Supereye

Legal

Privacy Policy

This policy explains what information Supereye processes when you use our service and the choices you have.

Last updated:

Overview

Supereye ("we", "us", "our") operates a unified workspace that connects your email, calendar, and productivity tools. This Privacy Policy describes how we handle personal information when you visit our marketing site, create an account, or use the application at /workspace.

By using Supereye, you agree to the practices described here. Please also read our Terms of Service.

Data we collect

Account information

  • Name and email address from Google sign-in or registration
  • Optional password hash if you enable email/password sign-in
  • Profile preferences, workspace settings, and keyboard shortcut overrides

Connected service data

When you connect Gmail, Google Calendar, or GitHub, we access data through OAuth on your behalf. This may include email metadata and content, calendar events, and integration notifications needed to provide inbox, scheduling, and triage features. Data is synced and cached in our database to improve performance.

Usage and billing

  • AI usage events and token consumption for billing and quotas
  • Password reset tokens and transactional emails when you request account recovery
  • Audit logs for administrative actions (admin accounts only)
  • Standard server logs (IP address, user agent, timestamps) for security and debugging

How we use data

We use your information to:

  • Authenticate you and maintain your session
  • Display, search, send, and organize email and calendar data you authorize
  • Run AI triage, drafting, and agent features you request
  • Process subscriptions, token top-ups, and enterprise billing
  • Improve reliability, prevent abuse, and comply with legal obligations

We do not sell your personal information. We do not use your private email content to train public foundation models.

Third-party integrations

Supereye uses Google OAuth for sign-in and Corsair-powered integrations for Gmail, Google Calendar, and GitHub. Each provider's own privacy policy governs data they process. You can revoke access at any time by disconnecting integrations in your profile or through the provider's account settings.

AI features

When you use AI chat, triage, or reply assistance, relevant message context may be sent to configured AI providers (such as Mistral or OpenAI) to generate a response. We send only what is needed for the feature you invoke. AI outputs are shown to you in the app; you remain responsible for reviewing before sending email or taking action.

Data retention

We retain account and synced data while your account is active. If you delete your account, we remove or anonymize associated personal data within a reasonable period, except where retention is required for legal, security, or billing purposes.

Security

We use industry-standard measures including encrypted transport (HTTPS), hashed passwords, scoped API access, webhook verification, and role-based access controls. No method of transmission or storage is completely secure; please use a strong password and protect your OAuth accounts.

Your rights

Depending on your location, you may have rights to access, correct, delete, or export your personal data, and to object to or restrict certain processing. To exercise these rights, contact us or delete your account from Profile settings.

Contact

Privacy questions: legal@supereye.app

See also: About Supereye · Terms of Service