EmailAI

Privacy Policy

Last Updated: April 3, 2026

Overview

This application allows users to send email outreach campaigns using their own Google account. We take your privacy seriously and are committed to protecting your personal information.

Google Account Access

We access your Google account only with your permission to:

  • Authenticate your identity - Verify who you are
  • Send emails on your behalf via Gmail - Deliver campaigns through your account
Google Data We Access

With your explicit permission, we access the following Google data:

Authentication Data

  • Email address (for account identification and sender identity)
  • Google User ID (for account linking)
  • Basic profile information (name)

Gmail API Access

  • Send emails - Deliver your outreach campaigns through your Gmail account
  • Scope: gmail.send only (does NOT read your emails)

Google Sheets API Access

  • Import recipients - Read email lists from your Google Sheets
  • Export results - Write campaign delivery results back to your Google Sheets
  • Scope: Full spreadsheet read/write access (only to sheets you select)

Google Drive API Access

  • List spreadsheets - Display your Google Sheets files for selection
  • Scope: Metadata only (file names, IDs, links) - does NOT access file contents except through Sheets API
What We Do NOT Do
  • Store your email password
  • Read or store your personal emails
  • Access your Gmail inbox or read your personal emails
  • Store your Google Sheets data on our servers
  • Access Google Drive file contents (except through Sheets API for files you explicitly select)
  • Share your data with third parties
Data Storage & Security

What We Store

  • Database: Your email address and Google User ID for account identification
  • Session Storage: OAuth access tokens and refresh tokens (required to interact with Google APIs on your behalf)
  • Browser Session: Campaign drafts, recipient lists, and campaign results during your active session

What We Do NOT Store

  • • Your Gmail password or Google account credentials
  • • Access to read your personal emails
  • • Long-term storage of your campaign data (data persists in your browser session only)

Token Storage & Security

OAuth access and refresh tokens are stored securely in your session to authorize API calls to Google services. These tokens:

  • • Are required to send emails via Gmail API
  • • Are required to access your Google Sheets for import/export
  • • Automatically refresh when expired
  • • Are cleared when you sign out
How We Use Google User Data

Primary Purpose

Your Google data is used exclusively to enable email outreach campaigns through your own Google account. All actions are performed on your behalf using your authorized Google account.

Specific Use Cases

Authentication & Account Management:

Your email address and Google User ID are used to identify your account and maintain your session.

Email Campaign Delivery:

Your Gmail account is used to send emails to recipients you specify. Each email is sent individually through the Gmail API using your authorized access token.

Recipient List Management:

Google Sheets integration allows you to import recipient lists from your spreadsheets and export campaign delivery results (status, timestamps, message IDs) back to your sheets.

File Selection:

Google Drive metadata is used only to display your available spreadsheet files for selection.

Data Sharing & Disclosure

Third-Party Services

Your data is shared with Google services solely to execute the functions you request:

  • Gmail API: Emails you send are delivered through Google's email infrastructure
  • Google Sheets API: Recipient lists and campaign results are stored in your Google Sheets
  • Google Drive API: Spreadsheet metadata is retrieved to display your available files

No Other Sharing

We do not sell, rent, or share your data with any third parties except:

  • • Google services (as described above) when you explicitly authorize an action
  • • Service providers who assist in operating our service (under strict confidentiality obligations)
  • • As required by law
Data Retention & Your Rights

Data Retention

  • Account Data: Your email and Google User ID are retained until you delete your account
  • Session Tokens: OAuth tokens are cleared when you sign out or expire after inactivity
  • Campaign Data: Stored in your browser session only and cleared when the session ends

Your Rights

You have the right to:

  • Access - Request a copy of your data
  • Delete - Request deletion of your account and associated data
  • Revoke Authorization - Disconnect your Google account at any time

How to Revoke Google Access

To revoke this application's access to your Google account:

  1. Go to Google Account Permissions
  2. Find this application in the list of third-party apps
  3. Click "Remove Access"

To Delete Your Account

Contact us at the email address below to request account deletion.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

johnwee35@gmail.com