Privacy Policy

1. Who We Are

InboxForeman is a product of Quiver Labs LLC, a limited liability company registered in the United States. InboxForeman provides an AI-powered service that automatically identifies, renames, and files email attachments into the correct project folders on your connected cloud storage.

In this Privacy Policy, "we," "us," and "our" refer to Quiver Labs LLC, and "you" and "your" refer to the user of our Service.

Company: Quiver Labs LLC
Address: c/o Northwest Registered Agent LLC, 1209 Mountain Road PL NE STE N, Albuquerque, NM 87110, United States

Role of the Parties: For Customer Content processed through your connected email and cloud storage integrations, we generally process such data on your behalf to provide the Service in accordance with your configuration and instructions. Depending on the specific processing activity, we may act as a processor / service provider, or as an independent controller / business for limited purposes such as account management, billing, security, fraud prevention, audit logging, legal compliance, and service integrity.

2. Information We Collect

2.1 Information You Provide

• Account registration information (name, email address)
• Billing information: Our order process, tax calculation, and payment processing are conducted by our authorized Merchant of Record (MoR). We do not directly collect, process, or store your full credit card numbers or billing address on our servers. All financial transactions are securely handled by the MoR and are subject to their respective privacy policies and terms.
• Project names, naming templates, and filing rules you configure
• Support requests and communications

2.2 Information from Connected Services

When you connect your email account (currently Gmail and Outlook; we may add support for additional email providers in the future), we access your inbox to scan incoming messages for attachments. For messages that contain attachments, we additionally access:

• Email metadata (sender, subject, date)
• Email body text (used to provide contextual information to the AI for more accurate attachment classification)
• Attachment file names, file types, and file content (for AI analysis and classification)
• Cloud storage folder structure on your connected storage service (currently Google Drive; we may add support for additional storage services in the future) to file attachments into the correct location

We access email headers and metadata to determine whether a message contains attachments. For messages with attachments, we additionally read the body text solely to provide contextual information to the AI for more accurate classification and filing. Email body text and metadata of messages without attachments are not persisted, other than transient technical logs strictly necessary for security, reliability, and abuse prevention.

2.3 Automatically Collected Information

• IP address, browser type, operating system
• Usage data (features used, actions taken, timestamps)
• Cookies and similar technologies for authentication and analytics

These data are used for authentication, security, abuse prevention, service analytics, and maintaining the technical stability of the Service. We do not use them for cross-site tracking, advertising, or profiling.

3. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Service
• Analyze attachments using AI to determine project association, document type, and appropriate file naming
• File renamed attachments to the correct folders on your connected cloud storage service
• Flag uncertain matches for your review (human-in-the-loop)
• Process payments and manage subscriptions
• Send transactional communications (filing confirmations, error alerts)
• Improve and develop new features (using aggregated, non-content usage data only)
• Comply with legal obligations

Use Limitations: We explicitly do not use your email body text, attachment content, or restricted-scope data from connected services (like Google Workspace) for advertising, user profiling, training generalized AI/ML models, or independent product analytics.

4. Google API Services User Data Policy

InboxForeman's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Scope-Specific Access

• Gmail / Outlook: We read metadata, body text, and attachments of messages containing attachments, solely for classification and filing.
• Google Drive / OneDrive: We read the necessary folder structure and create/write files to your designated target directories.

We request only the minimum permissions necessary to provide the Service. We only process emails that contain attachments; body text is read solely for classification context and is not persisted.

Limited Use Compliance

• We only use Google user data to provide user-facing features of InboxForeman that are prominent in the application's user interface, and to improve the Service only as described in this Privacy Policy, including through aggregated, non-content usage data.
• We transfer Google user data to third-party AI infrastructure providers (via OpenRouter) solely as necessary to provide the core attachment classification and filing functionality of the Service. We do not intentionally transmit your account identity to downstream AI providers; however, Customer Content itself may inherently contain personal or identifying information. We configure OpenRouter to enforce Zero Data Retention (ZDR) and to route requests only to endpoints that OpenRouter identifies as ZDR-compatible at the time of request. According to OpenRouter's documentation, when ZDR is enabled, requests are only routed to endpoints with a Zero Data Retention policy, and endpoints whose policies cannot be clearly established are conservatively treated as retaining and training on data. We rely on these technical controls and publicly documented provider policy signals to restrict routing.
• We do not use Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising.
• We do not permit our personnel to access or review Google user data in the ordinary course of providing the Service. Access is strictly limited and may occur only with your explicit request or consent for a specific support incident, or where strictly necessary for security, fraud prevention, or compliance with law.
• We do not use Google user data for training general-purpose or non-personalized AI/ML models.

