Privacy Policy

Data we collect

• Account data — business users' names, email addresses, and authentication records.
• Connected-channel content — when a business connects a channel (Gmail, Google Business Profile, web forms, Meta platforms, Shopify), we receive the customer messages on that channel: email contents, review text, form submissions, chat and direct messages, and associated metadata such as sender name, address or platform identifier, and timestamps.
• Business guidelines — documents the business explicitly shares with Augury (for example a Google Drive folder of reply guidelines) to shape draft tone and content.
• Usage data — on our public website we use Microsoft Clarity, a cookieless analytics tool, to understand how visitors use the site (pages viewed, interactions, approximate region). We do not run advertising trackers and we do not sell visitor data.

How we use data

• To draft suggested replies to customer messages for business review.
• To improve a business's own drafts: past messages, approved replies, and edits are used to ground future drafts for that business only. We do not train shared or foundation models on your data, and one business's data is never used to draft for another.
• To operate, secure, and bill the service.

Message content is processed by large-language-model providers under contracts that prohibit them from training on it. Each business's data is isolated by technical controls at every layer of our system.

Meta platform data

When a business connects Meta channels (Messenger, Instagram, WhatsApp), we receive message content and platform user identifiers via Meta's APIs solely to draft that business's replies. We honor Meta's data-deletion callbacks: if you remove the connection or request deletion through Meta, the associated data is deleted automatically (see "Deletion" below).

Sharing

We share data only with the infrastructure providers needed to run the service (cloud hosting, LLM inference, email delivery, analytics as described above), bound by their own confidentiality and processing terms. We do not sell personal data, and we do not share it for advertising.

Retention

Channel content is retained while the business's connection remains active, so drafts can use conversation history. Raw webhook payloads are purged on a rolling 90-day schedule. Account and billing records are kept as long as the account exists and as required by law.

Deletion

End customers may request deletion of their personal data at augury-app.com/help/data-deletion. After email verification, matching personal data (names, contact details, message content associations) is removed automatically and the request is recorded in a permanent audit log. Deletion requests received through Meta's data-deletion callback are processed the same way. Business users can disconnect channels or close their account at any time, which stops ingestion immediately.

Security

Data is encrypted in transit and at rest. OAuth credentials are stored encrypted with managed keys. Access to production systems is restricted to authorized operators.

Contact

Privacy questions or requests: email privacy@augury-app.com.