Privacy Policy

Plain English — no legalese.

Read-only inbox access

When you connect your inbox we request the narrowest possible permission scope — read-only. We can never send, delete, modify, or move any of your emails. Gmail users grant gmail.readonly; Outlook/Microsoft 365 users grant Mail.Read. You can revoke this permission from your Google or Microsoft account settings at any time.

Encrypted storage — always

Email metadata and body content are stored encrypted at rest using libsodium secretbox (XSalsa20-Poly1305). Each user has a unique encryption key managed by AWS KMS. Nobody — not even Manning Law engineers — can read your email content without decrypting it first, and all decryption is logged.

Your email address is never stored in plain text

Your recipient email address is stored as a one-way HMAC-SHA256 hash. We cannot reverse it to recover your address. It is used only to deduplicate emails and link analysis results back to your account.

No email content sent to hosted AI services

The legal analysis pipeline runs on our own infrastructure. We do not send the contents of your emails to any hosted large language model API. The only AI involved is our own on-premise model that never receives personally identifiable information.

Disconnect and delete works within 24 hours

If you click "Disconnect inbox and delete all my data" on the Settings page, your OAuth token is revoked immediately and a hard-delete job is queued. All emails, analysis results, and your account record are permanently deleted within 24 hours. This is irreversible.

Data retention — 18 months by default

If you do not request deletion, your data is retained for 18 months from the date of collection and then automatically purged. This window exists so that any active litigation can make use of the evidence; once the standard statute-of-limitations period passes, the data is no longer needed.

California residents only

This service is restricted to California residents. Claims under the California Business & Professions Code §17529 and the California Invasion of Privacy Act are only available to people who receive emails in California. We ask you to attest to this residency at sign-up.