Legal

Privacy Policy

Effective date: April 14, 2026

Remise ("we", "us", or "our") operates remise.studio and the Remise application. This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information. By using Remise, you agree to the practices described here.

1. Information we collect

We collect information you provide directly and information generated by your use of the service.

Account information

When you create an account, we collect your full name and email address. Freelancer accounts require a password; client accounts use passwordless magic links.

Workspace and content data

We store the information you add to Remise: workspace name, subdomain, logo, brand colors, client names and emails, project names and descriptions, uploaded files and deliverables, messages, and invoice details.

Payment information

Payments are processed by Stripe. We do not store credit card numbers or full payment card data on our servers. We receive confirmation of payment and a Stripe payment reference ID.

Usage data

We may collect standard server log data including your IP address, browser type, referring pages, and the date and time of requests. This is used to operate and improve the service.

2. How we use your information

  • To provide and operate the Remise service, including hosting your portal and storing your files.
  • To send transactional emails: file upload notifications, new messages, invoices, and payment confirmations.
  • To process payments via Stripe on behalf of freelancers.
  • To authenticate users and maintain session security.
  • To respond to support requests and inquiries.
  • To improve, debug, and develop new features of the service.

We do not sell your personal data to third parties. We do not use your content to train machine learning models.

3. Third-party services

Remise relies on the following trusted third-party providers to operate:

Supabase

Database, authentication, and file storage. Your data is stored in Supabase-managed PostgreSQL databases and object storage. Supabase is SOC 2 Type II certified.

Stripe

Payment processing. When your clients pay an invoice, they interact directly with Stripe's secure checkout. Stripe's privacy policy governs their handling of payment data.

Resend

Transactional email delivery. Remise uses Resend to send notifications and magic links. Email addresses are shared with Resend only for delivery purposes.

Vercel

Hosting and edge network. The Remise application is deployed on Vercel's infrastructure. Vercel processes requests and may log standard web server data.

4. Cookies and local storage

Remise uses browser cookies and local storage to:

  • Maintain your authenticated session (required for the service to function).
  • Store your authentication tokens securely using HTTP-only cookies.
  • Remember your preferences within the application.

We do not use third-party advertising cookies or tracking pixels.

5. Data retention

We retain your data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or financial compliance purposes (for example, records related to paid invoices may be retained for up to 7 years in accordance with applicable tax laws).

Uploaded files are deleted from storage within 30 days of account deletion. We may retain anonymized, aggregate usage statistics that cannot be linked back to you.

6. Your rights

Depending on your location, you may have the following rights regarding your personal data:

Access. Request a copy of the personal data we hold about you.

Correction. Request correction of inaccurate or incomplete data.

Deletion. Request deletion of your account and associated personal data.

Portability. Request an export of your data in a machine-readable format.

Objection. Object to certain processing of your data, including marketing communications.

To exercise any of these rights, email us at hello@remise.studio. We will respond within 30 days.

7. Security

We implement industry-standard security measures including encrypted connections (TLS), hashed passwords, row-level security on our database, and secure HTTP-only session cookies. No method of transmission over the internet is 100% secure, and we cannot guarantee absolute security. We will notify affected users promptly in the event of a data breach.

8. Children's privacy

Remise is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

9. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the effective date at the top and, for material changes, notify you by email or via a notice in the application. Continued use of Remise after changes take effect constitutes acceptance of the updated policy.

10. Contact

If you have questions about this Privacy Policy or your personal data, please contact us at hello@remise.studio.