🐕Inbark

Privacy Policy

Last updated: January 14, 2026

Inbark is built with privacy as a core principle. We collect the minimum data necessary to deliver email notifications to your Slack, and we delete that data immediately after notifying you.

📋What We Collect

Account Information

  • Email address — From your Gmail account, used to identify your inbox
  • Digest preferences — Your preferred digest time and timezone

Email Metadata Temporary

When an email arrives, we temporarily access:

  • Sender — Email address and display name
  • Subject line — The email subject
  • Snippet — The first ~200 characters of the email

This data is deleted immediately after we notify you.

What We Never Access

  • Full email body content
  • Email attachments
  • Your Gmail password
  • Your Slack messages or channels
  • Any other Google or Slack data

🔐OAuth Tokens

We use OAuth to connect to Gmail and Slack. This means you authorize us directly with Google and Slack — we never see or store your passwords.

OAuth tokens are encrypted using AES-256-GCM encryption. These tokens allow us to:

  • Gmail — Read email metadata and receive notifications when new emails arrive
  • Slack — Send you direct messages (we cannot read your messages or access channels)

🧠AI Classification

We use AI to classify your emails as important, notification, or promotional. The AI only sees the email metadata (sender, subject, snippet) — never full email content. This classification happens in real-time and the data is not retained for training or any other purpose.

🛡️Data Storage & Security

  • All data is stored on Supabase (hosted in the US)
  • OAuth tokens are encrypted at rest with AES-256-GCM
  • Email metadata is encrypted and deleted immediately after notification
  • All connections use HTTPS/TLS encryption
  • Row Level Security ensures users can only access their own data

🗂️Data Retention

Data TypeRetention
Email metadataDeleted immediately after notification
Account infoUntil you delete your account
OAuth tokensUntil you delete your account or revoke access
Digest recordsCount only (no email content), until deletion

🔗Third-Party Services

We use the following services to operate Inbark:

Supabase — Database & functions
Vercel — Website hosting
Google — Gmail API
Slack — Messaging API
OpenRouter — AI classification

⚖️Your Rights

You can at any time:

  • Delete your account — Permanently removes all your data from our systems
  • Revoke access — Remove Inbark's access via Google and Slack settings
  • Export data — Contact us to request your data

Children's Privacy

Inbark is not intended for users under 13 years of age. We do not knowingly collect data from children.

Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated via Slack or email.

Contact

Questions about privacy? Email us at julian@memberstack.com