1. Introduction
At Detris ("we", "our", or "us"), we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-first data table platform.
2. Information We Collect
We collect information that you provide directly to us, including:
- Account information (name, email, company details)
- Data you store in your lists and tables
- Communication preferences
- Payment information
- Usage data and analytics
3. Third-Party Authentication (Google OAuth)
When you choose to sign in using Google OAuth, we want to be transparent about what information we collect and how we handle it:
- We receive only basic profile information from Google (name, email address, and profile picture)
- We do NOT receive or store your Google account password
- We do not read or access your Gmail inbox, Google Drive, Calendar, or other Google services beyond the gmail.send scope used for sending emails
- We only request the minimum permissions necessary to create and authenticate your Detris account
- Your use of Google OAuth is subject to Google's Privacy Policy and Terms of Service
- You can revoke Detris's access to your Google account at any time through your Google Account settings at myaccount.google.com/permissions
- Revoking access will not delete your Detris account, but you will need to set a password to continue using email/password authentication
4. Third-Party Integrations
Detris offers optional integrations with third-party services to extend functionality. These integrations are disabled by default and require your explicit authorization.
How Integrations Work
- You choose which integrations to enable from your account settings
- Each integration requires you to authorize access through the third-party service
- We only request the minimum permissions necessary for the integration's functionality
- Authorization tokens are stored encrypted and never exposed to your browser
- You can disconnect any integration at any time, which immediately revokes our access
Available Integrations
| Integration | What We Access | What We Do NOT Access |
|---|
| Gmail | Send emails on your behalf (gmail.send scope) | Your inbox, contacts, drafts, or email history |
| Google Sheets | Import data from sheets you explicitly select | Your entire Drive or other files |
Gmail Integration Specifics
When you connect Gmail:
- We request only the "gmail.send" permission, which allows sending emails only
- We cannot read your inbox, view your contacts, or access your email history
- Emails are sent only when you explicitly request them through our AI assistant
- You will have the opportunity to review email content before sending
- All email sends are logged for your records and our compliance
- You can disconnect Gmail at any time from Settings → Integrations
Google User Data: Sharing, Transfer, and Disclosure
Detris does not share, transfer, or disclose Google user data to any third parties, except in the following limited circumstances:
- With your explicit consent— when you instruct Detris to send an email on your behalf via the Gmail API, the email content is transmitted to the intended recipient through Google's servers. No other transfers of Google user data occur without your initiation.
- To comply with applicable law — we may disclose data if required by law, regulation, legal process, or enforceable governmental request
- To protect rights and safety — we may disclose data if necessary to protect the rights, property, or safety of Detris, our users, or the public
- In connection with a merger or acquisition — if Detris is involved in a merger, acquisition, or sale of assets, Google user data may be transferred as part of that transaction, but only with prior user consent and continued protection under this policy
We do not sell, rent, or trade Google user data to any third party, including advertising platforms, data brokers, or information resellers. We do not use Google user data for serving advertisements, retargeting, personalized advertising, or interest-based advertising. We do not use Google user data to determine creditworthiness or for lending purposes. We do not use Google user data for training artificial intelligence or machine learning models.
Google OAuth tokens are stored encrypted at rest on our servers using AES-128 encryption and are never exposed to your browser, transmitted in plaintext, or shared with any third-party service. Tokens are revoked and permanently deleted when you disconnect the integration.
Google API Services Limited Use Disclosure
Detris's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Integration Data Retention
- Authorization tokens are deleted immediately when you disconnect an integration
- Logs of actions performed (e.g., emails sent) are retained for compliance purposes
- You can request deletion of integration logs by contacting [email protected]
5. How We Use Your Information
We use the collected information to:
- Provide and maintain our services
- Improve and personalize user experience
- Process payments and transactions
- Send administrative information
- Provide customer support
- Comply with legal obligations
6. Data Protection
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet is 100% secure.
7. Data Retention and Deletion
We retain your information for as long as your account is active or as needed to provide you services. When you delete your account or revoke OAuth access:
- Your lists, rows, AI templates, chats, and usage records are deleted
- OAuth access tokens are immediately invalidated and deleted
- API usage logs are automatically purged after 90 days
- Audit logs are retained for 1 year, then automatically purged
- Billing and accounting records may be retained as required by law
- You can delete your account from Settings → Account → Delete Account, or by contacting [email protected]
8. Your Rights
You have the right to:
- Access your personal information
- Correct inaccurate data
- Request deletion of your data
- Object to data processing
- Data portability
9. Contact Us
If you have any questions about this Privacy Policy, please contact us at [email protected]