Disconnection and Deletion

You may disconnect your Google account at any time through your InboxForeman account settings or through Google's security settings at myaccount.google.com/permissions. Upon disconnection, we will stop processing new data from your Google account. Processing history logs are retained per Section 7 and deleted upon account deletion.

5. How We Share Your Information

We share your information only in the following circumstances:

• Service Providers: We use trusted third-party service providers to assist in operating our Service. This includes Cloudflare for core database and edge network infrastructure, secure EU-based server facilities (Hetzner) for ephemeral data processing, an authorized Merchant of Record (MoR) for secure payment processing and compliance, and Resend for transactional email delivery. These providers are contractually bound to strictly safeguard your data and use it solely to provide services to us.
• AI Processing: Attachment content and email body text are transmitted to third-party AI infrastructure providers through OpenRouter (an AI model routing service) for classification and analysis. We configure OpenRouter to enforce Zero Data Retention (ZDR) and to route requests only to endpoints that OpenRouter identifies as ZDR-compatible at the time of request. According to OpenRouter's documentation, when ZDR is enabled, requests are only routed to endpoints with a Zero Data Retention policy, and endpoints whose policies cannot be clearly established are conservatively treated as retaining and training on data. We rely on these technical controls and publicly documented provider policy signals to restrict routing. We do not intentionally permit routing to providers or endpoints that are marked as training on prompts or retaining request data beyond the API request lifecycle. Provider availability and endpoint eligibility may change; our controls are designed to prevent routing to disallowed providers.

  We do not intentionally transmit your account identity or billing details to downstream providers through OpenRouter, although Customer Content itself may inherently contain personal or identifying information.

  Zero Data Retention refers to model/provider handling of prompts and responses as described by OpenRouter; operational metadata (such as token counts and latency) may still be processed by OpenRouter in accordance with its own policies. You can review OpenRouter's provider transparency information and each provider's data policy at openrouter.ai.

• Legal Requirements: We may disclose information if required by law, subpoena, court order, or governmental request.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

We do not sell, rent, or trade your personal information to third parties. We do not share your data with advertising networks or data brokers.

6. Data Storage and Processing Architecture

We use distributed infrastructure provided by Cloudflare and other vendors. Depending on the service component and configuration, personal data may be processed in the United States, the European Union, and other jurisdictions where our service providers or their subprocessors operate.

Your core account data, configuration settings, and processing history logs (which include email metadata such as the sender, subject, and file names) are processed and stored through Cloudflare-hosted infrastructure, which may involve processing in the United States, the EU, and other jurisdictions depending on service configuration and subprocessors.

Data Processing Locations: Customer Content is initially processed on servers located in Finland (EU). However, to complete AI classification, relevant content is securely transmitted to OpenRouter and selected AI providers configured for Zero Data Retention, which may process data in the United States or other jurisdictions.

Remote Operations: Authorized operational and support access to systems and metadata logs may occur from our personnel's locations (including China), strictly subject to least-privilege access controls.

We implement industry-standard security measures, including:

• Encryption in transit (TLS) and at rest
• OAuth authentication — we never store your email password
• Access controls based on the principle of least privilege
• Regular security reviews

While we take reasonable steps to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.

Data Breach Notification: We will provide notice of personal data breaches to competent authorities and affected individuals as required by applicable law.

7. Data Retention

We categorize data retention based on the necessity to provide our Service:

Account and Log Data

We retain your account information, configuration rules, and processing history logs (including email sender, subject, and the original/new attachment names) for as long as your account is active. This allows you to review the AI's naming history and audit filing actions within the application's user interface.

Ephemeral Content Data (Email Body & Attachments)

Attachment file content and email body text are highly sensitive and are only processed temporarily in memory or ephemeral storage on our secure processing servers. This content data is deleted immediately upon successful filing to your connected cloud storage. In all cases, temporary data is retained for no longer than 24 hours, even if processing encounters an error. We do not retain copies of your attachment files or email body text after processing is complete.

