Effective Date: September 1, 2025

1. Introduction

Iris Messenger ("we," "our," or "us") provides an AI-powered email drafting tool to help small businesses respond to customer inquiries faster. This Privacy Policy explains how we handle personal data when you use our service.

2. Information We Collect

Google Account Data: When you connect your Gmail account, we request access to read incoming emails and create draft replies.

Business Profile Data: Information you provide through our intake form (e.g., services, hours, policies, FAQs, signature).

Website/Document Uploads: Content you choose to upload (e.g., policies, brochures, FAQs).

3. How We Use Your Data

  • To generate draft email responses inside your email account.
  • To personalize responses using your business profile and uploaded documents.
  • To improve service quality and monitor system performance.

We do not:

  • Sell your data to third parties.
  • Send emails on your behalf without your explicit approval (all drafts require your review and manual sending).

4. Data Storage and Security

  • Business documents and profiles are stored securely in private cloud storage (S3).
  • Access is restricted to authorized team members and services.
  • Draft emails are saved only in your email account.

4.1 Technical & Organizational Security Measures

  • Encryption in transit & at rest: TLS 1.2+ for all network traffic; AES-256 server-side encryption for stored business documents and profiles.
  • Secrets & key management: OAuth tokens and API keys are encrypted at rest and protected with IAM least-privilege roles.
  • Network isolation: Production services run in isolated VPCs with MFA on all admin accounts and routine patching.
  • Application security: Input validation, rate limiting, structured error handling, and peer-reviewed deployments.
  • Audit logging: Authentication and administrative actions are logged and monitored.

4.2 Gmail Restricted Scope Commitments

  • Limited purpose: Gmail data (subject, headers, body, threadId, labels) is used only to detect new messages, draft replies, and apply existing labels.
  • No advertising or data brokering.
  • No human access to Gmail content except (a) with your explicit consent, (b) for security/abuse investigations, or (c) as required by law.
  • No unnecessary transfer of Gmail data to third parties. Subprocessors are used only as necessary (e.g., hosting) under strict agreements.
  • Business documents you upload are kept separate from Gmail content, which remains in your Google account.

4.3 Token & Identity Handling

  • Minimal scopes: gmail.modify, gmail.send, and userinfo.email.
  • OAuth tokens are encrypted at rest and revoked upon disconnect.
  • Your Gmail address is stored only to associate tokens with your profile and display on the OAuth success page.

4.4 Access Controls & Personnel

  • Access to production data is limited to a small number of trained, authorized personnel under least-privilege IAM with MFA and logging.
  • All personnel are bound by confidentiality agreements and receive security and privacy training.

4.5 Data Retention & Deletion

  • Gmail content: Drafts and sent messages remain in your Gmail account; we do not persist Gmail message bodies outside Google.
  • Business documents & profiles: Retained while your account is active. Deleted or anonymized within 30 days of closure or request.
  • Tokens: Revoked immediately when you disconnect Iris from your Google Account or request deletion.

4.6 Incident Response

We maintain an incident response program that includes detection, investigation, remediation, and notification without undue delay in the event of a breach, consistent with applicable law.

4.7 Subprocessors & Data Location

We use reputable infrastructure providers (e.g., AWS for S3 storage). Data may be processed in the United States or other regions where our providers operate. Subprocessors are bound by strict contractual and technical safeguards.

5. User Control

You can revoke Iris Messenger's access at any time from your Google Account settings → Security → Third-party apps with account access.

You may also request deletion of your stored profile and documents by contacting us.

6. Compliance with Google API Services

Iris Messenger's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

7. Contact

For questions or requests, please contact:

📧 hello@iris-messenger.com