1. Introduction
Clutterstrike ("we," "us," or "our") operates the Clutterstrike platform, an AI-powered communications hub accessible at clutterstrike.com and through our mobile and desktop applications (collectively, the "Service"). This Privacy Policy describes how we collect, use, store, and share information about you when you use the Service, and explains the choices you have with respect to that information.
We are committed to plain-language transparency. We will not use this document to obscure what we do with your data. If you have questions at any point, please contact us directly at privacy@clutterstrike.com — a real human will respond.
By creating an account or using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.
2. Information We Collect
Account information. When you register, we collect your name, email address, and a hashed version of your password. We do not store your password in plaintext. If you authenticate via OAuth (Google, Microsoft), we receive only the token and basic profile information that service provides.
Message metadata and content. To operate the unified inbox, we process and store metadata and content of messages — including sender, recipient, subject line, timestamp, message identifiers, and message body. Storage of message content is required for the AI Agent to summarize, classify, draft replies, search across your communications, and run AI Guard threat scanning. AI-generated summaries and drafts are linked to the originating message identifier so you can review what the Agent understood. Clutterstrike is not a zero-knowledge or end-to-end encrypted service — see Section 10 (Security) for the storage and encryption posture.
Calendar and contacts data. If you connect Google Calendar, Microsoft 365, or similar calendar/contacts services, we process event details (titles, attendees, times, locations, descriptions) and contact records (names, email addresses, phone numbers, company names). This data is used to power the unified calendar, contact organization, and AI scheduling features.
Usage data. We collect information about how you interact with the Service — which features you use, actions you take (with timing), and session duration. This helps us improve the product and detect abuse. We do not sell this data or use it for third-party advertising.
Device and technical data. We automatically receive your IP address, browser type, operating system, and device identifiers. These are used for security monitoring, abuse detection, and service delivery. IP addresses are anonymized in logs after 30 days.
3. How We Use Your Information
Service delivery. We use your account information, message data, calendar data, and contact data to operate the unified inbox, authenticate your connected accounts, route messages, and surface the AI Agent's actions for your review and approval. Without this processing, the Service cannot function.
AI processing. The AI Agent processes your message and calendar content to generate summaries, draft replies, extract tasks, translate messages, detect calendar conflicts, and rank search results. AI-generated outputs are stored linked to message identifiers so you can review them. AI processing is subject to the strict commitments described in Section 4 (AI Model Training).
Security scanning. Every incoming message is analyzed by our AI Guard system for phishing indicators, scam patterns, malicious links, and prompt injection attempts. This scanning occurs before message content is passed to the AI Agent for any other processing. Flagged messages are surfaced to you with explanations. We retain threat signal metadata to improve detection accuracy; we do not retain message content for security training without your explicit consent.
Communications from us. We may send you transactional emails (account confirmation, password reset, billing receipts) and, if you opt in, product update notifications. You can unsubscribe from non-transactional emails at any time via Settings → Notifications or the unsubscribe link in any email.
4. AI Model Training
We do not train AI or machine-learning models on your data. Clutterstrike does not train, fine-tune, or otherwise develop generalized AI or machine-learning models using your personal data — including the contents of messages, contacts, calendar entries, files, or any data accessed via Google Workspace APIs, Microsoft Graph, or other third-party services you connect to the Service.
This commitment applies to (a) models we develop, fine-tune, or evaluate internally; (b) models operated by our AI inference providers, who are contractually bound by zero-retention API agreements that prohibit training on data sent via their APIs; and (c) any future products, research, or feature development.
Permitted AI processing. The only AI processing performed on your data is the user-visible processing required to deliver features you have signed up for: AI Guard threat scanning, AI-generated summaries, draft replies, search re-ranking, calendar reasoning, and translation. These operations process content during inference and are not retained for training purposes after the response is generated. AI-generated outputs (summaries, drafts, threat signals) are stored linked to message identifiers so you can revisit and review what the Agent understood.
No training opt-in available. We do not offer an opt-in to use your data for model training, and we have no current plans to do so. If we ever build such an opt-in, it will be granular, off by default, and require your explicit affirmative action.
