Heard Logo

Dev
Recall

Privacy Policy

Effective: August 1, 2025  ·  Last Updated: March 2026

This Privacy Policy describes how DevRecall ("we", "our", or "us") collects, uses, and protects your personal information when you use our platform at devrecall.com. By using DevRecall, you agree to the practices described in this policy.

1. Information We Collect

We collect information you provide directly and data generated through your use of the service.

Account Information

When you register, we collect your email address and name (if provided). Authentication is handled by Clerk, which may also store profile details and session tokens on our behalf.

Content You Create

Notes, pages, folders, bookmarks, and any other content you create within DevRecall is stored in our database and associated with your account.

Usage & Technical Data

  • Pages visited, features used, and interaction patterns
  • Device type, operating system, and browser
  • IP address and approximate location
  • Referral source and session duration

2. How We Use Your Information

  • Provide the service — operate, maintain, and improve DevRecall features.
  • Personalization — tailor content suggestions based on your stack and activity.
  • Communication — send transactional emails (account, security) and, only with your consent, promotional content.
  • Analytics — understand how users interact with the platform to prioritize improvements.
  • Security — detect, prevent, and respond to fraudulent or abusive activity.
  • Legal compliance — meet obligations under applicable laws and respond to lawful requests.

3. Data Sharing & Third Parties

We do not sell your personal data. We work with the following service providers who process data on our behalf:

ProviderPurposeData shared
ClerkAuthentication & user managementEmail, name, session tokens
Neon (PostgreSQL)Database storageAll user-generated content
VercelHosting & CDNRequest logs, IP addresses
OpenAIAI content generationFolder/page names in prompts
ResendTransactional email deliveryEmail address
SentryError monitoringAnonymized error traces
Vercel AnalyticsUsage analyticsAnonymized usage data

All providers are contractually bound to protect your data and may only use it to perform services for us.

4. Cookies & Tracking

We use the following types of cookies:

  • Essential cookies — required for authentication sessions and core functionality. Cannot be disabled.
  • Preference cookies — remember your UI settings and sidebar configuration.
  • Analytics cookies — aggregate, anonymized data to understand platform usage (Vercel Analytics).

You can disable non-essential cookies in your browser settings, though this may affect your ability to log in and use certain features.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the service.

  • If you delete your account, your data will be deleted or anonymized within 30 days, except where retention is required by law.
  • Server logs may be retained for up to 90 days for security and debugging purposes.
  • Database backups are retained for up to 30 days before permanent removal.

6. Data Security

We implement industry-standard technical and organizational measures to protect your data, including:

  • TLS/HTTPS encryption for all data in transit
  • Encrypted database storage at rest (Neon)
  • Role-based access control — your data is only accessible to you
  • Authentication managed by Clerk with MFA support

No system is 100% secure. While we take every reasonable precaution, we cannot guarantee absolute security. In the event of a data breach, we will notify affected users as required by law.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access — request a copy of the personal data we hold about you.
  • Correction — update or correct inaccurate information in your account settings.
  • Deletion — request deletion of your account and associated data.
  • Portability — request your data in a machine-readable format.
  • Opt-out — unsubscribe from marketing emails at any time via the link in any email we send.
  • Withdraw consent — where processing is based on consent, you may withdraw it at any time.

To exercise any of these rights, contact us at support@devrecall.com. We will respond within 30 days.

8. Children's Privacy

DevRecall is intended for users aged 13 and older. We do not knowingly collect personal data from children under 13. If we become aware that a child under 13 has provided us with personal information, we will delete it promptly. If you believe a child has submitted data to us, contact us at support@devrecall.com.

9. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last Updated" date at the top of this page and, where appropriate, send an email notification. We encourage you to review this policy periodically.

10. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:

DevRecall

Email: support@devrecall.com

Website: devrecall.com