Laterr

Privacy Policy

Last updated: February 2026

1. What we collect

When you use Laterr, we collect:

  • Email address — to deliver your message and send confirmations
  • Phone number — only if you choose phone call delivery
  • Message content — your text and/or voice recording
  • Delivery preferences — date, time, timezone, delivery method
  • Payment information — processed securely by Stripe (we never see your card details)

2. How we use your data

  • Deliver your scheduled messages at the time you choose
  • Send confirmation and cancellation emails
  • Process payments and refunds
  • Send promotional reminders (only if you opt in, max 2/month)

3. Third-party services

We use the following services to operate Laterr:

  • Supabase — database and file storage (messages, voice recordings)
  • Stripe — payment processing
  • Twilio — phone calls, SMS delivery, and phone verification
  • Resend — email delivery
  • Vercel — hosting and serverless functions

Each service has its own privacy policy. We only share the minimum data required for each service to function.

4. Data retention

  • Messages are stored until delivered, then retained for 90 days for support purposes
  • Voice recordings are stored in Supabase Storage until 90 days after delivery
  • Cancelled messages are marked as cancelled but retained for refund processing
  • Payment records are retained as required by financial regulations

5. Your rights

Under GDPR and applicable law, you have the right to:

  • Access — request a copy of the personal data we hold about you
  • Deletion — request erasure of your data
  • Portability — receive your data in a structured, machine-readable format
  • Restriction — ask us to pause processing of your data
  • Objection — object to processing based on legitimate interests
  • Cancel any pending message using the link in your confirmation email
  • Unsubscribe from promotional emails at any time via the link in those emails

To exercise any of these rights, contact us at hello@laterr.app

5a. Legal basis for processing (GDPR Article 6)

  • Delivering your message — processing is necessary to perform the service you requested (Art. 6(1)(b))
  • Payment processing — necessary for the performance of a contract (Art. 6(1)(b))
  • Promotional emails — based on your consent, which you can withdraw at any time (Art. 6(1)(a))

6. Cookies

Laterr uses minimal cookies:

  • Session storage — to preserve your form state during Stripe checkout redirects
  • Session authentication — HTTP-only cookie used for authorized internal access

We do not use tracking cookies or third-party advertising cookies.

7. Security

We protect your data through:

  • HTTPS encryption on all connections
  • Server-side input validation
  • Rate limiting on all API endpoints
  • Stripe PCI-compliant payment processing
  • Row-level security on our database

8. Contact

Questions about this policy? Email us at hello@laterr.app