Privacy Policy

Renewno ("we", "us", "our") is a subscription and renewal management service. This policy explains what personal data we collect, why we collect it, and how we use it. If you have questions, contact us at privacy@renewno.com.

We collect the following categories of personal data:

• Account data — your name, email address, and profile picture provided via OAuth (GitHub, Google, or Microsoft).
• Organisation data — vendor names, subscription costs, renewal dates, and other information you enter into Renewno.
• Usage data — pages visited, features used, and timestamps, collected for product improvement.
• Technical data — IP address, browser type, and device identifiers collected automatically.

We use your data to:

• Provide, operate, and improve the Renewno service.
• Send renewal alert emails and notifications you configure.
• Authenticate you and keep your session secure.
• Respond to support requests.
• Comply with legal obligations.

We do not sell your personal data to third parties.

We process your data under the following lawful bases (UK GDPR):

• Contract — processing necessary to provide the service you signed up for.
• Legitimate interests — product analytics and security monitoring.
• Legal obligation — where required by law.
• Consent — for non-essential cookies (you can withdraw consent at any time).

We share data with a limited number of trusted sub-processors to operate the service:

• Vercel — hosting and infrastructure (USA; Standard Contractual Clauses apply).
• Supabase — database hosting (EU region).
• Stripe — payment processing (USA; Standard Contractual Clauses apply).
• Resend — transactional email delivery.

We do not share data with advertisers or data brokers.

We retain your personal data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it by law.

Under UK GDPR you have the right to:

• Access the personal data we hold about you.
• Correct inaccurate data.
• Request deletion of your data ("right to be forgotten").
• Restrict or object to processing.
• Data portability.
• Withdraw consent at any time (where processing is based on consent).

To exercise any of these rights, email us at privacy@renewno.com. We will respond within 30 days.

We use cookies to keep you signed in and to understand how the product is used. See our Cookies Policy for full details.

We implement appropriate technical and organisational measures to protect your data, including encryption in transit (TLS) and at rest, access controls, and regular security reviews.

We may update this policy from time to time. We will notify you of significant changes by email or by displaying a notice in the app. Continued use of Renewno after changes take effect constitutes acceptance of the updated policy.

If you have any questions or concerns about this policy, or wish to make a complaint, please contact us at privacy@renewno.com.