Privacy Policy

Nudge operates nudge.reviews, a service that helps local businesses send automated SMS review requests to their customers. Our contact email is hello@nudge.reviews.

Information you provide directly:

• Account information — your email address and password when you sign up
• Business information — your business name and Google review link
• Customer data — customer names and mobile phone numbers you enter to send review requests
• Payment information — billing details processed securely by Stripe; we do not store card details

Information collected automatically:

• Click tracking — when a recipient clicks the review link in an SMS, we record the timestamp
• Usage data — request volume, response rates, and subscription activity
• Log data — IP addresses, browser type, and visited pages collected by our infrastructure

• To provide and operate the Nudge service
• To send SMS review requests on your behalf via Twilio
• To track whether recipients clicked review links
• To process subscription payments via Stripe
• To send service-related emails such as billing receipts and usage alerts
• To improve and develop the service
• To comply with legal obligations

Nudge enables you, the business owner, to send SMS messages to your customers. You are responsible for ensuring that:

• You have obtained proper prior express written consent from each customer before sending SMS messages through our platform
• Your use of Nudge complies with the Telephone Consumer Protection Act (TCPA), the CAN-SPAM Act, and any other applicable laws
• You only send messages to customers who have a legitimate, recent business relationship with you

Nudge provides the sending infrastructure. Legal responsibility for consent and compliance rests with you.

We share data with trusted third parties only as necessary to provide the service:

• Twilio — transmits SMS messages on our behalf. See Twilio's Privacy Policy.
• Stripe — processes subscription payments. See Stripe's Privacy Policy.
• Supabase — hosts our database and authentication. See Supabase's Privacy Policy.
• Vercel — hosts our web application. See Vercel's Privacy Policy.

We do not sell your data or your customers' data.

We retain your account data while your account is active. Review request records are retained to provide history and analytics.

You may request deletion at any time by emailing hello@nudge.reviews.

When you delete your account, we delete your data within 30 days except where retention is legally required.

We use reasonable technical and organisational measures to protect data, including HTTPS, database access controls, and row-level security policies.

No internet transmission is 100% secure, so we cannot guarantee absolute security.

Depending on your location, you may have the right to:

• Access the personal data we hold about you
• Correct inaccurate data
• Request deletion of your data
• Object to or restrict certain processing
• Receive your data in a portable format

To exercise these rights, email hello@nudge.reviews.

We use only essential session cookies required for authentication. We do not use advertising or third-party analytics cookies.

Nudge is not directed at children under 13 years of age, and we do not knowingly collect personal information from children.

We may update this Privacy Policy from time to time and will notify you of significant changes by email or by posting a notice in the dashboard.

If you have questions about this Privacy Policy or how we handle your data, contact us at hello@nudge.reviews.