Privacy Policy

Last updated: January 2025

1. Introduction

ScopeShield AI ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our web application and Chrome browser extension.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your email address and name for authentication purposes.

2.2 Project Data

You may provide project scope information, including project descriptions, included items, excluded items, and contract details. This data is stored securely and used solely to provide scope creep analysis.

2.3 Message Content

When you use our analysis feature, you submit client message content for scope creep detection. This content is processed by our AI system and stored as part of your analysis history.

2.4 Chrome Extension Data

Our Chrome extension accesses email content on Gmail and Outlook only when you explicitly click the "Analyze" button. We do not automatically read, scan, or store your emails. The extension only processes the specific email content you choose to analyze.

3. How We Use Your Information

  • To provide scope creep analysis and reply suggestions
  • To maintain your project history and analysis records
  • To authenticate your account and provide access to our services
  • To improve our AI analysis capabilities
  • To send important service-related communications

4. Data Storage and Security

Your data is stored securely using industry-standard encryption. We use secure HTTPS connections for all data transmission. Your API tokens are encrypted and can be revoked at any time from your account settings.

5. Chrome Extension Permissions

Our Chrome extension requests the following permissions:

  • storage: To save your API token and preferences locally in your browser
  • activeTab: To read email content only when you click the analyze button
  • sidePanel: To display analysis results in a convenient side panel
  • Host permissions for Gmail/Outlook: To inject the analyze button into email interfaces

6. Data Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties. Your message content and project data are never shared with other users or external services, except for AI processing to provide our core analysis functionality.

7. Data Retention

Your account data and analysis history are retained as long as your account is active. You can delete your analysis history at any time. Upon account deletion, all associated data will be permanently removed within 30 days.

8. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your account and associated data
  • Export your data
  • Revoke API tokens at any time

9. Cookies

We use essential cookies for authentication and session management. We do not use tracking cookies or share cookie data with third parties.

10. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

12. Contact Us

If you have any questions about this Privacy Policy, please contact us at:
privacy@scopeshield.ai