Privacy Policy

We process account information, organization membership, connected mail account metadata, product settings, billing records, support messages, and usage information needed to operate the service.

When you connect Gmail or Outlook, we use the provider permissions you grant to fetch, classify, summarize, search, draft, and act on email. Provider mail systems remain the source of truth for full email bodies and attachments. We store derived artifacts such as summaries, previews, drafts, metadata, bucket membership, settings, sync status, provider tokens, and limited operational logs so the product can work reliably.

If you use features such as send, archive, trash, mark read or unread, flag, attachment download, or search, we may read, create, update, or transmit provider mail data through the connected provider account as needed to perform the action.

We use information to provide the product, authenticate users, sync mail accounts, generate AI-assisted summaries and drafts, maintain product state, deliver notifications, troubleshoot issues, prevent abuse, and manage billing.

We do not use connected email content, attachments, provider tokens, or derived email artifacts to train internal, custom, generalized, or third-party AI models unless your organization explicitly opts in through a separate written agreement.

AI-assisted output can be incomplete or wrong. The product is designed to support user review, not to make final legal, compliance, financial, medical, employment, or other regulated decisions for you.

We use subprocessors such as Google, Microsoft, Apple, Clerk, Vercel, Convex, Liveblocks, Upstash, OpenAI or other AI providers, Exa, Resend, Stripe, Autumn, Vercel Blob, Mapbox, and observability providers to operate Simple Email, Pulse, Leads, native apps, and related Simple products. These providers process information only as needed for their role in the product.

Connected provider data is sent to AI providers only to complete the user-requested or configured product action, such as summarizing, classifying, drafting, searching, or answering from your connected evidence. We do not allow AI providers to use connected email content for model training.

We do not sell your personal information. We do not use connected email content for advertising.

We may update subprocessors as the product changes. Material updates will be reflected in this policy or another user-visible notice.

We retain account, billing, configuration, and derived product data while your account is active and as needed for security, legal, tax, backup, and operational purposes.

Disconnecting a mail provider stops new provider access for that connection. Summaries, drafts, previews, search metadata, bucket state, caches, and logs created before disconnect may remain until deleted through product controls, account deletion, support request, or normal retention processes.

You can request account deletion, export, or correction by contacting us. We usually complete verified deletion requests within 30 days, except where retention is required for security, billing, legal, backup, or abuse-prevention reasons.

Backups and security logs may take longer to expire, but they are restricted from ordinary product use while they age out of retention.

We use technical and organizational safeguards intended to protect information, including OAuth-based provider access and encrypted secret storage where applicable. No internet service can guarantee absolute security.

Human access to connected provider data is limited to circumstances such as support you request, security investigation, legal compliance, or preventing abuse, and is restricted to personnel or subprocessors with a need to know.

Do not send secrets, passwords, or highly sensitive regulated information to the service unless your organization has approved that use.

You can choose which accounts to connect, disconnect providers, manage settings, update billing information, and contact us about access, correction, export, or deletion requests.

Some requests may require identity verification and may be limited by security, legal, billing, or backup requirements.

Questions about privacy can be sent to info@tailoredai.solutions. We may update this policy as the product changes. The updated date shows the latest revision.