This Privacy Policy describes how Reapt, Inc. (“Reapt,” “we,” “us,” or “our”), a Delaware corporation, collects, uses, and shares information when you use the Reapt application and related services available at https://reapt.app (collectively, the “Service”).
By using the Service, you agree to the collection and use of information as described in this Privacy Policy.
When you create a Reapt account, we collect your name, email address, mobile phone number, and authentication credentials. If you sign in using Google or Microsoft, we receive your basic profile information (name and email address) from those providers.
When you provide your mobile phone number and consent to receive text messages from Reapt, we collect and store your phone number. We use your phone number exclusively to send you service-related SMS messages, including expense notifications, classification confirmations, trip grouping summaries, and onboarding communications.
We do not share, sell, rent, or lease your phone number or SMS opt-in data (including consent status) to third parties for marketing or any other purpose. We may use a third-party messaging service provider (such as Twilio) to deliver SMS messages on our behalf. Such providers process your phone number solely to transmit messages and are contractually prohibited from using your data for any other purpose.
With your explicit authorization, we access your email messages and metadata through the Gmail API (Google) or Microsoft Graph API (Microsoft Outlook) on a read-only basis. We use this data solely to identify and extract expense-related information such as receipts, invoices, booking confirmations, and subscription notifications. We do not read, analyze, or store email content unrelated to expense management.
With your explicit authorization, we access your calendar events through Google Calendar API or Microsoft Graph API on a read-only basis. We use this data solely to correlate travel, meeting, and event information with business expenses for categorization and reporting purposes.
You may upload receipts, bank statements, invoices, or other expense-related documents directly to the Service. We process this content solely to provide expense management functionality.
We automatically collect standard technical information when you interact with the Service, including IP address, browser type, device identifiers, pages visited, and timestamps. We use this data for service operation, security monitoring, and improvement.
We use the information we collect exclusively for the following purposes:
We do not use your data for advertising, user profiling for ad targeting, or any purpose unrelated to providing and improving the expense management Service.
Reapt’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
Reapt accesses Microsoft user data (Outlook email and calendar) through the Microsoft Graph API under the Mail.Read and Calendars.Read permissions, granted with your explicit consent via Microsoft’s OAuth authorization flow.
We use Microsoft user data exclusively for expense identification, categorization, and reporting as described in Section 2. We apply the same data protection standards to Microsoft user data as described in Section 3 for Google user data.
We do not sell your personal information.
We may share your information only in the following limited circumstances:
We do not share, transfer, or disclose email or calendar content to any third party for advertising, data brokering, or any purpose unrelated to providing the Service.
By providing your mobile phone number during account registration or onboarding and agreeing to receive text messages, you expressly consent to receive SMS messages from Reapt at the phone number you provided. Consent is not a condition of purchasing any goods or services from Reapt.
Message frequency varies based on your account activity. You may receive up to approximately 10 messages per week. Messages may include expense classification confirmations, trip grouping summaries, expense report notifications, and onboarding instructions. Reapt will not send marketing or promotional messages via SMS.
Message and data rates may apply. Please contact your mobile carrier for details about your text messaging plan.
You may opt out of receiving SMS messages at any time by replying STOP to any message from Reapt. After opting out, you will receive a single confirmation message and no further SMS messages will be sent to your number. You may also opt out by contacting us at support@reapt.app or through your account settings.
For help with SMS messages, reply HELP to any message from Reapt, or contact us at support@reapt.app.
Reapt SMS messages are supported on all major U.S. mobile carriers. Carriers are not liable for delayed or undelivered messages.
We retain your data only for as long as necessary to provide the Service and fulfill the purposes described in this Privacy Policy.
You may request deletion of your account and associated data at any time by contacting us at privacy@reapt.app. Upon receiving a deletion request, we will delete or de-identify your data within 30 days, except where retention is required by law.
We implement commercially reasonable technical and organizational measures to protect your information, including:
No method of transmission or storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
Your data is stored and processed on infrastructure located in the United States. By using the Service, you consent to the transfer and processing of your data in the United States.
You may connect or disconnect your Google or Microsoft accounts at any time through the Service’s settings. Disconnecting an account immediately revokes our access to that provider’s data. You may also revoke access directly through your Google Account permissions or Microsoft Account permissions.
You may request a copy of the data we hold about you by contacting us at privacy@reapt.app.
You may request deletion of your account and data as described in Section 7.
You may opt out of SMS messages at any time as described in Section 6.4. Opting out of SMS does not affect your ability to use other features of the Service.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete, and the right to opt out of the sale of personal information. We do not sell personal information. To exercise your CCPA rights, contact us at privacy@reapt.app.
The Service is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 16, we will delete it promptly.
The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the “Last Updated” date. Your continued use of the Service after changes take effect constitutes acceptance of the revised policy.
If you have questions about this Privacy Policy, contact us at:
Reapt, Inc.
Email: privacy@reapt.app
Website: https://reapt.app