← Back to home

Privacy Policy

Last updated: April 14, 2026

1. Introduction

Blorp Technologies Inc. ("we," "us," "our") operates the Blorp SMS marketing platform at goblorp.com. This Privacy Policy explains what information we collect, how we use it, and your choices regarding your data.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and authentication credentials. If you sign up with Google, we receive your name and email from Google's OAuth service. We also store your business name and phone number preferences.

2.2 Contact Data

You may upload customer contact information (names and phone numbers) via CSV import or Google Contacts integration. When you connect Google Contacts, we access your contact list through Google's OAuth API with your explicit permission. We store this data to enable you to send messages through the Service.

2.3 Message Data

We store the content of SMS messages you send and receive through the Service, including message templates, scheduled messages, and conversation history. This data is necessary to provide two-way messaging functionality and delivery reporting.

2.4 Billing Information

Payment information (credit card numbers, billing addresses) is collected and processed directly by Stripe. We do not store your full payment card details on our servers. We receive and store your Stripe customer ID and subscription status.

2.5 Usage & Analytics Data

We use Vercel Analytics to collect anonymous usage data including page views, device type, and browser information. This helps us understand how the Service is used and improve performance. We also track message delivery metrics (sent, delivered, failed) for your dashboard reporting.

2.6 Opt-Out Records

We maintain records of recipients who have opted out of receiving messages from your account. This data is retained to ensure ongoing TCPA compliance, even if you delete other contact information.

3. How We Use Your Information

  • To provide and operate the Service, including sending and receiving SMS messages on your behalf.
  • To process payments and manage your subscription.
  • To enforce opt-out requests and maintain TCPA compliance.
  • To send you account-related communications (billing receipts, service updates, security alerts).
  • To analyze usage patterns and improve the Service.
  • To detect and prevent fraud, abuse, or violations of our Terms.

4. Third-Party Services

We use the following third-party services to operate Blorp. Each has its own privacy policy governing data it processes:

  • Twilio— Sends and receives SMS messages and handles phone calls on your behalf. Twilio processes phone numbers, message content, and call metadata. Your data is subject to Twilio's Privacy Statement.
  • Firebase (Google) — Provides authentication and cloud database storage for your account and application data.
  • Stripe— Processes payments and manages subscriptions. Stripe handles your payment card information directly.
  • Google OAuth— Used for sign-in and, optionally, Google Contacts import. We only request the permissions necessary for these features.
  • Vercel— Hosts the application and provides anonymous analytics.

We do not sell your personal information to any third party.

5. Twilio & Telecommunications Data

Because Blorp relies on Twilio to deliver SMS messages and handle phone calls, certain data is shared with and processed by Twilio when you use the Service:

  • Phone numbers — both your Blorp number and your recipients' numbers are transmitted to Twilio to route messages and calls.
  • Message content — the body of each SMS you send or receive passes through Twilio's infrastructure.
  • Call metadata — call duration, forwarding destination, and caller ID are processed by Twilio for call forwarding.
  • Delivery status — Twilio provides message delivery confirmations and error codes back to Blorp for your dashboard reporting.

Twilio processes this data under its own Privacy Statement and Data Protection Addendum. Twilio may retain message logs and metadata in accordance with its own retention policies and applicable telecommunications regulations.

6. Data Retention

  • Account data is retained for as long as your account is active.
  • Message history is retained for up to 12 months after sending, unless you delete it sooner.
  • Contact data is retained until you delete it or close your account.
  • Opt-out records are retained indefinitely to ensure compliance, even after account closure.
  • Billing records are retained as required by tax and accounting regulations.
  • Upon account deletion, we will remove your personal data within 30 days, except where retention is required by law.

7. Data Security

We use industry-standard security measures to protect your data, including encrypted connections (HTTPS/TLS), secure authentication via Firebase, and Stripe's PCI-compliant payment processing. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate data.
  • Deletion: Request deletion of your account and personal data.
  • Export: Request your data in a portable format.
  • Opt-Out: You can unsubscribe from marketing emails at any time. (Note: you cannot opt out of transactional account emails while your account is active.)

To exercise any of these rights, contact us at saranshahuja614@gmail.com.

9. TCPA Compliance

Blorp is designed to help you comply with the Telephone Consumer Protection Act (TCPA). We automatically process opt-out keywords (such as STOP) and maintain opt-out lists. However, you as the sender are ultimately responsible for obtaining proper consent before messaging your contacts and for complying with all applicable telecommunications regulations.

10. California Privacy Rights (CCPA)

If you are a California resident, you have the right to know what personal information we collect, request deletion of your data, and opt out of the sale of personal information. We do not sell personal information. To exercise your CCPA rights, contact us at the email address below.

11. Children's Privacy

The Service is not intended for anyone under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it.

12. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or an in-app notice. The "Last updated" date at the top of this page reflects the most recent revision.

13. Contact

If you have questions or concerns about this Privacy Policy or your data, contact us at saranshahuja614@gmail.com.