AnomalyLab AnomalyLab
Login Get in Touch

Profile

Privacy Policy

1. Information We Collect

When you use AnomalyLab, we collect the following types of information:

  • Account information: Your name and email address, provided when you sign up or authenticate via Google OAuth.
  • OAuth tokens: Access tokens and refresh tokens issued by Google when you connect your Google account or Gmail integration. These are stored encrypted and used solely to operate the service on your behalf.
  • Usage data: Information about how you interact with the platform, including searches, chat history, and configured monitoring topics.
  • Content data: News articles, documents, and other content you add to the platform for monitoring and analysis.

2. How We Use Your Information

We use the information we collect to:

  • Authenticate you and maintain your account session.
  • Operate the news monitoring, topic modeling, and content intelligence features of the service.
  • Send emails on your behalf when you use the Gmail integration (only with your explicit authorization).
  • Improve platform reliability and performance.
  • Respond to support inquiries.

We do not sell your data to third parties or use it for advertising.

3. Third-Party Services

AnomalyLab integrates with the following third-party services to deliver its functionality:

  • Google OAuth & Gmail API: Used for authentication and, optionally, sending emails on your behalf. We request only the scopes necessary for the features you enable. Your use of Google services is subject to Google's Privacy Policy.
  • OpenAI: Used to generate embeddings for semantic search and content analysis. Content submitted for analysis may be sent to OpenAI's API. See OpenAI's Privacy Policy.
  • Anthropic: Used to power AI chat and content intelligence features. Content submitted in chat may be sent to Anthropic's API. See Anthropic's Privacy Policy.

4. Data Storage & Security

We take reasonable technical and organizational measures to protect your information:

  • Encryption: All data in transit is protected by TLS. Sensitive credentials, OAuth tokens, and API keys are encrypted at rest using industry-standard methods.
  • Access controls: Access to production systems and user data is restricted to authorized personnel on a least-privilege basis.
  • Data minimization: We collect and retain only the data necessary to operate the Service.
  • Retention: If you request account deletion, we will purge your personal data within 30 days, except where retention is required by law.
  • Incident response: In the event of a data breach affecting your personal information, we will notify affected users within 72 hours of discovery to the extent required by applicable law.

No security system is perfect. If you believe your account or data has been compromised, contact us immediately at contact@ethanyoung.dev.

5. Your Rights & Choices

You have the following rights regarding your data:

  • Disconnect integrations: You can disconnect your Google/Gmail integration at any time from the Settings page. This revokes our access to your Google account.
  • Access your data: You may request a summary of the data we hold about you by contacting us.
  • Delete your data: You may request deletion of your account and associated data by contacting us. We will process deletion requests within 30 days.
  • Revoke Google permissions: You can revoke AnomalyLab's access to your Google account at any time via Google Account Permissions.

6. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at contact@ethanyoung.dev. We will respond within 5 business days.