Back to reBacklog

Privacy Policy

Last updated: December 2, 2025

1. Introduction

reBacklog ("we," "us," or "our") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website at https://rebacklog.ai and our AI-powered backlog generation service (collectively, the "Service").

Please read this Privacy Policy carefully. By using the Service, you consent to the practices described in this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: When you register, we collect your email address and any profile information you choose to provide.
  • Authentication Data: If you sign in via Google OAuth, we receive your basic profile information (name, email, profile picture) from Google.
  • Payment Information: When you subscribe to a paid plan, our payment processor (Stripe) collects and processes your payment details. We do not store your full credit card number.
  • URLs for Analysis: The website URLs you submit for analysis.
  • Feedback and Communications: Any feedback, support requests, or other communications you send us.

2.2 Information Collected Automatically

  • Usage Data: We collect information about how you interact with the Service, including pages visited, features used, and time spent.
  • Device Information: Browser type, operating system, device type, and IP address.
  • Cookies and Tracking: We use cookies and similar technologies as described in our Cookie Policy.

2.3 Information from Third Parties

  • Google Search Console: If you connect GSC, we access your website performance data (clicks, impressions, keywords) with your authorization.
  • OAuth Providers: Basic profile information from Google if you use social sign-in.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Provide and Operate the Service: To analyze websites, generate user stories, and deliver the core functionality of reBacklog.
  • Account Management: To create and manage your account, process subscriptions, and provide customer support.
  • Improve the Service: To understand usage patterns, fix bugs, and develop new features.
  • Communications: To send service updates, security alerts, and (with your consent) marketing communications.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.
  • Fraud Prevention: To detect and prevent abuse, fraud, and security incidents.

4. AI Processing and Data Handling

Important: When you submit a URL for analysis, our AI system processes publicly available information from that website. This processing involves:

  • Sending website content to Google Gemini AI for analysis and story generation.
  • Temporary caching of analysis results to improve performance.
  • Storing generated user stories and analyses associated with your account.

We do not use your personal data or your specific analysis results to train AI models. However, we may use anonymized, aggregated data to improve our prompts and service quality.

5. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • Service Providers: We work with third-party vendors who assist in operating our Service:
    • Supabase (authentication and database)
    • Stripe (payment processing)
    • Google Cloud / Gemini (AI processing)
    • Vercel (hosting)
  • Export Integrations: When you export data to Trello, Linear, or Feishu, your generated content is shared with those platforms per your request.
  • Legal Requirements: We may disclose information if required by law, court order, or governmental authority.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.
  • With Your Consent: We may share information for other purposes with your explicit consent.

We do not sell your personal data to third parties.

6. Data Retention

We retain your information as follows:

  • Account Data: Retained as long as your account is active, plus a reasonable period thereafter for legal and business purposes.
  • Analysis Results: Stored for up to 12 months after generation, or until you delete them.
  • Usage Logs: Retained for up to 90 days for security and debugging purposes.
  • Payment Records: Retained as required by tax and accounting laws (typically 7 years).

You can request deletion of your account and associated data at any time by contacting us at support@rebacklog.ai.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of data at rest
  • Regular security assessments
  • Access controls and authentication requirements
  • Secure coding practices

However, no method of transmission over the Internet is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.

8. Your Rights and Choices

8.1 All Users

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your account and personal data.
  • Opt-Out: Unsubscribe from marketing emails at any time.

8.2 EEA/UK Users (GDPR)

If you are in the European Economic Area or United Kingdom, you have additional rights:

  • Portability: Receive your data in a portable format.
  • Restriction: Request restriction of processing in certain circumstances.
  • Objection: Object to processing based on legitimate interests.
  • Withdraw Consent: Withdraw consent at any time where processing is based on consent.
  • Lodge Complaint: File a complaint with your local data protection authority.

Legal Basis for Processing (GDPR): We process your data based on: (a) contract performance (providing the Service); (b) legitimate interests (improving the Service, fraud prevention); (c) consent (marketing communications); and (d) legal obligations.

8.3 California Residents (CCPA)

California residents have the right to:

  • Know what personal information is collected and how it's used
  • Request deletion of personal information
  • Opt-out of the sale of personal information (we do not sell personal data)
  • Non-discrimination for exercising privacy rights

To exercise any of these rights, contact us at support@rebacklog.ai.

9. International Data Transfers

We operate from the United States and process data on servers located in the United States and other countries. If you are accessing the Service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States.

For EEA/UK users, we ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses where applicable.

10. Children's Privacy

The Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we discover that we have collected such information, we will delete it promptly.

11. Third-Party Links

The Service may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting a notice on the Service or sending an email. Your continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us:

Email: support@rebacklog.ai

Response Time: We aim to respond to all requests within 30 days.