Effective Date: December 7, 2025
This policy describes how NiceTMY ("we," "us," or "our") collects, uses, and protects your personal data when you use our services (the "Service") which provides advanced company intelligence and outreach automation.
By accessing or using the Service, you agree to the collection and use of information in accordance with this policy.
1. Information We Collect
We collect two main types of information:
A. Information You Provide Directly
- Account Data: Your name, email address, and password (encrypted) when you register.
- Billing Data: Payment information is collected and processed securely by our third-party payment partner, Stripe. We do not store full credit card details on our servers.
- Integration Data: Credentials and permissions (e.g., Google Sheets and Gmail permissions) required to enable automation features.
B. Information Collected Through the Service
This data is collected as a function of providing company intelligence:
- Input Data: Email addresses or domains you submit to be processed and enriched.
- Enrichment Results: The data retrieved and generated by our system (e.g., company summaries, employee names, social links, AI scores). This data is associated with your account for reporting and export purposes.
- Usage Data: Information on how you access and use the Service, such as credit consumption, features used, and API calls made.
2. How We Use Your Information
We use the collected information for the following core purposes:
- To Provide Service Functionality: To run enrichment searches, automate exports, and enable email follow-ups.
- Account Management: To manage your subscription, process payments, and provide technical support.
- Service Improvement: To monitor usage trends, analyze feature popularity, and improve the accuracy of our data models.
- Communication: To send you service announcements, security alerts, and updates regarding this policy.
3. Data Sharing and Disclosure
We do not sell your personal data. We may share information only in the following limited circumstances:
A. Third-Party Service Providers
We rely on trusted third parties to perform services essential to our business, such as:
- Payment Processing: Stripe handles all billing information.
- Cloud Hosting: Data is stored securely on cloud infrastructure (e.g., AWS/GCP).
B. Business Transfers
If NiceTMY is involved in a merger, acquisition, or asset sale, your Personal Data may be transferred as a business asset.
C. Legal Requirements
We may disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).
4. Data Retention and Security
A. Data Retention
We retain your Personal Data for as long as your account is active. If you initiate account deletion, we will purge your personal data within 30 days, retaining only anonymized usage statistics.
B. Security Measures
We implement industry-standard security measures, including encryption (for data in transit and at rest) and access controls, to protect your data from unauthorized access or disclosure.
5. Google User Data and API Services
When you connect your Gmail account to NiceTMY, we access and use Google user data in accordance with Google API Services User Data Policy, including the Limited Use requirements.
A. How We Access Google User Data
We access your Google account data through OAuth 2.0 authentication. When you authorize our application, you grant us permission to:
- Gmail API Access: We use the Gmail API with the
gmail.send scope to send follow-up emails on your behalf from your Gmail account.
- User Information: We access your email address (
userinfo.email scope) to identify which Gmail account is connected to your NiceTMY account.
B. How We Use Google User Data
We use Google user data exclusively for the following purposes:
- Email Sending: To send personalized follow-up emails from your Gmail account when you enter contact information at networking events. Emails are sent only when you explicitly enable this feature in your settings.
- Account Management: To associate your Gmail account with your NiceTMY account for service functionality.
Important: We do NOT read, access, or store any emails from your Gmail inbox. We only send emails that you authorize through our service.
C. How We Store Google User Data
We store OAuth tokens (access tokens and refresh tokens) securely in our database with encryption. These tokens are:
- Stored in encrypted format
- Automatically refreshed when they expire
- Deleted immediately when you disconnect your Gmail account
- Never shared with third parties
D. How We Share Google User Data
We do NOT share your Google user data with any third parties. Your Gmail access tokens and email data remain private and are used solely for the email sending functionality you authorize.
E. Limited Use Requirements Compliance
Our use of information received from Google APIs adheres to Google API Services User Data Policy, including the Limited Use requirements:
- We only use Google user data to provide or improve user-facing features of our application
- We do not transfer Google user data to others unless required for legal purposes
- We do not use Google user data for serving advertisements
- We do not allow humans to read Google user data unless required for security purposes or with your explicit consent
F. Your Control Over Google User Data
You have full control over your Google account connection:
- Revoke Access: You can disconnect your Gmail account at any time through your account settings or by revoking access in your Google Account settings.
- Disable Email Sending: You can disable the email follow-up feature in your settings without disconnecting your account.
- Token Deletion: When you disconnect, all stored OAuth tokens are immediately deleted from our database.
6. Your Data Rights
As a user, you have the following rights regarding your data:
- Access: You can request a copy of the personal data we hold about you.
- Correction: You can update or correct most of your personal data directly through your account settings. Configure now
- Deletion (Right to be Forgotten): You can request the deletion of your account and all associated personal data by using the delete function in your account settings or by contacting us.
7. Contact Information
If you have any questions or concerns about this Privacy Policy or our data practices, please contact our Data Protection Officer:
Email: [email protected]