Privacy Policy
Effective date: February 28, 2026
What YourSec accesses
YourSec accesses Gmail metadata like sender, subject, and snippet to classify and summarize your inbox. Full email content is only accessed when analyzing a conversation you explicitly ask us to monitor.
How data is used
Data is used only to generate your Daily Brief, provide goal monitoring, and prepare user-approved actions. We do not sell your data, and we do not share it with third parties for advertising.
Data retention
Email metadata is retained while your account is active. When you disconnect, all associated data is deleted within 30 days.
Data protection
All data is transmitted over HTTPS/TLS encryption. Email data is stored in encrypted PostgreSQL databases hosted on Vercel's infrastructure. Access to user data is restricted to authenticated sessions only. We do not store email passwords or Gmail credentials — authentication is handled entirely through Google's OAuth 2.0 protocol, and access tokens are encrypted at rest. AI processing is performed via Anthropic's Claude API using encrypted API calls — email content is processed in real-time and not stored by the AI provider.
Third-party services
We use Anthropic's Claude API for AI-powered email classification and summarization. Email content sent to the API is processed in real-time and is not stored by Anthropic. We use Vercel for hosting and PostgreSQL for data storage. No third party receives your data for advertising purposes.
Your rights
You can disconnect Gmail and delete your account at any time from Settings. Upon disconnection, all your email data and briefs are permanently deleted. You can request a copy of your data by contacting hello@yoursec.ai.
User control and deletion
You can disconnect YourSec at any time. When disconnected, your associated YourSec data is deleted.
Contact
For questions, contact hello@yoursec.ai.