Privacy Policy

1.1   Information you provideAccount & Contact: name, email, phone, job title, password (hashed), preferences.Billing: billing name, address, tax identifiers; payment card data is handled by our payment processor (we do not store full card numbers).Leads & Content: CSV uploads, ICP definitions, notes, message templates, replies, and any content or files you provide.Communications: support requests, feedback, survey responses.Integrations: when you connect accounts (e.g., Gmail, Calendly, HubSpot), we receive the OAuth tokens and scoped data necessary to operate features you enable.
‍
1.2   Information collected automaticallyUsage & Log Data: pages viewed, features used, timestamps, referral URLs, crash logs, diagnostics.Device/Technical: IP address, browser, OS, device type, locale, general location (derived from IP).Cookies/Similar Tech: pixels, tags, local storage for authentication, analytics, preferences, and advertising (see §5).
‍
1.3   Information from other sourcesPublic/Third-Party Sources: publicly available business/professional data (e.g., corporate websites, news/public posts), commercial data vendors, enrichment providers.LinkedIn & Public Web: where you instruct the Service to research public web pages (including public LinkedIn pages), we may collect publicly available business contact and profile details consistent with applicable law and platform terms.CRMs/Calendars/Email: if you connect HubSpot, Calendly, or Gmail, we access the minimal data needed to provide requested features (e.g., send emails, read replies for sequencing status; read free/busy to book meetings).

You are responsible for having a lawful basis to upload or connect third-party contacts/leads to the Services.

We process personal information to:Provide the Services (account setup, authentication, sequencing, follow-ups, calendar scheduling, analytics, deliverability).Operate automations you enable (e.g., drafting and sending outreach, classifying responses, updating CRM fields).Personalize content (e.g., tailoring outreach based on your ICP and instructions).Secure & maintain the Services (monitoring, preventing abuse/fraud, troubleshooting, support).

Improve performance, usability, and reliability (aggregated and de-identified usage insights).Communicate administrative messages, product updates, billing, and (where permitted) marketing communications.Comply with law and enforce our Terms of Use.We do not use your identifiable Customer Data to train generalized models used for other customers without your express written consent. We may use aggregated/de-identified telemetry to improve the Services.

Where these laws apply, our legal bases include:Contract: to deliver the Services you requested.Legitimate Interests: to secure and improve the Services; to send product updates to business users; to research publicly available business data

for B2B outreach consistent with law and platform terms; to prevent fraud/misuse.Consent: for certain marketing, cookies/analytics, and specific optional data uses.Legal Obligation: to comply with applicable laws, tax, and regulatory requirements.Vital Interests: rarely, to prevent serious harm.When we act as a processor for a customer (e.g., processing leads they uploaded), that customer is the controller; our DPA applies.

We share personal information with:

Service Providers / Sub-processors (bound by contract, confidentiality, and security obligations), such as:

Cloud & Hosting/Infra: (e.g., major cloud providers, CDN)Analytics/MonitoringEmail & Communication Infrastructure (including Unipile API where configured)

AI/LLM Providers: Google Vertex AI (Gemini family) for model inference you enable

Crawling/Enrichment: FireCrawl(er) or similar when you enable web research

Scheduling/CRM: Calendly, HubSpot integrations you

connectPayments: third-party payment processor (card data handled by them, not stored by us)Affiliates (for support and operations) subject to this policy.

Compliance & Legal: to respond to lawful requests or protect rights, safety, and security.Business Transfers: in connection with mergers, acquisitions, or financing.We do not sell personal information or share it for cross-context behavioral advertising where restricted by law.

We use:

Essential cookies (authentication, security).Analytics/performance (usage measurement, product improvement).Functionality (preferences).Advertising/retargeting (where permitted; you can opt out per your region’s rules).Controls: Manage cookies via our on-site banner/settings and your browser settings. Some features may not work without essential cookies.

If you use a third-party login, we receive the data that provider shares under your settings. Use is as described here and by the provider’s privacy policy.

We may process data in countries other than yours. When required, we use appropriate safeguards (e.g., SCCs, contractual measures) to protect personal information during transfers.

We keep personal information only as long as necessary to provide the Services and meet legal obligations. Upon verified account deletion, we delete your account data immediately, with limited residual retention in encrypted backups/logs for security, fraud prevention, or legal compliance, after which it is permanently purged in line with routine backup cycles.

We implement reasonable and appropriate technical and organizational safeguards (access controls, encryption in transit, least-privilege, monitoring). No system is perfectly secure; transmission is at your own risk.

The Services are not directed to individuals under 18. If we learn we have collected data from a minor, we will delete it.

11.1   india (DPDP Act, 2023)You may have rights to access, correct, and erase personal data, and to grievance redressal. You can exercise these rights by emailing hello@inagent.ai.  We will respond per applicable timelines.

11.2  EEA/UK/Switzerland (GDPR/UK GDPR)Rights may include: access, rectification, erasure, restriction, portability, and objection (including to direct marketing and certain profiling). Where processing is based on consent, you can withdraw consent at any time. Email hello@inagent.ai.
11.3  United States (State Laws)Depending on your state (e.g., CA, CO, CT, UT, VA), you may have rights to access, delete, correct, and opt out of certain processing. See Annex A below for state-specific disclosures and how to exercise your rights.Marketing Opt-Out: Use the unsubscribe link in our emails, cookie controls on our site, or email hello@inagent.ai.
‍
Requests: We may need to verify your identity. Authorized agents may submit requests where permitted by law with proof of authority.

12.1  Google API Services — Limited Use (Gmail/Calendar)Where you connect Gmail or Google Calendar, our use and transfer of Google user data complies with the Google API Services User Data Policy, including Limited Use requirements. We only request the minimum scopes needed; we do not sell Google user data or use it for advertising; we use it solely to provide/maintain the features you enabled (e.g., draft/send emails you instruct, read replies for sequence state, read free/busy for scheduling).

12.2  Google Vertex AI (Gemini Family) — Model InferenceIf you enable features powered by Vertex AI / Gemini, your prompts, inputs, and outputs may be processed by Google under its applicable terms. We do not send your Google user data (from Gmail/Calendar) to Vertex AI unless you explicitly include it in a prompt or enable a workflow that requires it.

12.3  LinkedIn & Public Web DataWhere you instruct research on public web pages (including public LinkedIn pages), we collect publicly available business information consistent with applicable law and platform terms. You are responsible for ensuring your use of such data (including contacting leads) is lawful and compliant (e.g., consent/opt-out requirements, local marketing rules, do-not-call lists).

12.4  Other Processors/ToolsWe may use Unipile API (email/send/reply handling), FireCrawl(er) (web research), Calendly (scheduling), HubSpot (CRM). We engage each as a service provider under contractual and security commitments.

The Services may use algorithmic techniques to help prioritize leads, personalize messages, classify replies, and suggest timing. Human review and control remain with you. You can object to direct-marketing profiling at any time and request human review of significant decisions where required by law.

We currently do not respond to DNT signals. Where legally required, we honor Global Privacy Control (GPC) signals for opt-out of certain cookies or “sharing” under state law.

We may update this policy from time to time. Material changes will be notified via the Services or email. The “Last updated” date shows the effective date.

Questions, requests, or complaints about this policy or our data practices:
‍
hello@inagent.aiInagent AI
Blooming Co-Working, 2nd Floor, Vaishnavi Sapphire Centre, Tumkur Rd, Yeswanthpur, Bengaluru, Karnataka 560022, India