This Privacy Policy explains how TechBuilders LLC (“ReviewFire,” “we,” “us,” or “our”) collects, uses, and shares personal information when you visit reviewfire.com, sign up for an account, or use our reputation management services (collectively, the “Services”). By using the Services, you agree to this Policy.
1. Information We Collect
Information you provide directly: name, email, phone, company name, billing details, the content of feedback or review-request campaigns you upload, and any messages you send us.
Information collected automatically: IP address, browser type, device identifiers, pages visited, referrers, and other usage data. We use cookies and similar technologies as described in our Cookie Policy.
Information from third parties: reviews data from platforms you connect (Google Business Profile, Facebook); listing details for directories you choose to track (e.g., Yelp, TripAdvisor, OpenTable); integration data from connected services (Mailgun, Google Maps); and authentication data from identity providers.
2. How We Use Information
- To operate, maintain, and provide the Services to you and your customers.
- To send review requests, surveys, and transactional notifications on your behalf.
- To aggregate and analyze review data, including sentiment analysis and reporting.
- To bill, prevent fraud, and enforce our Terms of Service.
- To communicate with you about your account, product updates, and security alerts.
- To improve the Services, including using de-identified or aggregated data for benchmarks.
- To comply with legal obligations and respond to lawful requests.
3. How We Share Information
We do not sell personal information. We share information only with:
- Service providers (e.g., cloud hosting, email/SMS delivery, payment processing, analytics) bound by confidentiality and data-processing terms.
- Review platforms and integrations you choose to connect (e.g., Google Business Profile).
- Legal & safety: when required by law, subpoena, or court order, or to protect the rights and safety of users and the public.
- Business transfers: in connection with a merger, acquisition, or sale of assets, subject to the protections of this Policy.
4. Your Rights & Choices
Depending on where you live, you may have the right to access, correct, delete, or port your personal information, and to opt out of certain uses. California residents have rights under the CCPA/CPRA, including the right to know what personal information we collect and to request deletion. To exercise these rights, contact us at [email protected].
You can unsubscribe from marketing emails using the link in any message. Account-related transactional emails are not optional while your account is active.
5. Google API Services User Data
This section explains how ReviewFire accesses, uses, stores, and shares data obtained through Google APIs, in compliance with the Google API Services User Data Policy, including its Limited Use requirements.
5.1 Scopes we request
When you connect your Google account to ReviewFire, we request your permission for the following OAuth scopes:
https://www.googleapis.com/auth/business.manage— to read and manage your Google Business Profile accounts, locations, reviews, and (when you initiate the action) post owner responses to reviews on your behalf.https://www.googleapis.com/auth/userinfo.email— to identify which Google account you have connected to your ReviewFire workspace, so we can show it in the integrations page and refresh tokens correctly.
5.2 Google user data we access
Specifically, ReviewFire accesses, collects, or interacts with the following Google user data:
- Your Google account email address (from the
userinfo.emailendpoint) — to identify the connected account. - Your Google Business Profile accounts and locations — names, IDs, addresses, categories, hours, primary phone, and other publicly listed business details — so you can choose which locations to monitor inside ReviewFire.
- Customer reviews on your Google Business Profile locations — the reviewer’s display name, star rating, review text, timestamp, and any existing owner reply.
- OAuth access and refresh tokens — issued by Google so we can make API calls on your behalf during the authorized session.
We do not request, access, or store: Gmail message content, Google Drive files, Google Calendar events, Google Photos, Google Contacts, location history, or any other Google user data beyond the scopes listed above.
5.3 How we use the data
We use Google user data only for the user-facing features you explicitly enable inside ReviewFire:
- Aggregating your reviews into one dashboard alongside reviews from other platforms you connect.
- Notifying you when new reviews arrive — particularly negative reviews — so you can respond quickly.
- Computing analytics on your own reviews (average rating, sentiment, review velocity, response rate) and displaying them to you.
- Letting you post owner responses to your reviews from inside ReviewFire (when you click “Reply” — we never post on your behalf without an explicit action by you or a member of your workspace).
- Maintaining the connection — refreshing tokens, showing the connected account email in the integrations page, and letting you disconnect at any time.
5.4 Limited Use compliance
ReviewFire’s use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:
- We use Google user data only to provide and improve the user-facing features described above.
- We do not transfer Google user data to any third party except (a) infrastructure providers acting as our processors (e.g., our cloud host and database provider, bound by data-processing terms), (b) as necessary to provide and improve the features you use, (c) to comply with applicable law, or (d) as part of a merger, acquisition, or sale of assets with notice to you.
- We do not use Google user data for serving advertisements, building advertising profiles, or determining creditworthiness.
- We do not allow humans to read Google user data unless we have your affirmative agreement for specific messages, doing so is necessary for security purposes (such as investigating abuse), to comply with applicable law, or for ReviewFire’s internal operations where the data has been aggregated and anonymized.
- We do not use Google user data to develop, improve, or train generalized or non-personalized AI and/or ML models. Where ReviewFire uses AI to draft suggested replies to your own reviews, only that specific review text is sent, on demand, to the AI provider for that single request; it is not retained for training and is not used to train any model.
- We do not sell Google user data.
5.5 Storage, retention, and security
Reviews, location metadata, and your connected Google account email are stored in our managed Postgres database hosted in the United States. OAuth access and refresh tokens are stored in the same database with access strictly limited to the ReviewFire service and operational personnel. Data is encrypted in transit (TLS 1.2+) and at rest at the storage layer. We retain Google user data only as long as your account remains connected and you have an active ReviewFire workspace. When you disconnect your Google account inside ReviewFire (Settings → Integrations → Disconnect) or close your ReviewFire account, we revoke the tokens with Google and delete the associated Google user data from our active systems within 30 days. Backup copies cycle out within an additional 30 days.
5.6 How to revoke access
You can disconnect ReviewFire from your Google account at any time:
- From inside ReviewFire: Settings → Integrations → Google Business Profile → Disconnect.
- From Google: visit myaccount.google.com/permissions and revoke access for “ReviewFire.”
To request deletion of Google user data ReviewFire holds about you (beyond what automatic disconnect deletes), email [email protected]. We process verified deletion requests within 30 days.
6. Security
We use industry-standard administrative, technical, and physical safeguards including TLS in transit, encryption at rest, role-based access controls, and continuous monitoring. No system is perfectly secure; if you believe your account has been compromised, contact us immediately.
7. Data Retention
We retain personal information for as long as your account is active and as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. You may request deletion at any time, subject to retention periods required by law.
8. Children’s Privacy
The Services are not directed to children under 13, and we do not knowingly collect personal information from them. If you believe a child has provided us information, contact us and we will delete it.
9. International Users
The Services are operated from the United States. By using the Services, you consent to the transfer and processing of your information in the U.S. and other countries that may have different data protection rules than your country of residence.
10. Changes to this Policy
We may update this Policy from time to time. We will post the updated version with a new “Last Updated” date and, where required by law, notify you directly. Material changes take effect 30 days after notice.
11. Contact Us
Questions about this Policy or your data? Email [email protected] or write to TechBuilders LLC, 2591 Dallas Pkwy Ste. 300, Frisco, TX 75034.
Governing law: Texas, United States. This Policy is provided for informational purposes and does not constitute legal advice.