5. Third-Party Email API Compliance
Clutterstrike connects to your email and calendar accounts via the official APIs of Google (Google Workspace / Gmail) and Microsoft (Microsoft Graph / Outlook / Microsoft 365). Each provider's data-handling rules apply in addition to this Privacy Policy.
5(a). Google Workspace API Compliance. Clutterstrike's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements that apply to Workspace data. Specifically:
Use. We use Google Workspace data only to provide and improve user-facing features within the Service — the unified inbox, AI Guard scanning, AI Agent drafting and summarization, calendar sync, and contact organization. We do not use Workspace data for any unrelated purpose.
Transfer. We do not transfer Workspace data to third parties except as necessary to provide or improve user-facing features (see Section 7 for the list of subprocessors), to comply with applicable law, or as part of a merger or acquisition with notice to affected users.
Human access. We do not allow humans to read your Workspace data unless: (a) we have your affirmative agreement for specific messages or files; (b) doing so is necessary for security purposes such as investigating abuse or a vulnerability; (c) doing so is necessary to comply with applicable law; or (d) the data is aggregated and anonymized and used for internal operations.
Advertising. We do not use Google Workspace data — including data from Gmail, Calendar, Contacts, or Drive — for any advertising purposes, including retargeting, personalized advertising, or interest-based advertising.
Training. We do not use your Google Workspace data to develop, improve, or train generalized AI or machine-learning models. See Section 4 for the full statement.
5(b). Microsoft Graph API Compliance. Clutterstrike's use of information received from Microsoft Graph (Outlook, Microsoft 365 Mail, Calendar, and Contacts) adheres to the Microsoft APIs Terms of Use, the Microsoft Identity Platform terms, and the Microsoft 365 App Compliance Program data-handling requirements applicable to apps that access user mailboxes, calendars, and contacts.
Use. We use Microsoft 365 data only to provide and improve user-facing features within the Service — the unified inbox, AI Guard scanning, AI Agent drafting and summarization, calendar sync, contact organization, and (where you have granted the shared-mailbox scope) delegated mailbox access. We do not use Microsoft 365 data for any unrelated purpose.
Transfer. We do not transfer Microsoft 365 data to third parties except as necessary to provide user-facing features (see Section 7 for the subprocessor list), to comply with applicable law, or as part of a merger or acquisition with notice to affected users.
Human access. Same restrictions as Google Workspace data above: no human review of your mailbox, calendar, or contact content except with your affirmative agreement, for documented security investigation, to comply with applicable law, or in aggregated/anonymized form for internal operations.
Advertising. We do not use Microsoft 365 data — including Outlook mail, calendar, or contacts — for any advertising, retargeting, or interest-based-advertising purpose.
Training. We do not use your Microsoft 365 data to develop, improve, or train generalized AI or machine-learning models. See Section 4 for the full statement.
Tenant administrator rights. If your Microsoft 365 account is part of an organization tenant, your tenant administrator retains the ability to revoke Clutterstrike's access to your account via the Microsoft Entra admin center at any time. Tenant-level consent (admin consent) may be required for some shared-mailbox or directory scopes; in that case, we will follow your tenant's app-consent policies.
6. Per-Scope Data Use
When you connect a Google or Microsoft account, we request the minimum set of OAuth scopes required to operate the features the Service depends on (unified inbox, send-on-approval, calendar sync, contact organization). The Phase 1 launch scope set is enumerated below. If we ever add scopes (for example, to support shared-drive attachments, mailbox rules, or workspace chat), we will update this table and the Microsoft Publisher Verification / Google OAuth verification materials before requesting the new scopes; re-consent will be requested from each affected user before the new scope is exercised.
