This Privacy and Data Policy describes how we collect, use, store, and handle information when you use our services. By using our services, you acknowledge and agree to this policy.
We may collect information including: account and registration information; email data, content, headers, metadata, and materials accessed through connected email provider APIs ("Email Data"); outputs, classifications, analytics, and insights generated through our services ("Outputs"); usage data and analytics; session information and interactions with our services; device and browser information; and any other information you provide or that we access through authorized integrations.
When an organization administrator grants access to email systems (Microsoft 365 or Google Workspace), we access email data from connected mailboxes through official provider APIs, including email headers, body content, timestamps, sender/recipient addresses, and organization user lists.
We use collected information to provide, maintain, and improve our services; to classify emails and track response metrics; to generate reports, dashboards, and notifications; to analyze usage and optimize performance; to communicate with you; for research and development; and to develop and improve our technology, including artificial intelligence and machine learning systems. We may derive insights, analytics, classifications, metrics, and aggregated data from your information for any lawful purpose. By using our services, you consent to this use.
Data provided under separate Statements of Work or Master Service Agreements is governed by those agreements.
All classifications, response time metrics, pipeline analytics, SLA data, trend analyses, aggregated statistics, and other Outputs generated through our services are our property. We retain all rights to use, analyze, aggregate, and derive insights from Outputs for any lawful purpose, including improving our services, developing our technology, training artificial intelligence systems, and creating benchmarks or industry reports. Outputs do not constitute Email Data and are not subject to the restrictions in Section 5 below.
We utilize third-party service providers, including artificial intelligence providers, cloud infrastructure, and other technology services, to deliver our services. Your information may be processed by these providers as necessary to provide and improve our services. We are not responsible for the practices, availability, or actions of third-party providers.
Email Visibility's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
When connecting a Google Workspace organization, we request the following OAuth scopes:
| Scope | Purpose |
|---|---|
gmail.readonly | Read email content for AI classification and response time tracking |
admin.directory.user.readonly | List users in the organization to identify available mailboxes |
openid, profile, email | Authenticate users for single sign-on |
The following restrictions apply solely to raw data obtained directly through Google Workspace APIs ("Google User Data") and do not apply to Outputs, derived data, classifications, metrics, or aggregated insights generated by our services from processing such data:
For clarity: classifications, response time calculations, pipeline status, SLA metrics, and all other Outputs derived from processing Google User Data are not themselves Google User Data and are governed by Sections 2 and 3 of this policy.
You may disconnect Google Workspace at any time through the Email Visibility settings page, through the Google Admin Console, or by contacting support@emailvisibility.com.
We do not sell raw Email Data. We may share information with third-party service providers necessary to deliver and improve our services; as required by law, legal process, or government request; to protect our rights, property, or safety; or in connection with a merger, acquisition, or sale of assets. We may share, publish, or license aggregated, de-identified data and Outputs without restriction.
Your information may be stored and processed in various jurisdictions as necessary to provide our services. We implement commercially reasonable security measures including encryption in transit (TLS 1.2+) and at rest (AES-256) for Email Data and OAuth tokens. No method of transmission or storage is completely secure. We cannot guarantee absolute security.
We retain Email Data as long as necessary to fulfill the purposes described in this policy, which may include the duration of your subscription and a reasonable period thereafter. We retain Outputs and derived data, including classifications, metrics, and aggregated analytics, for as long as they are useful to us, which may be indefinitely. Following termination of services, we may retain or delete Email Data at our discretion, subject to Section 5 for Google User Data. Aggregated and de-identified data may be retained indefinitely.
We use cookies, analytics tools, session tracking, and similar technologies to collect usage information, improve our services, and for security purposes. By using our services, you consent to this data collection.
Depending on your jurisdiction, you may have certain rights regarding your personal information. You may revoke email provider access at any time through the Email Visibility settings page. Contact us with any questions or requests regarding your information.
WE ARE NOT LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS, REVENUES, DATA, OR OTHER INTANGIBLE LOSSES ARISING FROM YOUR USE OF OUR SERVICES OR ANY MATTER RELATED TO THIS POLICY. THIS LIMITATION APPLIES TO THE FULLEST EXTENT PERMITTED BY LAW.
Our services are not directed to individuals under 13 years of age. We do not knowingly collect personal information from children under 13.
We may update this policy at any time. Changes are effective upon posting. Your continued use of our services constitutes acceptance of the updated policy.
This policy and any disputes arising from it are governed by the laws of the State of Delaware, USA, without regard to conflict of law provisions.
Questions regarding this policy may be directed to: support@emailvisibility.com
Own Your AI Inc.
Vancouver, British Columbia, Canada