Privacy Policy

Google OAuth Data

When you connect your Google account, we access:

• Your basic profile information (name, email address)
• Gmail metadata (sender addresses, subjects, dates) for email analysis
• Permission to send emails on your behalf for data requests

Important: We do not read the content of your personal emails. We only analyze metadata to identify domains and categorize email types.

User Interaction Data

We collect information about how you use our service:

• Domains you mark as needed or unsubscribe from
• Data requests and deletion requests you send
• Your preferences and settings within the application
• Basic usage analytics to improve our service

Technical Information

• IP address and browser information
• Device type and operating system
• Cookies and session data for authentication
• Error logs and diagnostic information

Email Analysis

We analyze your email metadata to identify domains that have sent you emails, categorize them by type (marketing, social, transactional, etc.), and help you understand your digital footprint.

Privacy Request Management

We help you generate and send GDPR and CCPA compliant data requests to companies. All emails are sent from your connected Gmail account with your explicit approval.

Service Improvement

We use aggregated, anonymized data to improve our service, identify common data brokers, and enhance our privacy tools.

Security Measures

• All data is encrypted in transit and at rest
• Secure database hosting with regular backups
• OAuth tokens are stored securely and refreshed automatically
• Regular security audits and vulnerability assessments

Data Retention

We retain your data only as long as necessary to provide our service. Email analysis data is refreshed periodically, and old data is automatically purged. You can request deletion of your account and all associated data at any time.

Access Controls

Access to your data is strictly limited to authorized personnel who need it to provide technical support or improve our service. All access is logged and monitored.

Google Services

Our service integrates with Google Gmail API for email analysis and sending. We comply with Google's API Services User Data Policy and use the minimum scope necessary for our functionality.

Email Service Providers

When you send data requests through our service, those emails are sent via your connected Gmail account. We do not share your data with external email providers.

Analytics and Monitoring

We use privacy-focused analytics tools to understand how our service is used and identify areas for improvement. All analytics data is anonymized and aggregated.

Access and Portability

You can request a copy of all personal data we hold about you. We will provide this in a structured, machine-readable format within 30 days of your request.

Correction and Deletion

You can update or correct your personal information at any time through your account settings. You can also request complete deletion of your account and all associated data.

Withdrawal of Consent

You can revoke access to your Google account at any time, which will stop all data collection and analysis. You can also request deletion of existing data.

Data Processing Objection

You have the right to object to our processing of your personal data. We will respect your request unless we have compelling legitimate grounds for continued processing.