention records, billing records, tax records, dispute records, provider logs, and backups may be retained longer when needed to protect the service, comply with law, resolve payment issues, or maintain system integrity.

Data requests

For privacy questions, Google data access questions, Google disconnect requests, deletion requests, or requests related to information held directly by ReplyAide, contact privacy@replyaide.com. Users may also revoke Google access directly from Google Account permissions. For payment records handled by the checkout provider, the provider may need to process certain requests directly.

Contact

Questions about this policy can be sent to privacy@replyaide.com. Do not send passwords, private keys, bank details, tax IDs, full payment card numbers, or sensitive customer lists.