Your Data

Data Use and Consent Process

If you create a task that monitors an email address provided by Gmail then you need to go through a consent process. This short video shows the process and describes how we use your data (we don't!).

Service Description

• This is a service that keeps firms compliant with Data Removal Requests and Privacy Rights Requests in accordance with CCPA and GDPR.

  • As well as forthcoming legislation in other US States.

• During set up the user gives consent for the app to scan a user-specified email address. If that email is provided by google (Gmail) the user is taken through an oAuth consent flow that gives the required permissions to the app.

• Once set up, the web app monitors that email address. At user-specified intervals, the web app will scan unread emails in this Gmail address looking for specific words in the Subject Text and/or Body Text.

• When the web app finds an unread email meeting specific criteria it will generate a response based on a template and reply to the sender.

  • The information from the email is then saved on our servers in a customer specific table in our data base. This data is salted and encrypted using SHA-256 encryption.

How We Use Your Data

• The short answer is our firm does nothing with customer data.

  • We do not access or use profile information relating to the Gmail account.

  • We do not read the contents of emails that do not match the criteria. The only way for that to happen is for the user themselves to change the criteria manually.

  • We do not access the data that is stored by our customers.

  • When a user deletes a task or their account , we hold the data for 30 days before deleting it. The data acts as an audit trail for compliance teams, we offer users a cooling-off period since this audit trail might be important in the future.