Privacy Policy
Last updated: July 7, 2026
Relira ("Relira", "we", "us") operates a client communication platform at relira.com and related applications. This Privacy Policy explains how we collect, use, disclose, and protect personal information when you visit our website, create an account, or use our services.
1. Roles: Relira and our customers
When you sign up for Relira as a business user, we process your account information as a data controller. When your organization uses Relira to email its clients, your organization is generally the data controllerfor those clients' personal data, and Relira acts as a data processor on your instructions. Our Terms of Service include data processing terms for business customers.
2. Information we collect
Account and workspace data
- Name, business email, company name, password (stored hashed), and workspace settings
- Billing information when you subscribe (processed by our payment provider)
CRM and client data
- Contact and company data synced from HubSpot or entered manually (names, emails, CRM fields, opt-out status)
Communications data
- Templates, campaigns, scheduled sends, delivery status, and engagement events (opens, clicks, bounces, complaints)
Technical data
- Log data, IP address, browser type, device information, and cookies needed for authentication and security
3. How we use information
- Provide, operate, and improve Relira and Atlas (your communications manager)
- Send emails on your behalf from your verified domain
- Honor unsubscribe and email preference requests
- Monitor security, prevent abuse, and comply with law
- Communicate with you about the service
4. How Atlas prepares communication
Atlas may use third-party language models to prepare or suggest email content based on your workspace data. You review before anything is sent. We do not use your workspace content to train public foundation models unless you separately agree to such use.
5. Cookies and similar technologies
We use essential cookies for login sessions, security (including OAuth state), and service operation. We do not use non-essential advertising cookies on the Relira application today. You can control cookies through your browser settings; disabling essential cookies may prevent you from using the service.
6. Legal bases (EEA/UK)
Where GDPR applies, we rely on:
- Contract — to provide the service you requested
- Legitimate interests — security, product improvement, and B2B marketing to account holders
- Consent — where required (e.g., optional communications)
- Legal obligation — compliance with applicable law
7. Subprocessors
We use service providers to operate Relira, including:
- Supabase — authentication, database, and storage
- Vercel — application hosting
- Resend — email delivery and engagement webhooks
- OpenAI — content preparation (where enabled)
- HubSpot — CRM integration (data flows between your HubSpot account and Relira)
We require subprocessors to protect personal data under contractual obligations appropriate to their role.
8. International transfers
We and our subprocessors may process data in the United States and other countries. Where required, we use appropriate safeguards such as Standard Contractual Clauses for transfers from the EEA/UK.
9. Retention
We retain account and workspace data while your subscription is active and for a reasonable period afterward for backup, legal, and audit purposes. You may request deletion of your account by contacting us. Some data may be retained where required by law or to resolve disputes.
10. Security
We use encryption in transit, access controls, workspace isolation, and monitoring. No system is perfectly secure; please use strong passwords and protect your credentials.
11. Your rights
Depending on your location, you may have rights to access, correct, delete, restrict, or port your personal data, and to object to certain processing. EEA/UK residents may lodge a complaint with a supervisory authority.
California residents (CCPA/CPRA)
We do not sell personal information as defined by California law. You may request access to or deletion of personal information we hold about you as a Relira account holder. To submit a request, email privacy@relira.com.
12. Children
Relira is a business service not directed to children under 16. We do not knowingly collect personal information from children.
13. Changes
We may update this policy from time to time. We will post the revised version with an updated date and, for material changes, provide notice through the service or email.
14. Contact
Relira — Privacy inquiries: privacy@relira.com
This policy is provided for transparency and does not constitute legal advice. Consult qualified counsel for your specific compliance obligations.