Privacy Policy
Last updated: March 12, 2026
1. Introduction
Let's Review ("we", "us", "our") operates letsreview.app. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
2. Information We Collect
Account Information: When you create an account, we collect your name, email address, and authentication credentials (or OAuth tokens if you sign in with Google).
Uploaded Content: Files you upload (images, videos, PDFs) are stored securely in our cloud storage. These files are only accessible via unique share links you generate.
Review Data: Comments, annotations, and approval decisions left by reviewers are stored alongside the associated project. Reviewer names are self-reported and stored in the reviewer's browser (localStorage).
Usage Data: We collect basic usage information such as pages visited, browser type, and IP addresses for rate limiting and security purposes.
Uploaded Content: Files you upload (images, videos, PDFs) are stored securely in our cloud storage. These files are only accessible via unique share links you generate.
Review Data: Comments, annotations, and approval decisions left by reviewers are stored alongside the associated project. Reviewer names are self-reported and stored in the reviewer's browser (localStorage).
Usage Data: We collect basic usage information such as pages visited, browser type, and IP addresses for rate limiting and security purposes.
3. How We Use Your Information
We use your information to:
- Provide, maintain, and improve the service
- Send transactional emails (comment notifications, approval alerts, expiry reminders)
- Process payments through Stripe (we never store your payment details directly)
- Enforce rate limits and prevent abuse
- Respond to support requests
4. Data Sharing
We do not sell your personal information. We share data only with:
Each provider processes data solely to deliver their services and is bound by their own privacy policies.
- Supabase — database and file storage hosting
- Stripe — payment processing
- Resend — transactional email delivery
Each provider processes data solely to deliver their services and is bound by their own privacy policies.
5. Data Retention
Your data is retained for as long as your account is active. Uploaded files for anonymous (unregistered) projects expire automatically after 14 days. You can delete your account and all associated data at any time from Settings → Danger Zone.
6. Your Rights
You have the right to:
To exercise these rights, use the in-app settings or contact us at hello@letsreview.app.
- Access your personal data
- Request correction of inaccurate data
- Delete your account and all associated data
- Export your data by downloading your uploaded files
- Withdraw consent for email notifications via Settings
To exercise these rights, use the in-app settings or contact us at hello@letsreview.app.
7. Security
We implement industry-standard security measures including row-level security policies, encrypted connections (HTTPS/TLS), secure authentication tokens, and scoped storage access. Files are served via signed URLs that expire after a limited time.
8. Cookies
We use essential cookies only — authentication session cookies required to keep you signed in. We do not use tracking cookies or third-party advertising cookies.
9. Children
Our service is not directed to individuals under 16. We do not knowingly collect personal information from children.
10. Changes to This Policy
We may update this policy from time to time. We will notify registered users of material changes via email. Continued use of the service after changes constitutes acceptance.
11. Contact Us
Questions about this Privacy Policy? Contact us at hello@letsreview.app.