Compliance ReminderCompliance Reminder
Terms of ServiceContact

Privacy Policy

Effective date: January 1, 2025

1. Introduction

Compliance Reminder LLC (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use Compliance Reminder (“the Service”).

2. Information We Collect

Information you provide directly

  • Account registration data: name, email address, and password (stored as a bcrypt hash)
  • Organization information: company name and email domain
  • Compliance data: reminder titles, descriptions, due dates, and uploaded documents
  • Team data: email addresses of invited team members
  • Communications: messages you send us via support or contact forms
  • Mobile phone number, if you opt in to SMS notifications

Information collected automatically

  • Log data: IP address, browser type, pages visited, and timestamps
  • Session data: authentication tokens stored in secure HTTP-only cookies
  • Usage data: feature interactions used to improve the Service

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Send compliance reminder and escalation emails you have configured
  • Send SMS text message notifications to your mobile number, if you have opted in
  • Process account registration and authentication
  • Respond to your support requests and communications
  • Send transactional emails (email verification, password reset, team invites)
  • Detect and prevent fraud or abuse
  • Comply with legal obligations
  • Improve the Service through aggregated, anonymized analytics

4. How We Share Your Information

We do not sell your personal information. We may share your information with:

  • Service providers: Third-party vendors that help us operate the Service, including email delivery (Resend), file storage (Cloudinary), and payment processing (Stripe). These providers are contractually bound to protect your data.
  • Your organization members: Certain account information (name, email, role) is visible to other members of your organization within the Service.
  • Legal requirements: We may disclose information when required by law, court order, or to protect the rights, property, or safety of our users or the public.

5. Data Retention

We retain your account data for as long as your account is active or as needed to provide the Service. When you cancel your account, we delete your data within 30 days, with backups purged within 90 days.

You may request deletion of your data at any time by contacting us at privacy@compliance-reminder.com.

6. Data Security

We implement industry-standard security measures to protect your data, including:

  • Passwords stored using bcrypt hashing (never in plain text)
  • HTTPS/TLS encryption for all data in transit
  • HTTP-only, secure session cookies
  • Regular security reviews and dependency updates

No method of transmission or storage is 100% secure. We encourage you to use a strong, unique password and to notify us immediately of any suspected unauthorized access.

7. Cookies

We use strictly necessary cookies to maintain your authenticated session. We do not use advertising or tracking cookies. You can control cookies through your browser settings, though disabling session cookies will prevent you from logging in.

8. SMS Notifications

Users on Professional and Enterprise plans may opt in to receive SMS text message notifications about upcoming compliance deadlines. By enabling SMS notifications in your account profile, you consent to receive automated text messages from Compliance Reminder LLC.

  • Opt-in: SMS notifications are disabled by default. You must explicitly enable them in your profile settings.
  • Message frequency: Message frequency varies based on the number and frequency of reminders you configure.
  • Message and data rates: Standard message and data rates may apply depending on your mobile carrier and plan.
  • Opt-out: Reply STOP to any SMS message to unsubscribe immediately. You will receive a confirmation message and no further texts will be sent.
  • Help: Reply HELP to any SMS message for assistance, or contact us at privacy@compliance-reminder.com.
  • Carriers: Carriers are not liable for delayed or undelivered messages.

Your mobile number is used solely to deliver the SMS notifications you have requested. We do not share your mobile number with third parties for marketing purposes. SMS delivery is provided through Twilio, Inc.

9. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Request deletion of your personal data
  • Object to or restrict certain processing of your data
  • Receive a portable copy of your data

To exercise these rights, contact us at privacy@compliance-reminder.com. We will respond within 30 days.

10. Children's Privacy

The Service is not directed at children under 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice in the Service at least 14 days before the changes take effect.

12. Contact Us

For privacy-related questions or requests, contact us at privacy@compliance-reminder.com or through our contact form.