Privacy Policy

Last updated: May 1, 2026

This Privacy Policy describes how Launci (“we,” “us,” or “our”) collects, uses, stores, and shares information when you use launci.com and the related Launci service (the “Service”). By using the Service, you agree to the practices described here.

1. Information we collect

Account information

When you create an account, we collect:

• Your name and email address.
• Authentication credentials (or, if you sign in via a third-party identity provider, the OAuth tokens described in Section 4).
• Billing information when you subscribe to a paid plan. Payments are processed by our payment provider; we do not store full payment-card numbers.

Product and launch information

When you use the Service, we collect:

• The product or service you describe to us, including any URLs, files, or descriptions you provide.
• The goals you set for your launch.
• The prospects, lists, drafts, and outreach the agent generates on your behalf.
• Messages you exchange with the agent.

Connected-account data

When you connect a third-party account (such as Gmail), we receive an access token and a refresh token that allow us to make API calls on your behalf. The specific Google scopes Launci requests, and how each is used, are listed in Section 4.

Usage information

Standard server logs (IP address, browser, timestamps, pages visited, errors) and product analytics events.

2. How we use information

We use the information we collect to:

• Operate and provide the Service — including running your launch (researching prospects, drafting outreach, sending and following up, triaging replies).
• Process payments and manage your subscription.
• Send transactional and account emails.
• Provide customer support.
• Investigate abuse and enforce our Terms.
• Improve the Service in aggregate, non-identifying ways.

We do not sell or rent your personal information. We do not use Google user data to train, fine-tune, or improve general AI/ML models.

3. How we share information

We share information only with:

• Service providers acting on our behalf (cloud hosting, AI inference, payment processing) under contracts that restrict their use to operating the Service.
• Authorities when required by law, subpoena, or to investigate fraud or imminent harm.
• Successors if Launci is acquired or merged, in which case you will be notified in advance.

We do not share Google user data with any third party for any other purpose.

4. Google API Services User Data

Launci's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Google scopes Launci requests, and what each is used for

• gmail.send — to send the outreach emails the agent drafts on your behalf, only after the messages have been generated by the agent and (depending on your settings) reviewed by you.
• gmail.readonly / gmail.modify — to read replies received in your Gmail so the agent can triage them in your launch dashboard, surface meaningful responses to you, and mark them as processed; and to thread follow-up messages under the original conversation.
• gmail.compose — to create draft messages in your Gmail account for your review prior to sending.

Limited Use commitments

Specifically, with respect to Google user data, Launci will:

• Use it only to provide or improve user-facing features that are prominent in the Service.
• Not transfer it except as necessary to provide or improve those features, comply with applicable law, or as part of a merger, acquisition, or sale of assets with adequate notice.
• Not use it for advertising, including retargeting, personalized advertising, or interest-based advertising.
• Not allow humans to read it, except (a) with your explicit consent for specific messages, (b) when necessary for security purposes (e.g., investigating abuse), (c) to comply with applicable law, or (d) when the data has been aggregated and anonymized.
• Not use it to train, fine-tune, or improve general AI/ML models. Any agent personalization is performed only on your data and scoped to your account.

Revoking access

You may revoke Launci's access to your Google account at any time via your Google Account permissions page or from within the Service settings. Revocation triggers deletion of stored Google user data within 30 days, except as described in Section 6.

5. Data storage and security

We store data on infrastructure provided by Google Cloud Platform (Firebase, Cloud Run, Firestore). Specific safeguards:

• All data is encrypted in transit (TLS 1.2 or higher) and at rest.
• OAuth tokens (including Google access and refresh tokens) are stored encrypted at rest with application-managed encryption keys.
• Access to production systems requires multi-factor authentication.
• Audit logs are maintained on production data access.
• We use vulnerability scanning and dependency monitoring (automated security audits, dependency upgrade alerts).
• We have a documented incident response process and will notify affected users within 72 hours of confirming a security incident affecting their data.

No system is perfectly secure; we cannot guarantee that unauthorized third parties will never circumvent our protections.

6. Data retention and deletion

• Account data— retained while your account is active and for up to 90 days after deletion, then permanently removed (except where retention is required by law).
• Connected-account tokens— deleted within 30 days of disconnection or account deletion.
• Email content read on your behalf— stored only as needed to power the agent's triage and follow-up features (typically for the duration of an active launch and up to 90 days after the launch closes), then deleted.
• Server logs— retained up to 90 days.

You can request deletion of your data at any time by emailing privacy@launci.com. We will fulfill verified requests within 30 days.

7. Your rights

Depending on your location, you may have the right to:

• Access the personal information we hold about you.
• Correct inaccuracies.
• Delete your information.
• Object to or restrict processing.
• Receive a portable copy of your information.
• Withdraw consent at any time.
• Lodge a complaint with your local data protection authority.

To exercise any of these rights, email privacy@launci.com.

8. International data transfers

If you access the Service from outside the country where our servers are located, your information may be transferred across borders and processed in countries with different data protection laws. We rely on standard contractual clauses or other lawful transfer mechanisms where required.

9. Children

The Service is not directed to children under 16. We do not knowingly collect information from children under 16. If you believe we have, contact us and we will delete the information.

10. Changes to this policy

We may update this Privacy Policy from time to time. Material changes will be communicated by email and/or via prominent notice in the Service at least 14 days before they take effect. The “Last updated” date at the top reflects the most recent revision.

11. Contact

Questions, concerns, data-deletion requests, or to exercise any right under this Policy:

• Email: privacy@launci.com