Privacy Policy
Last updated: 22 May 2026
Reminderly is a WhatsApp-first productivity assistant operated by Matpack Industries ("Reminderly", "we", "us"). This policy explains what personal data we collect when you use Reminderly, how we use it, who else can see it, and the rights you have over it. Plain English; no dark patterns.
1. What data we collect
1.1 Information you give us directly
- WhatsApp phone number — required so the bot can message you back. We never share this.
- Your name and timezone — captured during onboarding so reminders fire at the right local time.
- Content you send the bot — reminders, to-dos, habits, notes, and any voice messages you record. This is exactly what you'd type if you used a typical reminder app.
1.2 Information from connected services (optional)
If you connect Google Calendar or Outlook Calendar, we receive:
| Service | What we receive | Why |
|---|---|---|
| Google Calendar | Read/write access to events on your connected Google account; your Google account's email address | To sync events into Reminderly, detect pending meeting invitations, and create events you ask us to schedule |
| Outlook Calendar (Microsoft Graph) | Read/write access to events on your Outlook account; your account's email address | Same as Google |
We do NOT request access to your email inbox. Meeting invitations are detected from the calendar itself (events you haven't responded to yet), not by reading email content. Reminderly never sees your Gmail or Outlook mail.
1.3 Information collected automatically
- Diagnostic logs — server-side request/error logs (no message bodies) for debugging.
- Crash reports via Sentry — stack traces only, no personal content.
- Aggregate usage counts — total reminders fired, broadcast counts, etc., to operate the service and improve it.
2. How we use your data
- To fire your reminders, todos, habit broadcasts, morning briefs, weekly reports — all the bot's core jobs.
- To sync your calendar events into Reminderly and flag pending invitations.
- To send transactional WhatsApp messages from you to the bot and vice versa (via Meta).
- To process voice notes you send (transcribed by Groq Whisper; the audio is processed transiently and not retained after transcription).
- To process complex commands using Anthropic's Claude AI for natural-language understanding. We send only the specific message you typed; we don't send your full history.
- To accept payment if you upgrade to a paid plan — handled by Razorpay (India) or Stripe (international). We never see your card details.
3. Google API Services User Data Policy — Limited Use disclosure
Reminderly's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:
- We use Google Calendar data only to provide and improve the calendar-sync and invitation-detection features visible to you in Reminderly.
- We do not transfer Google user data to any third party except as necessary to provide the service (the infrastructure providers listed in section 6) or as required by law.
- We do not use Google user data for advertising, including retargeting, personalised advertising, or interest-based advertising.
- We do not allow humans at Reminderly to read Google user data, except (a) with your explicit consent for a specific message, (b) for security/abuse investigations, (c) to comply with law, or (d) for aggregate/anonymous internal operations after anonymisation.
4. Who else sees your data — third-party processors
We use a small number of infrastructure providers to run Reminderly. Each processes data only on our instructions:
| Provider | What they process | Where |
|---|---|---|
| Supabase (database) | All your stored data (reminders, todos, habits) encrypted at rest by Supabase. OAuth tokens and Vault passwords are additionally encrypted by Reminderly with a key the database never sees. | Tokyo, Japan (ap-northeast-1) |
| Render (app hosting) | Server-side execution; transient request data | Oregon, US |
| Meta | WhatsApp message delivery | Global |
| Anthropic (Claude API) | Individual messages sent for NLU parsing; not stored by Anthropic per their API terms | US |
| Groq (voice transcription) | Voice note audio, transcribed and not retained after transcription | US |
| Razorpay / Stripe | Payment processing for paid plans | India / Global |
| Sentry | Error stack traces (no message content; PII filtered out) | US |
| Cloudflare | Hosting of reminderly.ai marketing site | Global |
5. We do NOT
- Sell your data to anyone.
- Show ads or use your data for advertising.
- Train AI models on your reminders, todos, or calendar.
- Read your email content (we don't have permission to).
- Share your phone number with anyone outside the providers above.
6. Data retention
Your reminders, todos, habits, and calendar tokens are kept for as long as your Reminderly account is active. Voice note audio is deleted immediately after transcription. Diagnostic logs roll off after 30 days. When you delete your account, all your data is removed from our database within 30 days; backups roll off within 90 days.
7. Your rights
You can at any time:
- Disconnect a calendar — message the bot:
disconnect <email>. The OAuth token is deleted immediately. - Stop receiving messages — message
stop. All proactive sends pause. - Export your data — email hello@reminderly.ai; we'll send a JSON dump within 30 days.
- Delete your account — email hello@reminderly.ai; we'll permanently delete all your data within 30 days and confirm.
- Revoke Google or Microsoft access directly from Google account permissions or Microsoft account permissions.
8. Security
OAuth tokens are stored in our Supabase database, which uses Postgres Row-Level Security and is accessed only through our server-side service role key (never exposed to client browsers). All traffic to and from reminderly.ai uses HTTPS / TLS. WhatsApp webhook calls are verified using HMAC signatures from Meta. Admin endpoints require an API key.
9. Children
Reminderly is not directed at children under 13. We don't knowingly collect data from anyone under that age. If you believe a minor has signed up, email us and we'll delete the account.
10. Changes to this policy
If we make a material change to this policy, we'll send you a one-time WhatsApp notification with a summary of the change at least 14 days before it takes effect. Minor wording fixes don't trigger a notice.
11. Contact
Questions about this policy, data requests, or anything else:
Email: hello@reminderly.ai
Operator: Matpack Industries
Service: reminderly.ai