Privacy Policy

Last updated: March 2026

What we collect

ReplyMind collects minimal data strictly necessary to provide its service:

• Email message text (Gmail) — the text of the specific email you are actively replying to, read only when you click "Generate Reply". This is transmitted to our server for AI processing and immediately discarded. It is never stored, logged, or cached on our servers.
• LinkedIn message text (Pro/Premium users) — the text of the LinkedIn message you are actively replying to, read only when you click "Generate Reply". Transmitted to our server for AI processing and immediately discarded. It is never stored, logged, or cached on our servers.
• Intent selection — when you generate a reply, you choose a reply intent (e.g. "Accept", "Schedule", "Decline"). This intent label is sent to our server along with the message text to guide the AI response. The intent label itself is not stored.
• Reply choices — when you select a generated reply, the intent category you chose and a timestamp are saved to your account on our server. This is used to learn your communication style over time and auto-detect your preferred tone after 15 choices. No message content or reply text is stored — only the intent label.
• Feedback — when you give thumbs-up or thumbs-down feedback on a generated reply, the rating and associated intent are sent to our server. No message content or reply text is included.
• Industry — during registration you may provide your industry (e.g. "Real Estate", "Marketing"). This is stored on our server to help tailor reply suggestions.
• Usage statistics — your reply count, streak (consecutive active days), and last active date are tracked on our server to enforce plan limits and display your usage stats.
• Contact notes — notes you voluntarily save about email contacts (e.g. relationship context, tone preferences). Stored locally in your browser via chrome.storage.local only; never sent to our servers.
• Follow-up reminders — reminder details (contact name, email, due date, and your custom message) that you set. Stored locally in your browser via chrome.storage.local only; never sent to our servers.
• Session token and account data — when you sign in, your authentication token and account plan information are stored locally via chrome.storage.sync to keep you logged in across sessions.

What we do NOT collect

• We do not scan, read, or store your inbox or any emails other than the one you are actively replying to
• We do not read or store any LinkedIn messages other than the one you are actively replying to
• We do not collect browsing history or activity on any website
• We do not collect financial information
• We do not use cookies for tracking
• We do not sell, rent, or transfer your personal data to any third party for advertising or marketing purposes

How we use your data

Email and LinkedIn message text is used solely to generate reply suggestions. When you click "Generate Reply", the message text and your selected intent are transmitted securely via HTTPS to our backend server (hosted on Railway), which then forwards them to an AI language model API to produce a reply suggestion. The message text is used for this single purpose only and is never stored, logged, or used for any other purpose.

Reply choices and feedback are used to improve your experience over time. After 15 reply choices, ReplyMind can auto-detect your preferred communication tone based on your intent patterns. Feedback helps us understand which reply styles work best. Only intent labels, ratings, and timestamps are stored — never message content.

Your industry is used to provide more relevant reply suggestions tailored to your professional context.

Usage statistics (reply count, streak, last active date) are used to enforce plan-based limits and provide you with productivity insights within the extension.

Contact notes and follow-up reminders are stored exclusively on your local device. They are used to personalize generated replies (e.g. adapting the tone for a specific contact) and to trigger browser notifications reminding you to follow up. This data never leaves your device.

Your session token is used solely to authenticate your account and enforce plan-based limits (Free, Basic, Pro, and Premium tiers). We do not use it for tracking or analytics.

Background activity

ReplyMind's background service worker runs to support two features: (1) scheduling follow-up reminder alarms you have set, and (2) displaying browser notifications when those reminders are due. No message content is read or transmitted in the background. The service worker does not run any tracking or analytics processes.

Third parties we share data with

We share email and LinkedIn message text with the following party solely for the purpose of generating reply suggestions:

• OpenAI — our backend sends message text to OpenAI's API to generate reply suggestions. OpenAI processes this data under their own privacy policy at openai.com/policies/privacy-policy. OpenAI does not use API-submitted data to train their models by default.
• PayPal — if you subscribe to a paid plan, payment is processed by PayPal. We never see, collect, or store your financial or payment information. PayPal’s privacy policy applies to all payment transactions at paypal.com/privacy.

We do not sell, transfer, or share your data with any other third parties, including advertising platforms, data brokers, or analytics providers.

No human access to user data

No ReplyMind employee, contractor, or affiliate reads your email content, LinkedIn messages, or generated replies. User data is processed exclusively by automated systems. The only exceptions are: (1) if you explicitly contact support and share message content for troubleshooting, (2) if required by applicable law, or (3) for investigating security abuse, in which case only aggregated and anonymized data is used.

Data storage and security

Stored on our server (PostgreSQL database): your account credentials (email, hashed password), tone profile, industry, plan and activation status, reply choice history (intent labels and timestamps only), feedback ratings, usage statistics (reply count, streak days, last active date), and monthly usage counts.

Stored locally in your browser: contact notes, follow-up reminders, dismissed tips, and session tokens are stored using Chrome's built-in storage APIs (chrome.storage.local and chrome.storage.sync). This data is never uploaded to our servers.

Never stored anywhere: email message text, LinkedIn message text, and generated reply text are never stored, logged, or cached on our servers or in local storage. They exist only in memory during the generation request and are discarded immediately after.

All data transmission between the extension and our backend server, and between our backend and OpenAI, is encrypted via HTTPS.

Your rights and data deletion

You can remove all locally stored data (contact notes, reminders, dismissed tips) at any time by uninstalling the ReplyMind extension from Chrome. Uninstalling clears all local storage associated with the extension.

To delete your account and all associated server-side data — including your email address, hashed password, tone profile, industry, reply choice history, feedback, and usage statistics — email us at support@tigerbrandsglobal.com. We will permanently remove all your data within 7 days and confirm by email.

Children

ReplyMind is not directed at children under 13 and we do not knowingly collect data from children.

Changes to this policy

We may update this policy from time to time. We will notify users of material changes via the Chrome Web Store listing or by email. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of ReplyMind after changes constitutes acceptance of the updated policy.

Contact

Privacy questions: support@tigerbrandsglobal.com