Upon account deletion, we will delete your personal information and processing logs within 30 days, except where retention is required by law (e.g., billing records).

8. Your Rights and Choices

Depending on your location, you may have the following rights:

• Access: Request a copy of the personal information we hold about you.
• Correction: Request correction of inaccurate personal information.
• Deletion: Request deletion of your personal information.
• Data Portability: Request a portable copy of your data.
• Revoke Access: Disconnect your email or cloud storage accounts at any time through your account settings or through the respective service's security settings (e.g., myaccount.google.com/permissions for Google services).

To exercise any of these rights, contact us at privacy@inboxforeman.com. We will respond within the time required by applicable law, and in many cases within 30 days.

To protect your privacy and security, we may take reasonable steps to verify your identity before granting access or processing deletion requests.

9. California Privacy Rights (CCPA/CPRA)

If you are a California resident, you have rights under the California Consumer Privacy Act as amended by the California Privacy Rights Act (CCPA/CPRA), including the right to know what personal information is collected, the right to delete personal information, the right to correct inaccurate personal information, the right to limit the use and disclosure of sensitive personal information, and the right to opt out of the sale or sharing of personal information.

We do not sell or share personal information as those terms are defined under California law. To exercise your CCPA/CPRA rights, contact us at privacy@inboxforeman.com. We will respond within the time required by applicable law.

Non-Discrimination: We will not discriminate against you for exercising any of your CCPA/CPRA rights. We will not deny you services, charge you different prices or rates, or provide a different level or quality of services.

Do Not Track Signals: We currently do not respond to "Do Not Track" (DNT) signals from web browsers because we do not engage in cross-site tracking of our users.

10. European Privacy Rights (GDPR) and International Transfers

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have rights under the GDPR, including the right to access, rectify, erase, restrict, or port your personal data, and the right to object to processing.

Legal Bases for Processing

We process your personal data under the following legal bases:

• Contractual necessity (Art. 6(1)(b)): To create and maintain your account, provide attachment classification and filing services, process authentication, and deliver service notifications.
• Legitimate interests (Art. 6(1)(f)): For security, abuse prevention, troubleshooting, and maintaining limited operational logs. Our legitimate interests do not override your fundamental rights.
• Consent (Art. 6(1)(a)): For non-essential cookies and analytics. You may withdraw consent at any time.
• Legal obligation (Art. 6(1)(c)): For tax, accounting, and regulatory compliance record-keeping.
• As a processor: For Customer Content (email metadata, body text, and attachments), we generally process data on your behalf and upon your instructions to provide the Service.

International Transfers: Where required by applicable law, we seek to rely on appropriate legal transfer mechanisms for relevant cross-border transfers, which may include contractual protections, Standard Contractual Clauses (SCCs), and supplementary technical and organizational measures, as applicable.

Exercising Your Rights: We operate a streamlined support model and facilitate all GDPR-related requests (access, erasure, revocation of consent) directly through our privacy team. You can exercise your rights at any time by contacting us at privacy@inboxforeman.com. We will respond within the time required by applicable law, and in many cases within 30 days.

Right to Complain: If you are located in the EEA, UK, or Switzerland, you have the right to lodge a complaint with your local data protection supervisory authority if you believe your data has been processed in violation of applicable data protection laws.

11. Children's Privacy

InboxForeman is not intended for children. We do not knowingly collect personal information from children, and where required by local law, from minors below the applicable age threshold. If we learn that we have collected personal information from a child, we will delete it promptly.

12. Cookies

We use cookies and similar technologies for:

• Essential cookies: Required for authentication and security.
• Analytics cookies: To understand how users interact with the Service and improve it.

We do not use advertising cookies or trackers. Non-essential cookies (such as analytics) are only set with your explicit consent via our cookie banner. You can manage or withdraw your consent at any time through your account or browser settings.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last Updated" date. For significant changes, we will provide additional notice (such as by email). Your continued use of the Service after changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

• Email: privacy@inboxforeman.com
• Company: Quiver Labs LLC
• Address: c/o Northwest Registered Agent LLC, 1209 Mountain Road PL NE STE N, Albuquerque, NM 87110, United States