Huettl

Privacy Policy

Effective Date: 2026-04-05 Last Updated: 2026-04-05

⚠️ Draft — not yet reviewed by an attorney. This is a reasonable starting point for a SaaS Privacy Policy that also satisfies Google API verification requirements for Gmail and Calendar scopes. Before publishing and submitting for Google OAuth verification, this should be reviewed by a licensed attorney.

1. Introduction

This Privacy Policy explains how Huettl Integration LLC ("Huettl," "we," "us," or "our") collects, uses, stores, shares, and protects information when you use our web application, website at huettl.ai, and related services (the "Service").

By using the Service, you agree to the practices described in this Policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Name, email address, password (hashed), profile photo, role, and workspace details
  • Billing Information: Payment method details (processed by Stripe; we do not store full card numbers), billing address, and tax information
  • User Content: Leads, contacts, listings, transactions, tasks, notes, messages, media, voice profiles, and any other content you create or upload

2.2 Information from Third-Party Integrations

When you connect Gmail, Google Calendar, or other integrations, we access data through those services' APIs, including:

  • Gmail: Email metadata (subject, sender, recipients, dates) and message contents you authorize us to access; ability to create drafts
  • Google Calendar: Calendar events, attendees, times, and locations
  • Other integrations: Data relevant to the features you enable

2.3 Automatically Collected Information

  • Usage Data: Pages visited, features used, clicks, session duration, and similar analytics
  • Device Data: IP address, browser type, device type, operating system, and referring URLs
  • Cookies: Session cookies and similar technologies for authentication and basic analytics

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service
  • Process subscriptions, payments, and billing
  • Authenticate users and secure accounts
  • Generate AI drafts of emails, marketing, and content on your behalf
  • Sync with Gmail and Google Calendar to deliver features you enable
  • Send transactional emails (receipts, account notices, security alerts)
  • Respond to support requests
  • Detect and prevent fraud, abuse, and security incidents
  • Improve the Service (aggregate, anonymized analytics only)
  • Comply with legal obligations

4. Google API Services User Data Policy — Limited Use Disclosure

Huettl's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, data obtained through Google APIs (including Gmail and Google Calendar):

  • Is used only to provide or improve user-facing features that are prominent in the Service
  • Is not transferred to third parties except as necessary to provide or improve user-facing features, comply with applicable law, or as part of a merger, acquisition, or sale of assets with user consent
  • Is not used for serving advertisements
  • Is not used to train generalized AI or machine learning models
  • Is not read by any human, except (a) with your explicit affirmative consent, (b) for security purposes such as investigating abuse, (c) to comply with applicable law, or (d) for internal operations where the data has been aggregated and anonymized

5. How We Share Information

We do not sell your personal information. We share information only in the following limited circumstances:

  • Service Providers: Trusted third parties that help us operate the Service, including:
    • Stripe, Inc. — Payment processing
    • Anthropic, PBC — AI model inference (drafts are generated via API calls containing only the content needed for the requested task)
    • Google LLC — Gmail and Calendar integration (per your authorization)
    • Vercel, Inc. — Hosting and infrastructure
    • Neon, Inc. — Database hosting
    • Other providers for email delivery, error monitoring, and analytics
  • Workspace Members: If you belong to a shared workspace, other members of that workspace may see content you create within it, based on their role
  • Legal Compliance: When required by law, subpoena, court order, or to protect rights, safety, or property
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, subject to this Policy

All service providers are contractually required to protect your information and use it only for the purposes we authorize.

6. Data Storage and Security

  • Encryption: Data is encrypted in transit (TLS) and at rest
  • Isolation: Each workspace is logically isolated; we enforce strict access controls
  • Access: Only authorized personnel may access production systems, and only for legitimate business reasons
  • Retention: We retain your information for as long as your account is active and as needed to provide the Service. After account termination, we may retain data for up to 30 days to allow recovery or export, after which it is deleted, except where retention is required by law
  • Breach Notification: In the event of a data breach affecting your personal information, we will notify you in accordance with applicable law

No system is 100% secure. While we take reasonable measures to protect your information, we cannot guarantee absolute security.

7. Your Rights and Choices

Depending on your jurisdiction, you may have the right to:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request that we correct inaccurate information
  • Deletion: Request that we delete your personal information
  • Export: Request a portable copy of Your Content
  • Opt-out: Unsubscribe from marketing communications at any time
  • Withdraw consent: Disconnect Google integrations or other consented features at any time

To exercise these rights, email support@huettl.ai. We will respond within 30 days.

California residents have additional rights under the CCPA. EU/UK residents have rights under GDPR. We honor valid requests under these laws.

8. Cookies

We use cookies and similar technologies for:

  • Authentication: Keeping you logged in
  • Preferences: Remembering your settings
  • Analytics: Understanding how the Service is used (aggregated)

You can disable cookies in your browser, but doing so may prevent parts of the Service from working correctly.

9. Children's Privacy

The Service is not intended for anyone under 18. We do not knowingly collect information from children under 18. If you believe a child has provided us with information, contact support@huettl.ai and we will delete it.

10. International Users

The Service is operated from the United States. If you access the Service from outside the United States, you understand that your information will be transferred to, stored, and processed in the United States, which may have different data protection laws than your country.

11. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email or an in-app notice before the changes take effect. The "Last Updated" date at the top of this Policy reflects the most recent changes.

12. Contact Us

Questions, concerns, or requests regarding this Privacy Policy should be sent to:

Huettl Integration LLC Email: support@huettl.ai Website: https://huettl.ai