Privacy Policy of KreMail

Last Updated: June 2025

Applies to: KreMail Platform

Data Controller: One Touch Inc.

Introduction

KreMail respects and protects your privacy. We provide a global communication tool designed for content creators to establish and manage commercial partnerships with brands. This policy explains how we collect, use, protect, and share your personal data, especially when you authorize KreMail to access your Gmail account via Google OAuth.

Our use of Google user data complies fully with theGoogle API Services User Data Policy, including the Limited Use requirements. We do not use Gmail data for advertising, profiling, or training generalized AI models.

Information We Collect

1. Information You Provide

We collect the following information directly from you:

  • Name, email address, avatar, phone number, and social media accounts;
  • Content generated through communication with brands;
  • Information submitted via forms, customer support inquiries, or other interactions.

2. Gmail Authorization Data

When you sign in with your Gmail account and authorize access, we request thehttps://mail.google.comscope to enable full email functionality, including:

  • Reading inbox, sent, draft, and labeled messages;
  • Composing, replying to, and forwarding emails;
  • Managing labels (e.g., archive, star, mark as important);
  • Deleting emails (moving to trash or spam).

Note: We do not alter, forward, or store your email content beyond operational purposes. Gmail data is not used for advertising or profiling.

3. Technical Information

We may collect:

  • IP address, device information, operating system, browser, and access timestamps;
  • Behavioral data such as message opens, replies, and clicks;
  • OAuth tokens securely stored and used for operational access only.

How We Use Information

KreMail adheres to the following usage principles regarding Gmail data:

  • Data Storage: We do not share Gmail content with third parties unless necessary for core services and explicitly authorized by the user.
  • Data Sharing: AI tools (e.g., composing or summarizing messages) use models hosted by providers such as OpenAI, Anthropic, and Google. We do not allow your data to be used for training third-party AI models.
  • AI Features: AI tools (e.g., composing or summarizing messages) use models hosted by providers such as OpenAI, Anthropic, and Google. We do not allow your data to be used for training third-party AI models.
  • Data Deletion: You may revoke Gmail access at any time. Upon revocation, all associated data will be deleted from our servers within 7 days.
  • Scope Justification: The fullhttps://mail.google.comscope is essential for comprehensive Gmail management. Narrower scopes are insufficient.

Data Protection and Security

We use encryption (at rest and in transit), OAuth2 secure authentication, database access controls, and other safeguards to ensure the confidentiality and integrity of your data.

However, please note that no online transmission is entirely risk-free. We recommend avoiding the transmission of sensitive personal or financial data via email.

Your Control Over Your Data

You may:

  • Access, correct, or delete your personal data;
  • Revoke Gmail authorization and delete related data;
  • Enable or disable features like AI-based recommendations;
  • Request data export or account deletion by contacting us.

Data Retention

We retain user data under the following conditions:

  • You actively use KreMail with Gmail authorization;
  • Your account is not deleted or disconnected;
  • We are required to retain data for legal or financial compliance.

In general:

  • Gmail-related data is retained for up to 30 days during active use;
  • Data is deleted promptly upon revoking Gmail access;
  • Registration data is retained during the life of the user account and deleted upon request.

Third-Party Services and Compliance

We work with trusted service providers (e.g., Airwallex for payments, AWS for hosting, OpenAI for AI features) only for the purpose of maintaining KreMail’s core functionality.

When data is transferred across borders, we comply with GDPR, CCPA, and other relevant privacy laws and ensure that our vendors have signed appropriate Data Processing Agreements.

Contact Us

If you have any questions or concerns regarding this Privacy Policy, please contact us at:

Address: 1150 S Milliken Ave, Ste 1123, CA 91761

Email:support@kremail.com