Apply for Beta

Privacy Policy

Last updated: May 8, 2025

1. Introduction

Monssot ("we", "our", or "us") operates the Monssot email management platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service, including our web application, desktop application, and website at monssot.com.

By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

  • Your name and email address (provided via Google, Microsoft, or SMTP login)
  • Profile picture (if provided by your identity provider)

2.2 Email Data

To provide the Service, we access and process:

  • Email metadata (subject, sender, recipient, date, labels)
  • Email content (body text and HTML) for AI-powered features
  • Email attachments (only when explicitly accessed by you)

We use the Gmail API and Microsoft Graph API with the minimum scopes required to deliver our features. Email data is processed to provide sorting, drafting, and management capabilities.

2.3 Usage Data

We automatically collect:

  • Device and browser information
  • Application version and platform
  • Feature usage patterns (anonymized)
  • Error logs for debugging purposes

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Sync and display your emails within the Monssot interface
  • Generate AI-powered email suggestions and drafts
  • Categorize and organize your inbox
  • Send emails on your behalf (only when you explicitly request it)
  • Provide customer support
  • Monitor and analyze usage trends

4. Google API Services - Limited Use Disclosure

Monssot's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only use access to Google user data to provide and improve user-facing features of the Service
  • We do not transfer Google user data to third parties except as necessary to provide the Service, comply with applicable laws, or as part of a merger/acquisition with user consent
  • We do not use Google user data for serving advertisements
  • We do not allow humans to read Google user data unless we have your affirmative consent, it is necessary for security purposes, to comply with law, or the data is aggregated and anonymized

5. Data Storage and Security

Your data is stored on secure servers provided by Supabase (database) and Kinsta (application hosting). We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption in transit (TLS/HTTPS)
  • Encryption at rest for stored data
  • Row-level security policies ensuring users can only access their own data
  • Regular security audits and updates

6. Data Retention

We retain your data for as long as your account is active. Email data is synced and cached to provide the Service — we do not retain copies of your emails beyond what is necessary for the application to function.

When you delete your account, we will delete your personal data within 30 days, except where retention is required by law.

7. Third-Party Services

We use the following third-party services to operate:

  • Supabase — Authentication and database
  • Google APIs — Gmail access (with your authorization)
  • Microsoft Graph API — Outlook access (with your authorization)
  • OpenAI / Google AI — AI processing for email suggestions (email content is sent to AI providers for processing; see their respective privacy policies)
  • Kinsta — Application hosting

We do not sell your personal data to any third parties.

8. Your Rights

You have the right to:

  • Access — Request a copy of your personal data
  • Rectification — Request correction of inaccurate data
  • Erasure — Request deletion of your data
  • Portability — Request your data in a machine-readable format
  • Revoke access — Disconnect your email account at any time through Settings
  • Revoke Google permissions — Remove Monssot's access via Google Account Permissions

To exercise any of these rights, contact us at privacy@monssot.com.

9. Cookies

We use essential cookies and local storage to maintain your session and preferences. We do not use tracking cookies or third-party advertising cookies.

10. Children's Privacy

Our Service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

12. Contact Us

If you have questions about this Privacy Policy, please contact us: