LEGAL

Privacy Policy

Last updated: April 10, 2026

1. Introduction

Reacta ("we", "us", or "our") operates the Reacta platform, accessible at reacta-ebon.vercel.app and any associated domains. This Privacy Policy explains how we collect, use, and protect your personal information when you use our service.

By creating an account or using Reacta, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Information you provide directly:

  • Name and email address (required to create an account)
  • Password (stored as a one-way bcrypt hash — we cannot read it)
  • Role (PI or student/postdoc)
  • Lab data you enter: chemical inventories, reactions, projects, messages, and uploaded references

Information collected automatically:

  • Session tokens (stored in your browser, used to keep you logged in)
  • Basic server logs (request timestamps, IP addresses) retained for up to 30 days

Payment information:

Payments are processed by Stripe. We never see or store your full card number. We store only your Stripe customer ID and subscription status.

3. How We Use Your Information

  • To provide and operate the Reacta platform
  • To send transactional emails (password resets, account notices)
  • To process subscription payments via Stripe
  • To enforce plan limits and access controls
  • To diagnose bugs and improve the service

We do not sell your data. We do not use your lab data to train AI models. We do not send marketing emails without your explicit consent.

4. Data Storage and Security

Your data is stored in a PostgreSQL database hosted on Neon (neon.tech), a SOC 2 compliant cloud database provider. Data is encrypted at rest and in transit.

We use industry-standard practices including hashed passwords, HTTPS-only connections, and JWT session tokens. However, no system is 100% secure — please use a strong, unique password.

5. Data Sharing

We share your data only with the following third-party services necessary to operate Reacta:

  • Neon — database hosting
  • Stripe — payment processing
  • Resend — transactional email delivery
  • Vercel — application hosting and edge network

We do not share your data with advertisers, data brokers, or any other third parties.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data via your profile settings
  • Delete your account and all associated data at any time from your profile page
  • Export your data — contact us and we will provide a copy within 30 days

To exercise any of these rights, email us at hello@reacta.app.

7. Cookies

We use a single session cookie to keep you logged in. We do not use advertising cookies, tracking pixels, or analytics cookies. You can clear cookies at any time in your browser settings, which will log you out.

8. Children

Reacta is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe we have inadvertently collected such data, please contact us immediately.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of significant changes by email or via a notice in the dashboard. Continued use of Reacta after changes constitutes acceptance of the updated policy.

10. Contact

Questions about this policy? Email us at hello@reacta.app.