Last updated: February 11, 2025

Privacy Policy

LetsReview ("we", "us", or "our") is operated by LetsJuan Pte. Ltd. (UEN: 202607378E), a company registered in Singapore. This Privacy Policy explains how we collect, use, disclose, and protect your personal data when you use our platform at letsreview.ai and related services (the "Service").

We are committed to complying with Singapore's Personal Data Protection Act 2012 ("PDPA") and applicable data protection laws.

1. Data We Collect

1.1 Account Information (Merchants)

When you register for an account, we collect:

  • Email address
  • Password (stored in hashed form only — we never store plaintext passwords)
  • Business name and business address
  • Business logo and branding preferences (colors, layout settings)
  • Custom domain information, if applicable

1.2 End-User Data (Customers of Our Merchants)

When a customer interacts with a merchant's LetsReview gateway (e.g. scanning a QR code), we collect:

  • Device information: browser type, operating system (via user agent)
  • Hashed IP address: we hash IP addresses before storage — we do not store plaintext IP addresses
  • Browser language preference
  • Interaction data: which review platform was clicked, whether an AI review suggestion was shown or copied, and timestamps

1.3 Payment Information

We use Stripe as our payment processor. We do not store credit card numbers or sensitive financial data on our servers. We retain:

  • Stripe customer and subscription identifiers
  • Subscription plan, status, and billing period dates
  • Add-on types and quantities
  • Credit transaction history (amounts, descriptions, timestamps)

1.4 AI Usage Data

When you or your customers use AI-powered features (review generation, chatbot), we collect:

  • Feature type used
  • Token counts (input and output)
  • Credits consumed
  • Metadata such as platform type and sentiment

We do not store the full content of AI conversations long-term. Conversation data is processed in real time and not retained beyond the active session.

1.5 Referral Data

If you participate in our referral program, we track referral codes, click sources (hashed IP and user agent), conversion status, and any rewards applied.

1.6 Analytics Data

We collect aggregated analytics including QR code scan counts, platform click rates, review confirmation rates, and daily AI usage summaries. This data is used to provide merchants with performance dashboards.

2. How We Use Your Data

We use the data we collect to:

  • Provide, operate, and maintain the Service
  • Process payments and manage subscriptions
  • Generate AI-powered review suggestions and chatbot responses
  • Provide analytics dashboards and performance insights to merchants
  • Facilitate the referral program and apply rewards
  • Send transactional emails (account verification, password reset, billing notices)
  • Improve our Service through aggregated usage analysis
  • Detect and prevent fraud or abuse

3. Third-Party Services

We share data with the following third-party services:

We do not sell your personal data to third parties. We only share data with third parties as necessary to operate the Service or as required by law.

4. Data Retention

  • Account data is retained for as long as your account is active.
  • After account deletion, we retain your data for up to 30 days to allow for account reactivation, after which it is permanently deleted.
  • Analytics data is retained in aggregated form and is not personally identifiable.
  • Payment records may be retained longer as required for accounting and tax compliance.

5. Data Security

We implement reasonable security measures to protect your data:

  • Passwords are hashed using industry-standard algorithms
  • IP addresses are hashed before storage
  • Payment data is handled by PCI-compliant Stripe
  • HTTPS encryption for all data in transit
  • Access controls and authentication for all internal systems

No method of transmission or storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security.

6. Cookies and Tracking

We use essential cookies for authentication and session management. We do not use third-party advertising trackers or sell data to ad networks.

7. Your Rights

Under Singapore's PDPA and applicable laws, you have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate or incomplete data
  • Withdraw consent for data processing (which may affect your ability to use the Service)
  • Request deletion of your account and associated data

To exercise any of these rights, contact us at [email protected].

8. International Data Transfers

Our servers and third-party service providers may be located outside Singapore. By using the Service, you consent to the transfer of your data to jurisdictions that may have different data protection standards. We take reasonable steps to ensure your data remains protected in accordance with this policy.

9. Children's Privacy

The Service is not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Continued use of the Service after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

← Back to home