Privacy Policy

Last Updated: February 1, 2026

Effective Date: February 1, 2026

Introduction

Pepper ("we," "our," or "us") is an AI executive assistant that helps you manage email and calendar tasks. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our service at mypepper.io.

By using Pepper, you agree to the collection and use of information in accordance with this policy.

Information We Collect

1. Google Account Information

When you sign in with Google OAuth, we collect:

  • Email address – Your primary Gmail address
  • Profile information – Name and profile picture
  • Google ID – Unique identifier for your Google account

2. Gmail Data

To provide email management services, we access:

  • Email metadata – Subject lines, sender/recipient information, timestamps, labels, and thread IDs
  • Email body content – Message content is fetched on-demand from Gmail API and processed transiently; we do not permanently store full email bodies
  • Email snippets – Short previews (first 280 characters) for context
  • Semantic embeddings – Vector representations of email content for search and classification (original text is not reconstructable from embeddings)

3. Google Calendar Data

To provide scheduling services, we access:

  • Calendar events – Event titles, descriptions, times, locations, and attendees
  • Calendar metadata – Calendar names, time zones, and settings
  • Free/busy information – Availability for scheduling purposes

4. Usage Data

We automatically collect:

  • Service logs – API requests, errors, and system performance
  • Decision history – Your approvals, rejections, and feedback on AI-generated actions
  • Interaction data – Features used, command inputs, and timing information
  • Trust progression – Your autonomy level and approval patterns

How We Use Your Information

We use your data exclusively to:

1. Provide Core Services

  • Classify and triage incoming emails by importance
  • Generate draft responses matching your communication style
  • Schedule meetings and manage calendar events
  • Learn your preferences and patterns for better automation
  • Execute approved actions on your behalf

2. Improve Our Service

  • Train and improve AI models using aggregated, anonymized data
  • Identify and fix bugs and performance issues
  • Develop new features based on usage patterns

3. Ensure Safety and Security

  • Prevent spam, fraud, and abuse
  • Enforce our Terms of Service
  • Comply with legal obligations
  • Implement SafetyGate protections for sensitive actions

Data Storage and Security

Encryption

  • Data in transit: All data is encrypted using TLS 1.3
  • Data at rest: Sensitive data is encrypted using AES-256-GCM
  • OAuth tokens: Google refresh tokens are encrypted before storage
  • Embeddings: Stored in encrypted vector database

Data Retention

Data TypeRetention PeriodPurpose
Email metadataWhile account activeThread history and context
Email body contentNot storedFetched on-demand, processed transiently
Email snippets90 daysBrief context for decision cards
Semantic embeddingsWhile account activeSearch and classification
Calendar eventsWhile account activeScheduling and availability
Decision historyIndefiniteTrust progression and learning
Audit logs90 daysSecurity and debugging
Voice profileWhile account activeDraft personalization

Data Location

  • Primary infrastructure: United States (Vercel Edge, Neon PostgreSQL)
  • Database: Neon PostgreSQL (US East)
  • Cache: Upstash Redis (US East, ephemeral)
  • Real-time: Pusher (US region)

Data Sharing and Disclosure

We Do NOT Share Your Data

We do not sell, rent, or share your personal information with third parties for marketing purposes.

Limited Exceptions

We may disclose your information only in these specific circumstances:

  1. With Your Consent – When you explicitly authorize sharing
  2. Service Providers – Infrastructure providers (Vercel, Neon, Upstash) under strict data processing agreements
  3. AI Processing – Anthropic Claude API for email classification and draft generation (see below)
  4. Embeddings – Voyage AI for semantic embeddings (see below)
  5. Legal Requirements – When required by law, subpoena, or court order
  6. Safety – To protect our rights, property, or the safety of our users

AI Processing

Email content is sent to Anthropic (Claude API) for:

  • Email classification and importance scoring
  • Draft response generation
  • Intent understanding and action extraction

Anthropic processes this data according to their API Terms of Service and does not train models on API usage data.

Embedding Generation

Email content is processed by Voyage AI to generate semantic embeddings for:

  • Email search and retrieval
  • Context matching
  • Classification

Voyage AI does not retain the original text after generating embeddings.

Your Rights and Controls

Access and Export

You can:

  • View your data – Access your decision history, preferences, and settings at any time
  • Export your data – Request a complete export in JSON format

Contact: support@mypepper.io

Deletion

You can:

  • Delete individual threads – Remove specific email threads from our system
  • Delete your account – Permanently delete all your data within 30 days

To delete your account:

  1. Go to Settings → Account → Delete Account
  2. Confirm deletion
  3. All data will be permanently deleted within 30 days

Autonomy Control

Pepper uses a "career ladder" trust model where you promote Pepper through tiers as it earns trust. You control Pepper's autonomy level:

Intern (Free) – 500 emails/month, 50 AI actions/month

Assistant ($49/mo) – 2,000 emails/month, 500 AI actions/month

Executive Assistant ($99/mo) – 10,000 emails/month, 2,000 AI actions/month

Senior EA ($199/mo) – Unlimited emails, 5,000 AI actions/month

Chief of Staff ($299/mo) – Unlimited emails, unlimited AI actions

You can change your autonomy level at any time in Settings.

Revoke Access

You can revoke Pepper's access to your Google account at any time:

  1. Go to Google Account Permissions
  2. Find "Pepper" in the list
  3. Click "Remove Access"

Note: After revoking access, Pepper will no longer function, but your data will remain until you delete your account.

Google API Services User Data Policy

Our use of information received from Google APIs adheres to Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only request the minimum scopes necessary for core functionality
  • We do not use Gmail or Calendar data for serving advertisements
  • We do not allow humans to read your email except for debugging with explicit consent
  • We do not transfer data to third parties except as disclosed in this policy
  • Email body content is fetched on-demand and processed transiently, not permanently stored

Children's Privacy

Pepper is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it immediately.

International Users

Pepper is operated in the United States and is US-only. If you are accessing Pepper from outside the United States, your data will be transferred to, stored, and processed in the United States.

By using Pepper, you consent to the transfer of your information to the United States and acknowledge that U.S. data protection laws may be different from those in your country.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights:

  • Right to Know – What personal information we collect and how we use it
  • Right to Delete – Request deletion of your personal information
  • Right to Opt-Out – We do not sell personal information
  • Right to Non-Discrimination – Equal service regardless of privacy choices

To exercise these rights, contact privacy@mypepper.io.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last Updated" date
  • Sending an email notification (for material changes)

Continued use of Pepper after changes constitutes acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or how we handle your data:

Email: privacy@mypepper.io

Support: support@mypepper.io

Website: https://mypepper.io

Summary

  • We access Gmail and Calendar to provide AI assistant services
  • Email bodies are fetched on-demand, not permanently stored
  • We use Anthropic Claude for AI processing and Voyage AI for embeddings
  • We never sell your data or use it for advertising
  • You control autonomy levels through our career ladder trust model and can delete your data anytime
  • We comply with Google API Services User Data Policy
  • Pepper is US-only and designed for professional use through self-service signup

For questions or concerns, contact privacy@mypepper.io