Privacy Policy

Effective Date: 2025/11/17

Last Updated: 2025/11/17

This Privacy Policy describes how Gorillasync (“we”, “us”, “our”) collects, uses, stores, and shares information when you use our service (the “Service”). By creating an account or using the Service, you consent to this Policy.

1. Information We Collect

  1. Account Information. We collect your email address, login credentials (passwords are hashed), and basic profile data when signing in with Google.
  2. Trade Confirmation Emails. When you forward trade-confirmation emails to your assigned forwarding address, we store:
    • Full email body (stored indefinitely)
    • Email metadata (sender, subject, timestamps)
    • Parsed trade data
    • Processing logs and audit information
  3. Google Integration. When connecting Google Sheets, we store OAuth tokens, your Google ID, spreadsheet references, and sync activity. Tokens are stored securely and used only to perform the sync operations you authorize.
  4. Payment Information. Stripe processes payments on our behalf. We do not store credit card numbers or billing details. We receive only limited Stripe metadata.
  5. Technical Data. We collect IP addresses, login events, device/browser information, error logs (via Sentry), and usage statistics.

2. How We Use Your Information

  1. Authenticate your account and manage your profile.
  2. Receive, store, and process the emails you forward.
  3. Parse submitted emails into structured transaction data.
  4. Write that data to your connected Google Sheets.
  5. Maintain logs for support, security, debugging, and analytics.
  6. Operate subscription billing via Stripe.
  7. Improve and monitor service performance, including limited-mode Google Analytics.
  8. Use anonymized or aggregated data for analytics or future commercial purposes (non-identifiable only).

3. Third-Party Services

  1. Mailgun (inbound email processing)
  2. Google (OAuth and Sheets API)
  3. Stripe (billing and subscriptions)
  4. Sentry (error monitoring)
  5. Cloudflare (security and threat filtering)
  6. Render (hosting infrastructure)

4. Data Storage and Retention

  1. Storage. Data is stored in our secure hosting environment, which provides industry-standard encryption in transit and at rest.
  2. Email Bodies. Email bodies and parsed data are stored indefinitely unless your account is deleted.
  3. OAuth Tokens. Stored securely and removed upon account deletion or token revocation.
  4. Logs. Operational and security logs are retained as necessary for troubleshooting and platform integrity.

5. Account Deletion

  1. You may request deletion by emailing support@gorillasync.com.
  2. Account data will be deleted within 7 days. During this period, you cannot reverse deletion or reactivate the account.
  3. OAuth tokens, email bodies, and parsed transaction data will be removed.
  4. Some anonymized trade data may continue to be kept for statistical or operational purposes.

6. Anonymized and Aggregated Data

  1. We may generate anonymized or aggregated datasets from your submitted emails and parsed transactions.
  2. These datasets contain no direct personal identifiers and cannot reasonably be re-identified.
  3. We may use or commercialize such anonymized datasets. You will not receive compensation for this.
  4. You may request to opt out of future inclusion by emailing support@gorillasync.com.

7. Geographic Restrictions

  1. The Service is intended for users in Canada and the United States.
  2. We do not target or accept users from the European Union or EEA. Accounts found to be from these regions may be restricted.

8. Children’s Privacy

  1. The Service is not intended for users under 18. We do not knowingly collect data from minors.

9. Changes to This Policy

  1. We may update this Privacy Policy from time to time.
  2. For material changes, we will provide notice through the website or by email.
  3. The “Last Updated” date at the top reflects the most recent revisions.

10. Contact

For questions about this Privacy Policy or your data, contact:

support@gorillasync.com