R
RefundRadar

Privacy Policy

Effective Date: March 7, 2026

Introduction

RefundRadar ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our price monitoring service.

Information We Collect

Account Information

When you create an account, we collect your name, email address, and an encrypted version of your password. We do not store plaintext passwords.

Gmail Data (With Your Permission)

If you choose to connect your Gmail account, we access your email solely to identify purchase confirmation and order receipt emails. Specifically:

  • We search for emails from known retailers (Amazon, Walmart, Target, Best Buy, Costco, etc.)
  • We extract only purchase-related data: product names, prices, order dates, order numbers, and retailer information
  • We do NOT read personal emails, conversations, attachments, or any non-purchase-related content
  • We do NOT store the full text of any emails
  • Access is read-only; we cannot send, delete, or modify your emails

Usage Data

We collect basic usage data such as login timestamps, feature usage, and price check activity to improve our service.

How We Use Your Information

  • Monitor prices on your tracked purchases
  • Send you alerts when prices drop within your return window
  • Provide dashboard analytics showing your savings
  • Improve our service and user experience
  • Communicate important service updates

Data Storage & Security

All data is encrypted using industry-standard protocols. Your Gmail access tokens are stored securely and encrypted at rest. We use HTTPS for all data transmission. Our database uses parameterized queries to prevent SQL injection attacks.

Third-Party Services

We use the following third-party services:

  • Google Gmail API: For reading purchase receipts (governed by Google API Services User Data Policy)
  • Twilio SendGrid: For sending email notifications
  • Twilio: For sending SMS notifications (if enabled)
  • Vercel: For hosting our application

We do not sell, rent, or share your personal information with third parties for their marketing purposes.

Google API Disclosure

RefundRadar's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only request the minimum Gmail scopes necessary to scan for purchase receipts.

Your Rights

  • Access: View all data we have stored about you through your dashboard
  • Disconnect: Remove Gmail access at any time through Settings
  • Delete: Delete your account and all associated data permanently
  • Export: Request a copy of your data at any time
  • Opt-out: Disable notifications while keeping your account active

Data Retention

We retain your data for as long as your account is active. When you delete your account, all personal data, purchase records, alerts, and Gmail tokens are permanently deleted from our systems within 30 days.

Children's Privacy

RefundRadar is not intended for children under 13. We do not knowingly collect information from children under 13 years of age.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or through the app. Continued use of the service after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy, contact us at:

privacy@refundradar.app

Terms of ServiceBack to Home