Google (Gmail + Calendar)
| Scope | What we access | Why we need it |
|---|---|---|
| openid email profile | Your email address, name, and profile picture | Account creation and identification |
| gmail.modify | Read mailbox metadata and content, mark messages read/unread, apply labels, archive (does not include permanent delete) | Display the unified inbox, sync read state, run AI Guard threat scanning, generate AI summaries, apply your custom tags |
| gmail.send | Sending email on your behalf | Send replies you have drafted via AI Agent, after your explicit approval at the Approval Gate |
| calendar | Read and write Google Calendar events | Display the unified calendar, AI conflict detection, AI scheduling assistance, and apply scheduling actions after your approval |
Microsoft (Outlook + Microsoft 365)
| Scope | What we access | Why we need it |
|---|---|---|
| openid email profile offline_access User.Read | Your email address, name, and basic profile; ability to refresh access tokens without re-prompting you each day | Account creation, identification, and persistent inbox sync |
| Mail.ReadWrite | Read mailbox metadata and content, mark messages read/unread, move messages, apply categories, delete to Deleted Items | Display the unified inbox, sync read state, run AI Guard threat scanning, generate AI summaries, apply your custom tags |
| Mail.Send | Sending email on your behalf | Send replies you have drafted via AI Agent, after your explicit approval at the Approval Gate |
| Mail.ReadWrite.Shared | Same access as Mail.ReadWrite, applied to mailboxes that have been delegated to you (shared / department mailboxes) | Allow operators who run shared mailboxes (support@, sales@) to manage them through the same unified inbox |
| Calendars.ReadWrite | Read and write Outlook calendar events | Display the unified calendar, AI conflict detection, scheduling actions after your approval |
| Calendars.ReadWrite.Shared | Same access as Calendars.ReadWrite for calendars shared with you | Support multi-entity operators who manage shared/departmental calendars |
| Contacts.Read | Read-only access to your Outlook contacts | Power the People & Companies view (organize conversations by contact) |
You can review and revoke connected accounts at any time in Settings → Integrations, or directly from your provider: Google Account permissions · Microsoft account app permissions. Revoking access at the provider immediately invalidates Clutterstrike's tokens; we delete the associated mailbox and calendar data within 30 days.
7. Data Sharing and Subprocessors
We do not sell your data. We have never sold personal data to third parties and have no plans to do so. We do not share your data for third-party advertising or data broker purposes. For California residents, "sell" and "share" carry their CCPA / CPRA meaning; Clutterstrike does neither.
AI inference provider. Clutterstrike uses Anthropic's Claude API to process message and calendar content for AI Agent features (drafting, summarization, threat detection, translation, search re-ranking). Under Anthropic's Commercial Terms of Service and their Data Processing Addendum, Anthropic does not use API inputs or outputs to train its models, and retains data only for the limited window required for abuse and safety review. Anthropic is currently the only AI inference provider that receives your message content. We will update this section, and notify affected users at least 30 days in advance, before adding or changing AI inference providers for message content.
Subprocessors. The following subprocessors process limited categories of your data on our behalf, each under a Data Processing Agreement:
| Subprocessor | Purpose | Data category |
|---|---|---|
| Anthropic (US) | AI inference for drafts, summaries, AI Guard, translation | Message + calendar content (transient) |
| Amazon Web Services (US/EU) | Application hosting, database, encrypted storage | All Service data at rest |
| Cloudflare (US) | Content delivery, DDoS mitigation, edge security | Request metadata, IP addresses |
| Stripe (US) | Payment processing; PCI-DSS Level 1 | Billing email, last-4 card digits (we do not see full PAN) |
| Transactional email provider | Account, billing, and notification emails sent by Clutterstrike | Recipient email, message subject and body |
We will give affected users at least 30 days' advance notice before adding a new subprocessor that processes message or calendar content, except where a replacement is required for security or business-continuity reasons (in which case we will give as much notice as is reasonable).
Legal requirements. We may disclose information if required to do so by law, court order, or governmental authority. We will notify you of such requests where legally permitted. We do not provide governments with backdoor access to user data, and we will challenge overly broad legal demands.
Business transfers. If Clutterstrike is involved in a merger, acquisition, or asset sale, user data may be transferred as a business asset. We will notify you before your data becomes subject to a materially different privacy policy and give you the opportunity to delete your account.
