← Back

Privacy Policy

Last updated: March 31, 2026

Eli is a relationship intelligence assistant that connects to your email and calendar accounts to help you manage communications, track commitments, and surface actionable insights. This privacy policy explains how we collect, use, store, and protect your data.

1. Data We Collect

Account Data

  • Google account information: name, email address (via Google OAuth)
  • Microsoft account information: name, email address (via Microsoft OAuth)

Email Data

When you connect your email account, we access and store the following from your inbox and sent mail:

  • Email subject lines, sender and recipient addresses
  • Email body content and snippets (previews)
  • Email metadata (date, labels, read status)
  • Unsubscribe links

We sync emails from the most recent 60 days at the time of account connection, and incrementally sync new emails thereafter.

Calendar Data

  • Event titles, times, locations, and attendees
  • Calendar metadata for conflict detection

Derived Data

  • AI-drafted email replies
  • Commitment extraction (action items from sent emails)
  • Contact and sender statistics
  • Lead scoring signals and relationship insights
  • Priority rankings and classifications

2. How We Use Your Data

We use your data solely to provide App functionality: email ranking and classification, AI draft generation, commitment tracking, relationship intelligence, conflict detection, and push notifications.

We do not use your data for advertising, sell your data to third parties, or use your email content for model training.

3. Encryption and Storage

Encryption at Rest

All sensitive email data is encrypted at rest using AES-128-CBC with HMAC (Fernet encryption). This includes email subjects, senders, recipients, snippets, body content, drafts, and OAuth tokens.

Encryption in Transit

All data transmitted between your device and our servers uses TLS (HTTPS). Internal service communication uses encrypted networking.

Infrastructure

  • Application hosting: Fly.io (San Jose, CA)
  • Database: PostgreSQL with field-level encryption
  • Task queue: Redis with encrypted networking
  • Object storage: Tigris (AI model weights only, no email content)

4. Data Retention

  • Email data: Automatically deleted after 90 days from the email date. A nightly automated process purges expired emails.
  • Account data: Retained while your account is active. Deleted upon account deletion.
  • Derived data: Deleted when you delete your account or disconnect the associated email account.

Deletion from our database does not affect your Gmail or Outlook account. Your emails remain with your email provider.

5. Third-Party Sub-Processors

ServicePurposeData
Fly.ioHosting, databaseAll data (encrypted at rest)
ModalGPU inferenceTruncated snippets only (max 500 chars)
SentryError monitoringError traces only; PII disabled
Apple APNsPush notificationsSubject previews, sender names

No sub-processor receives full email bodies. Content sent to AI services is truncated and used only for real-time inference, never stored or used for training.

6. Google API Disclosure

Eli's use and transfer to any other app of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

  • We only request the minimum OAuth scopes needed (gmail.modify, calendar, userinfo.email, userinfo.profile)
  • We do not use Gmail data for advertising or market research
  • We do not allow humans to read your email content unless required for security purposes, to comply with law, or with your explicit consent
  • We do not transfer Gmail data to third parties except as described in Section 5, and only as necessary to provide App functionality

7. OAuth Token Management

  • OAuth tokens are encrypted at rest using Fernet encryption
  • When you disconnect an account, OAuth tokens are revoked with the provider and deleted from our database
  • When you delete your account, all tokens are revoked and all data is permanently deleted

8. Your Rights

  • Disconnect an account: removes all emails and tokens for that account
  • Delete your account: permanently deletes all your data including emails, preferences, commitments, insights, leads, and connected accounts
  • Revoke access: you can revoke Eli's access at any time via Google Account Permissions

9. Security

  • Field-level encryption (AES-128-CBC + HMAC) for all PII
  • TLS for all data in transit
  • OAuth 2.0 with PKCE for authentication
  • Rate limiting on all API endpoints
  • Automated data retention enforcement
  • Structured audit logging for email data access
  • No PII in error monitoring or application logs

10. Changes

We may update this privacy policy from time to time. Material changes will be communicated through the App. Continued use after changes constitutes acceptance.

11. Contact

For privacy questions or data requests, contact: Carla.griffiths@celeri-rl.com