← Back

Privacy Policy

Last updated: March 22, 2026

What we collect

Sondex stores data you explicitly connect to the service:

  • Email metadata and content — from email providers you connect (AgentMail, Gmail, or IMAP). Used to build contact profiles and conversation history.
  • Stripe payment data — transaction amounts, descriptions, and customer emails from Stripe accounts you connect. Used to enrich contact profiles with purchase history.
  • Account information — your email address and authentication credentials for signing in.
  • API keys — encrypted and stored for connected services (email providers, Stripe, LLM providers). Never logged or exposed in plaintext.

How we use your data

Your data is used exclusively to provide the Sondex service:

  • Building and maintaining contact profiles
  • Generating memory summaries (via the LLM provider you configure)
  • Serving context API responses to your AI agent

We do not sell, share, or use your data for advertising. We do not train AI models on your data.

Data storage

Data is stored in Supabase (PostgreSQL) with row-level security. API keys are encrypted at rest. All traffic is encrypted in transit via TLS.

Data retention

Your data is retained as long as your account is active. You can delete your account and all associated data at any time from the account page. Deletion is permanent and irreversible.

Third-party services

  • Supabase — database and authentication
  • Vercel — hosting
  • Stripe — payment processing
  • Anthropic / OpenAI — memory summary generation (using YOUR API key, not ours)

Self-hosted alternative

If you prefer full control over your data, Sondex OSS runs entirely on your own infrastructure with a local Postgres database.

Contact

Questions about privacy? Email privacy@sondexai.com.