8. Data Retention
You control how long Clutterstrike keeps your synced message data. The default retention window is 90 days; you can change it to anywhere from 7 days to 1 year in Settings → Legal & Privacy → Data retention. A background job runs daily and permanently deletes messages — and the AI-generated summaries, threat signals, and actions derived from them — once they are older than your chosen window. Calendar events and contacts are not governed by this retention window; they are removed when you disconnect the source account or delete your account (see below).
Account information (name, email, billing history) is retained for the life of your account and for a reasonable period after deletion to comply with our legal obligations (e.g., tax record requirements). Payment receipts are retained for 7 years as required by applicable law.
Security audit logs. A separate audit log records security-relevant events tied to your account — sign-ins from new devices, password changes, data exports, account deletions, integration connect/disconnect, and approval-gate decisions. We retain these records for 7 years to satisfy compliance, fraud-investigation, and dispute-resolution requirements. Audit log entries are not included in the standard message retention window above and are not deleted by the in-app "Delete Account" flow; they are purged on a fixed 7-year schedule.
You can request immediate deletion of your account and associated data at any time via Settings → Legal → Delete Account or by emailing privacy@clutterstrike.com. We will complete deletion within 30 days, and will confirm when done. Some data may be retained in anonymized, aggregated form for analytics and service improvement; aggregated data cannot be used to re-identify any individual user.
If you disconnect a Google or Microsoft account, we delete the OAuth tokens immediately and the associated message and calendar data within 30 days.
9. Your Rights
Access and portability. You have the right to request a copy of all personal data we hold about you. You can export your data directly from Settings → Legal → Export My Data. Exports are provided in machine-readable JSON format within 72 hours of request.
Correction and deletion. You can correct inaccurate account information at any time in Settings → Account. You may request deletion of your account and all associated data as described in Section 8. If specific data cannot be deleted due to a legal obligation, we will explain the reason.
Objection and restriction. If you are located in the European Economic Area or United Kingdom, you have the right to object to our processing of your personal data on grounds relating to your particular situation, and to request that we restrict processing while we consider your objection. Contact privacy@clutterstrike.com to exercise these rights.
California residents (CCPA). If you are a California resident, you have the right to know what personal data we collect, the right to delete it, the right to opt out of its sale (we do not sell data), and the right not to be discriminated against for exercising these rights. To submit a verifiable consumer request, email privacy@clutterstrike.com or use the in-app controls described above.
10. Security
We implement industry-standard technical and organizational security measures designed to protect your data from unauthorized access, alteration, disclosure, or destruction. These include TLS 1.3 for all data in transit, AES-256-GCM encryption for OAuth credentials at rest using a dedicated key that is isolated from our session secrets, encrypted database volumes, multi-factor authentication, and SOC 2-aligned access controls for our infrastructure. Note that we are not a zero-knowledge or end-to-end encrypted service: message contents pass through and are stored on our servers so the AI Agent can summarize, classify, and draft replies on your behalf.
Despite our efforts, no security measure is perfect. In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify affected users and relevant supervisory authorities within 72 hours of becoming aware of the breach, consistent with our obligations under GDPR Article 33 and applicable state breach notification laws.
You are responsible for maintaining the security of your account credentials. We recommend using a strong, unique password and enabling multi-factor authentication. Do not share your credentials with anyone, including Clutterstrike support staff — we will never ask for your password.
12. Children
The Service is not directed to children under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16 without verified parental consent, we will take steps to delete that information promptly.
If you believe we may have collected information from a child under 16, please contact us immediately at privacy@clutterstrike.com.
13. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will provide at least 30 days' notice before the changes take effect. Notice will be given by email to the address associated with your account, and by a prominent notice within the Service.
For non-material changes (such as clarifications, corrections, or formatting updates), we may update the policy without advance notice. The "Last updated" date at the top of this document will always reflect the date of the most recent revision. We encourage you to review this policy periodically.
Your continued use of the Service after the effective date of a revised policy constitutes your acceptance of the changes. If you do not agree to the revised policy, you may close your account before the effective date.
14. Contact
If you have questions, concerns, or requests related to this Privacy Policy or our data practices, please contact our privacy team:
If you are located in the European Economic Area and believe we have not addressed your concern adequately, you have the right to lodge a complaint with your local data protection supervisory authority.