Refly

Privacy Policy

Last updated: 9 July 2026

This Privacy Policy explains what personal data Refly (“Refly”, “we”, “us”) collects, how we use it, and the choices you have. If you have any questions, contact us at support@reflyapp.com.

1. Data we collect

2. How we use your data

3. Third-party services (subprocessors)

To deliver core features we share the minimum necessary data with:

These providers may process data on servers located outside your country (for example, the United States). We rely on their standard data-protection safeguards.

4. Data retention

We keep your data while your account is active. You can delete items at any time (soft-deleted first, then removed), and you may request full account deletion by emailing us. Rotating backups are kept for a limited period for disaster recovery.

5. Security

Data is encrypted in transit (HTTPS). Passwords are hashed. Each account’s data is isolated so users cannot access one another’s libraries. Administrative operations are restricted.

6. Your rights

Depending on your location (e.g. under GDPR, the UAE PDPL, or Türkiye’s KVKK) you may have the right to access, correct, export, or delete your personal data, and to object to certain processing. To exercise these rights, email support@reflyapp.com.

7. Cookies

We use a single essential session cookie to keep you logged in. We do not use advertising or cross-site tracking cookies.

8. Children

Refly is intended for researchers and professionals and is not directed to children under 16.

9. Changes

We may update this policy; material changes will be reflected by the “Last updated” date above.

← Back to Refly Terms of Service