Privacy Policy

1. Overview

OutReachAI (“we”, “our”, “us”) operates outreachai.in and the LinkedIn Outreach Assistant Chrome extension. This policy explains what data we collect, how we use it, and your rights.

2. Data We Collect

• Account data: Name, email address, and hashed password when you sign up.
• LinkedIn prospect data: Name, headline, company, and LinkedIn URL of contacts you choose to save via the Chrome extension.
• Email credentials: SMTP/IMAP credentials you optionally connect for outreach campaigns. Passwords are encrypted at rest using AES-256-GCM.
• Usage data: Campaign activity, sent messages, and reply status for your own analytics dashboard.
• Extension storage: Your login token and AI API key are stored locally in your browser via chrome.storage.local and never transmitted to our servers.

3. How We Use Your Data

• To provide and operate the OutReachAI service.
• To sync LinkedIn contacts you explicitly save to your dashboard.
• To send outreach emails on your behalf using your connected email account.
• To send transactional emails (e.g. password reset) via Resend.
• We do not sell, rent, or share your data with third parties for marketing purposes.

4. Chrome Extension — Data Practices

• The extension reads LinkedIn profile pages only when you are actively viewing them.
• No keystrokes, mouse activity, or browsing history is collected.
• AI personalization calls are made directly from your browser to Anthropic or OpenAI using your own API key — we never see your AI API key on our servers.
• Contact data is only synced to your OutReachAI dashboard when you explicitly click “Log as Sent”.

5. Data Storage & Security

Your data is stored in a PostgreSQL database hosted on Neon (AWS ap-southeast-1). Email passwords are encrypted using AES-256-GCM before storage. We use HTTPS for all data in transit.

6. Data Retention & Deletion

You can delete your account and all associated data at any time from Settings. Upon deletion, all your data is permanently removed from our systems within 30 days.

7. Third-Party Services

• Neon — PostgreSQL database hosting
• Vercel — Application hosting
• Resend — Transactional email delivery
• Anthropic / OpenAI — AI personalization (via your own API key, client-side only)

8. Contact

For privacy questions or data deletion requests, email us at outreachai.in@gmail.com.