Privacy Policy

Last updated: · Draft (pre-launch)

Zipppo ("Zipppo", "we", "us") builds a private, searchable index over email that you explicitly connect. This policy explains what we access, how we use it, and the choices you have. By connecting an account you agree to this policy.

What we access

When you connect a Google account, we request Gmail scopes that let us read your messages to build your index, and manage a forwarding filter so new mail can be indexed going forward. We only access the account you connect.

What we store — and what we don't

We do not store your original emails or attachments. Message content is fetched, processed in memory to produce a derived index (extracted text, classifications, and numeric embeddings used for search), and the original bytes are then discarded. The derived index is stored encrypted and is scoped to your account.

How we use Google user data

Gmail data is used solely to provide the Zipppo product to you: building and maintaining your personal searchable index and answering your queries. We do not use Gmail data for advertising, and we do not sell it. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Sharing

We do not share your data with third parties except sub-processors that help us operate the service (e.g. cloud hosting and the model provider used to extract text and generate embeddings), and only as needed to provide the product. We may disclose information if required by law.

Retention & deletion

Your derived index is retained while your account is active. You can disconnect at any time, after which we delete your index and revoke our access. You may also revoke access directly from your Google Account permissions.

Security

The index is encrypted at rest and access is restricted to your account. Original message bytes are never persisted to durable storage.

Contact

Questions about this policy? Email schwartzidavid@gmail.com.