Skip to content
Your Privacy Matters

Privacy Policy

Last updated: April 17, 2026

On this page

  1. Our privacy principles
  2. What we collect
  3. What we don't collect
  4. How we use your data
  5. Subprocessors
  6. International transfers
  7. AI-generated content
  8. Your rights
  9. Data retention
  10. Children
  11. Cookies
  12. Changes to this policy
  13. Contact

Our privacy principles

Vervo is a tool for real conversations. We treat your data with the care that implies.

  • No screenshots stored. Images you upload are processed in memory and deleted before your replies render.
  • Minimize what we keep. We store only what the service actually needs to work.
  • Opt-in for improvement. We only use data to improve Vervo when you explicitly agree, and you can revoke that any time.
  • No sale of personal information. We do not sell, rent, or trade your data.

What we collect

We collect the minimum data needed to run the service. Specifically:

  • Account info — email, display name, and profile image from your sign-in provider.
  • Billing info — handled by Stripe. We see your plan, renewal status, and the last four digits of the card for support. Full card numbers are never transmitted to or stored by Vervo.
  • Analysis metadata — for each reply we generate, we store the extracted conversation text, detected platform, inferred relationship context, the 3 generated replies, and which one you selected (if any). This powers your history view and per-account limits.
  • Request metadata — standard server logs (IP address, user agent, timestamp) kept briefly for security and rate limiting. Anonymous trial requests use a salted SHA-256 hash of the IP for per-IP rate limiting; we do not store raw trial IPs.
  • Support email — if you email us, we keep the message and your email address to respond.
  • Anonymized patterns (consent required) — if you opt in, we retain aggregated patterns (platform type, relationship context, which tone you chose) with no identifying information, no raw messages, and no account link. You can turn this off anytime in Settings.

What we don't collect

  • Your screenshots beyond the seconds needed to generate a reply. Images are never saved to disk.
  • Contact lists, call logs, or other device data.
  • Precise location. We may infer coarse country-level geography from IP for compliance and support.
  • Biometric data.
  • Data from any accessibility, keyboard, or screen-recording permissions.

How we use your data

Data we collect is used only for the purposes listed below. We do not repurpose data for unrelated uses.

  • Provide the service — generate replies, surface your history, enforce per-account limits.
  • Billing — process subscription and reply-pack payments via Stripe.
  • Security — rate-limit abuse, detect automated attacks, maintain service integrity.
  • Support — respond to your email, debug issues you report.
  • Product improvementonly with your opt-in consent, we use anonymized patterns (not raw messages) to improve reply quality across the service.
  • Legal compliance — respond to valid legal requests and meet regulatory obligations.

Subprocessors

To run Vervo, we rely on trusted service providers. Each one has its own security and privacy terms you can read on their websites.

ProviderPurposeRegion
OpenAIAI reply generationUnited States
ClerkAuthentication, account profileUnited States
StripePayment processingUnited States
ConvexDatabase, server functionsUnited States
VercelHosting, edge functionsUnited States (edge distributed)
Vercel AnalyticsAnonymous page analytics (cookieless)United States
ResendTransactional and support emailUnited States

We may add, remove, or replace subprocessors as the service evolves. For material changes, we will update this page and give at least 30 days notice via in-app banner or email before the new subprocessor begins handling your data.

Our AI provider (OpenAI) does not use data sent via the API to train its models by default, per their API data usage policy at the time of writing.

International data transfers

Vervo is operated from the United States, and all of our subprocessors process data in the United States. If you access Vervo from the European Economic Area, the United Kingdom, Switzerland, or another region with data-export rules, your data will be transferred to the US.

We rely on appropriate legal mechanisms for these transfers, including Standard Contractual Clauses and, where available, the EU-US Data Privacy Framework. The specific mechanism depends on each subprocessor's program. You can request details by emailing us.

AI-generated content

Replies you see in Vervo are generated by third-party AI models (currently OpenAI's GPT-4o family). They are suggestions, not facts. They can be wrong, out of date, or reflect biases in their training data.

You are always the one sending the message. Use your judgment. Do not rely on Vervo for medical, legal, financial, or safety-critical advice.

Your rights

Depending on where you live, you may have the following rights over your personal data. We honor these requests for all users regardless of jurisdiction, to the extent reasonable:

  • Access — request a copy of the personal data we hold about you.
  • Correction — ask us to correct inaccurate data.
  • Deletion — close your account and have your data deleted (see Retention below).
  • Portability — receive your data in a common machine-readable format.
  • Object — object to certain uses of your data.
  • Withdraw consent — turn off data-sharing for improvement anytime in Settings → Data & Privacy.
  • Non-discrimination — we will not deny or degrade the service because you exercised a privacy right.
  • Lodge a complaint — you may contact your local data protection authority if you believe we have not handled your data properly.

To exercise any of these rights, submit a request through our contact form. We will verify your identity and respond within 30 days.

Data retention

  • Active accounts — we keep your account data and analysis history for as long as your account is active.
  • Deleted accounts — when you delete your account, we remove your personal data from our primary systems within 30 days. Backups that include your data are overwritten on our normal rotation.
  • Screenshots — not retained. Processed in memory and discarded before the reply renders.
  • AI request logs (OpenAI) — OpenAI may retain API requests briefly (currently up to 30 days per their API data usage policy) for abuse monitoring, independently of Vervo.
  • Billing records — Stripe retains billing records for the period required by applicable tax and accounting law, independently of Vervo.
  • Anonymous trial rate-limit hashes — hashed IPs used to enforce one free trial per 24 hours are retained only for the length of their rate-limit window.

Children

Vervo is not directed to children under 18. We do not knowingly collect personal data from anyone under 18. If you believe a minor has provided us with personal information, reach out through our contact form and we will delete it.

Cookies and similar technology

Vervo uses a small number of functional cookies and similar technologies:

  • Authentication cookies set by Clerk so you stay signed in.
  • A referral cookie used when you arrive through a referral link, so we can attribute the signup correctly.
  • localStorage used by the free trial flow to remember that you already used your one trial on this device.

We do not use advertising cookies, cross-site tracking pixels, or third-party analytics that identify you individually. Vercel Analytics is cookieless.

Changes to this policy

We may update this policy as the service evolves. For material changes — new categories of data we collect, new subprocessors handling your data, or changes to how we use information — we will update the “Last updated” date and give at least 30 days notice via in-app banner or email before the change takes effect. Minor clarifications may be made without notice.

Contact

Questions about this policy or a privacy request? Submit a message through our contact form:

Open contact form →

See also: Terms of Service