Privacy Policy for Super Mailer

1. Introduction

Welcome to Super Mailer ("we," "us," or "our"), a service provided by Stable Co. Our web application, accessible at super-mailer.app (the "Service"), allows users to generate and send personalized emails using artificial intelligence.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service. We are committed to protecting your privacy and handling your data transparently and securely.

This policy is written to comply with the Google API Services User Data Policy, including its Limited Use requirements. By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

We only collect information that is essential to provide and improve our Service.

A. Information You Provide to Us:

• Account Information: When you register for an account by signing in with Google, we collect your name, email address, and profile picture URL from your Google Account. This is used to create and manage your account, authenticate your sessions, and personalize your user experience.
• Recipient Data: To use our core email generation feature, you must upload a list of recipients (e.g., via an Excel file). The data you provide in this list includes the recipient's name, email address, and a column for additional info. This "additional info" is used by our AI model to generate the personalized content of the email.

B. Information We Collect Automatically:

• Usage and Task History: We log metadata about the email campaigns you run. This includes:
  • The name you give your task/campaign.
  • The status of the task (e.g., pending, complete).
  • The number of recipients in the task.
  • The date and time the task was created.
• Email Performance Metrics: We use a tracking pixel to count how many times an email sent in a campaign has been opened. This is stored as an aggregated number (amount_opened) for each task. We do not track which specific individual opened an email, only the total number of opens for a given campaign to provide you with performance analytics.
• Authentication: We use JSON Web Tokens (JWTs) to manage your session securely after you log in.

3. How We Use Your Information

Your data is used strictly for the purposes outlined below:

• To Provide and Maintain the Service: We use your account information to operate your account. We use your uploaded Recipient Data (name, email, additional info) to perform the core function of the app: generating personalized emails and sending them on your behalf.
• To Generate AI Content: The recipient's name and additional info are programmatically sent to Google's Gemini API to generate the unique, personalized body of each email.
• To Send Emails: We use the gmail.send permission you grant us to send the generated emails from your own Gmail account. We act solely as an agent initiating these sends at your direction.
• To Provide Analytics: We use the aggregated open-tracking data to show you how your email campaigns are performing.
• For Account Management: We use your information to manage your credit balance, track your usage (total_sent), and communicate with you about your account.
• To Improve Our Service: We may analyze aggregated and anonymized usage data to identify trends and improve the functionality and user experience of Super Mailer.

4. How We Share and Disclose Your Information

We do not sell, trade, or rent your personal information to others. We only share data with third-party service providers (sub-processors) who are essential for us to operate the Service.

• Google (for AI Generation): To generate personalized content, we send the recipient's name and additional info to the Google Gemini large language model via their API. This data is used solely for the generation of the email text and is subject to Google's API privacy policies.
• Google (for Sending Email): The Service interacts with the Gmail API on your behalf to send emails from your account. We do not store the content of your sent emails after the sending task is complete.
• Supabase (for Data Storage): Our application and database are hosted with a third-party cloud provider. They provide the secure infrastructure on which our Service runs.

We may also disclose your information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect and defend our rights or property, or protect the personal safety of users of the Service or the public.

5. Google API Services User Data Policy Compliance

Super Mailer's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Scopes Used:

We request the following scopes:

• .../auth/userinfo.email: To get your email address for account creation.
• .../auth/userinfo.profile: To get your name and profile picture for personalizing your account.
• openid: To securely authenticate you with Google.
• .../auth/gmail.send: To send emails on your behalf, which is the core functionality of our Service.

Limited Use Disclosure:

We use the data obtained through these scopes strictly as described in this policy.

• We only use restricted scope data (gmail.send) to provide or improve our user-facing feature—sending AI-generated emails at your command.
• We do not transfer this data to third parties, except as necessary to comply with applicable law or as part of a merger, acquisition, or sale of assets.
• We do not use this data for serving advertisements.
• We do not allow humans to read this data unless we have your affirmative agreement for specific messages, it is necessary for security purposes such as investigating abuse, to comply with applicable law, or for our internal operations and even then only when the data has been aggregated and anonymized.

AI/ML Model Training Disclosure: We do not use any data obtained from Google Workspace APIs (including Gmail APIs) to develop, improve, or train generalized artificial intelligence (AI) or machine learning (ML) models. This includes data used during email generation and sending. All data is used solely to fulfill user-requested tasks and is not repurposed for training AI models.

6. Data Security

We implement a variety of security measures to maintain the safety of your personal information. This includes using SSL/TLS for data in transit, controlling access to our databases, and using secure authentication methods like JWTs.

7. Data Retention and Deletion

We believe in data minimization and only store your data for as long as necessary.

• Recipient Data (from uploaded files): This sensitive data is deleted from our systems immediately after the email sending task for that list is completed. We do not retain it.
• Task History: We retain the metadata about your campaigns (task name, recipient count, open count, etc.) for one (1) month to provide you with access to your campaign history and analytics. After one month, this data is automatically deleted.
• User Account Data: We retain your account information (name, email, profile picture, credits) for as long as your account is active with us.

You can request the permanent deletion of your account and all associated personal data at any time by contacting our support team at support@super-mailer.app.

8. Your Data Rights

You have the right to access, correct, or delete your personal information. To exercise these rights, please contact us at support@super-mailer.app. We will respond to your request in a timely manner.

9. Children's Privacy

Our Service is not intended for use by anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13.

10. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top. You are advised to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us:

• Company: Stable Co.
• App Name: Super Mailer
• Website: https://super-mailer.app
• Email: support@super-mailer.app