Privacy Policy

Last updated: January 23, 2026

This Privacy Policy explains how DOSA ("the App", "we", "us", or "our") collects, uses, stores, and protects information when you use our services. The App provides tools for automated email review, document analysis, and AI-assisted workflows for business and professional use.

By using the App, you agree to the practices described in this Privacy Policy.

1. Information We Collect

1.1 Google Account Information

When you connect your Google account, we may access limited Google user data strictly necessary to provide the App's functionality, including:

  • Email message metadata and content
  • Email attachments
  • Email sender and recipient information
  • Gmail account identifiers (e.g. email address)

We access this data only after you explicitly authorize the required Google OAuth scopes.

1.2 Email Content and Attachments

If you enable email processing features, the App may process:

  • Email subject lines and message bodies
  • Attachments (e.g. PDFs, spreadsheets, documents)
  • Timestamps and message IDs

This data is used solely to:

  • Identify relevant emails
  • Extract user-requested information
  • Assist with automated responses and workflows

1.3 Uploaded Documents

For document analysis features, users may upload files such as:

  • PDFs
  • Word documents
  • Spreadsheets (CSV, XLSX)

Uploaded documents are processed to enable search, analysis, and AI-assisted interactions within the App.

1.4 Application Data

We may collect application-specific data you provide, including:

  • Business or company information
  • Evaluation criteria and preferences
  • Workflow configurations
  • Generated reports or outputs

1.5 Authentication and Usage Data

We collect limited technical data such as:

  • User ID and team/workspace identifiers
  • Login timestamps
  • Feature usage logs
  • Processing status indicators

This data is used for security, auditing, and service reliability.

2. How We Use Information

We use collected information only to:

  • Provide and operate the App's features
  • Process emails and documents at the user's request
  • Generate AI-assisted insights, summaries, or responses
  • Validate business information using trusted third-party sources
  • Communicate results or required actions to users
  • Improve performance, reliability, and security

We do not use Google user data for advertising, profiling, or marketing purposes.

3. Use of AI and Automated Processing

The App uses AI systems to:

  • Classify emails and documents
  • Extract structured information
  • Answer questions using document context
  • Generate drafts, summaries, or reports

AI processing occurs only in response to user actions and is limited to the scope required to provide requested functionality.

4. Data Storage and Retention

Data is stored securely using industry-standard cloud infrastructure.

Email and document data is retained only as long as necessary to provide the service or as configured by the user.

Users may delete documents, projects, or connected accounts at any time.

Upon account deletion, associated data is permanently removed within a reasonable timeframe unless retention is required by law.

5. Data Sharing and Disclosure

We do not sell or rent user data.

We may share limited data only:

  • With trusted service providers acting as data processors (e.g. hosting, authentication, AI processing)
  • When required by law or legal process
  • To protect the security, integrity, or rights of users or the App

All service providers are contractually obligated to protect data and use it only for authorized purposes.

6. Google API Data Use Compliance

Our use of Google user data complies with the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • Google user data is used only to provide user-facing features
  • Data is not transferred to third parties for advertising
  • Data is not used to build user profiles beyond the App's functionality
  • Human access to Google user data is restricted and logged, and occurs only when necessary for support or security purposes

7. Security Measures

We implement appropriate technical and organizational safeguards, including:

  • Encrypted data transmission (HTTPS)
  • Secure authentication and access controls
  • Restricted internal access to user data
  • Monitoring and logging for abuse or unauthorized access

8. User Controls and Rights

Users may:

  • Revoke Google account access at any time via Google Account settings
  • Delete uploaded documents and processed data
  • Request account deletion and data removal
  • Control which features are enabled and what data is processed

9. Children's Privacy

The App is not intended for use by children under the age of 13, and we do not knowingly collect personal data from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the App or our website. Continued use of the App after changes indicates acceptance of the updated policy.

11. Contact Information

If you have questions about this Privacy Policy or data practices, please contact: