← Back to Remora
Legal

Privacy Policy

Last updated: May 2026

1. Who we are

Remora Inc. ("Remora", "we", "us") operates joinremora.app — a B2B partnership network that connects SaaS products (Remoras) with distribution partners (Sharks). This policy explains what data we collect, why, and how we protect it.

2. Data we collect

  • Account data — name, email address, and profile details you provide when signing up.
  • Usage data — pages visited, actions taken in the dashboard, browser type, and IP address.
  • Widget events — impressions, clicks, and offer claims generated through the Remora widget embedded on Shark sites.
  • Lead emails — end-user email addresses collected when a visitor claims a Remora offer. These are forwarded directly to the Remora via webhook and are not stored long-term on our servers.
  • Payment data — processed by Stripe. We do not store card details.

3. How we use your data

  • To operate the platform and match Sharks with Remoras.
  • To send transactional emails (account confirmation, match notifications, payout alerts).
  • To calculate and process Shark payouts.
  • To improve the platform through aggregate, anonymised analytics.
We do not sell your data to third parties, ever.

4. Data sharing

We share data only as necessary to operate the service:
  • Stripe — payment processing.
  • Mailtrap / SMTP — transactional email delivery.
  • Supabase / PostgreSQL — database hosting.
  • Remora partners — lead emails from widget claims are forwarded to the relevant Remora via signed webhook.

5. Cookies

We use a small number of essential cookies to keep you signed in and maintain session state. See our Cookie Policy for details.

6. Data retention

We retain your account data for as long as your account is active. Widget event logs are retained for 12 months. You can request deletion at any time.

7. Your rights

Depending on your jurisdiction you have the right to access, correct, export, or delete your personal data. To exercise any of these rights, email us at privacy@joinremora.app.

8. Security

All data is transmitted over TLS. Webhook payloads are HMAC-SHA256 signed. We follow industry-standard security practices and review them regularly.

9. Changes to this policy

We may update this policy as the product evolves. We'll notify you by email of any material changes.

10. Contact

Questions? Email hello@joinremora.app.