What we collect, what we don’t.

We collect only what the service needs to run, bill, and improve responsibly. Specifically:

• ·Account information — your email address, display name, and authentication identifiers, supplied to us by our authentication provider (Clerk) when you sign up or sign in.
• ·Listing data — the property details you save to the desk (address, beds, baths, square footage, price, features, notes), stored in our database (Supabase).
• ·Generation history — the prompts you run, the inputs you submitted, the outputs the desk produced, and the compliance flags raised.
• ·Rate-limiting signals — your IP address and request timing, retained briefly to prevent abuse of the free linter and other rate-limited endpoints.
• ·Billing identifiers — your Stripe customer ID and the last four digits and brand of the card on file. Full card numbers are held by Stripe, not by us.
• ·Optional analytics events — if we enable a privacy-respecting analytics provider in production (described in Section VI), we record aggregate page-view and feature-usage events.

The desk does not need most of what other tools ask for, so we do not ask. Rellow does not collect:

• ·Social Security numbers or tax identification numbers.
• ·Commission amounts, brokerage payout data, or wire instructions.
• ·Client personally-identifiable information — unless you voluntarily paste it into a prompt yourself. We recommend you do not.
• ·Marketing or advertising trackers from third-party networks, by default.

We use the information described above to:

• ·Operate the service — authenticate you, save your work, generate copy, run the compliance read, and deliver the result.
• ·Bill you, process subscriptions, manage trials, and handle cancellations and refunds.
• ·Prevent fraud and abuse, rate-limit free tools, and protect the integrity of the service.
• ·Communicate with you about the service — account, billing, security, and material product changes.
• ·Improve the service, using aggregated and de-identified signals (which categories agents use most, which prompts raise the most compliance flags, etc.).

We do not sell personal information, and we do not share it for cross-context behavioral advertising.

To run the desk we rely on a small set of vetted vendors. Each receives only the data needed for its function and is contractually bound to handle it appropriately.

• ·Clerk — authentication, session management, and the email address and display name on your account.
• ·Stripe — payment processing, card tokenization, invoicing, and tax calculation.
• ·Anthropic— large-language-model inference for prompt generation and the compliance review. Rellow uses Anthropic’s commercial API; under Anthropic’s commercial terms, customer inputs and outputs sent through the API are not used to trainAnthropic’s models. See Section V.
• ·Supabase — database and file storage for your listings, generations, and account records.
• ·Resend — transactional email delivery (sign-in links, receipts, account notices).
• ·Hosting & content delivery — our application is hosted on commodity cloud infrastructure (currently Vercel) with standard request logs.

By using Rellow you authorize us to share the necessary data with these sub-processors. We may add or change sub-processors over time; we will reflect material changes in this Policy and, where required, notify subscribers.

We may also disclose information when required by law, valid legal process, or to protect the rights, property, or safety of Rellow, our subscribers, or the public.

We may, internally, review individual generations for safety, quality assurance, or to investigate suspected abuse — strictly on a need-to-know basis. Where we use generation history to improve the service generally (for example, to study which prompts raise the most compliance flags), we use aggregate or de-identified data only.

Rellow uses cookies and similar technologies sparingly:

• ·Strictly necessary cookies— primarily Clerk’s session cookie, which keeps you signed in to the desk. Without it, the service cannot function.
• ·Preference cookies — small bits of storage we use to remember UI choices (for example, which prompt category you last viewed).
• ·Analytics — by default, we do not load third-party analytics or advertising trackers. If we enable a privacy-respecting analytics provider (such as Plausible or PostHog, both configured to be cookie-light), we will describe it here and disclose it in an accessible footer notice.

You can clear cookies in your browser settings; doing so will sign you out of the desk and may reset preferences.

• ·Account, listings, and generation history — kept while your account is active. When you delete an item, it is removed within thirty (30) days from active systems.
• ·After cancellation — kept in export-only form for thirty (30) days, then permanently deleted from active systems. Encrypted backups may retain a copy for up to a further sixty (60) days before being overwritten on normal rotation.
• ·Rate-limit records — IP and request metadata for the linter and other rate-limited endpoints are retained for approximately twenty-four (24) hours, then purged.
• ·Operational and security logs — retained for up to ninety (90) days, then rotated.
• ·Billing records — invoices and tax records are retained as required by applicable accounting and tax law.

You may, at any time:

• ·Access your data on the desk — listings, generations, account details — directly through the dashboard.
• ·Export your generation history at any time from the dashboard or by request.
• ·Correct or delete your data from the dashboard, or by writing to us at the address below. We will action verifiable requests within thirty (30) days.
• ·Close your account and trigger the cancellation export window described above.

To exercise any right, write to hello@rellow.co from the email address on the account. We may ask for reasonable verification.

If you are in the European Economic Area, the United Kingdom, or Switzerland, you may have additional rights under the GDPR or UK GDPR — including the right to object to or restrict processing, the right to data portability, and the right to lodge a complaint with your local supervisory authority. The legal bases on which we process your personal data are: (i) performance of our contract with you, (ii) our legitimate interests in operating and improving the service, (iii) compliance with legal obligations, and (iv) your consent where required.

If you reside in California, you may have additional rights under the California Consumer Privacy Act (as amended by the CPRA) — including the right to know what personal information we hold about you, the right to delete it, the right to correct it, and the right not to be discriminated against for exercising these rights. Rellow does not sell or share personal information for cross-context behavioral advertising.

To exercise any of these rights, write to hello@rellow.co.

Rellow is intended exclusively for licensed United States real estate professionals, who must be at least eighteen years old. The service is not directed to children under eighteen, and we do not knowingly collect personal information from minors. If you believe a minor has provided us with personal information, write to us and we will delete it promptly.

We may update this Privacy Policy from time to time to reflect changes in the service, our vendors, or applicable law. The effective date at the top of the page reflects the latest revision. For material changes, we will notify subscribers by email or through the desk before the change takes effect.

Data controller and contact. Rellow is the controller of personal data described in this Policy. Questions, requests, or complaints: hello@rellow.co.