Privacy Policy

Inreach Labs is the controller of personal data processed through Inreach, unless we act as a processor on behalf of a customer workspace. Our contact address for privacy matters is [email protected].

Depending on how you use Inreach, we may process:

• Account data such as name, email address, authentication identifiers, and workspace membership
• Billing data such as subscription plan, payment status, and billing contact details processed by our payment provider
• Product usage data such as agent configuration, opportunity reviews, saved replies, and action history
• Connected account data such as OAuth tokens and profile identifiers for X, LinkedIn, or other integrations you authorize
• Public social content that matches your agent criteria, including post text, author handles, timestamps, and derived scores or classifications
• Website and onboarding inputs such as URLs you submit and business context inferred from public pages
• Technical data such as IP address, browser type, device information, logs, and cookie preferences
• Support communications if you contact us

We use personal data to:

• Provide, secure, and maintain the Inreach service
• Authenticate users and manage workspaces and team access
• Run agent scans, classify opportunities, and generate suggested replies
• Process subscriptions, invoices, and account changes
• Send service notifications, digests, and product communications you request or that are necessary for the service
• Monitor performance, prevent abuse, and improve reliability
• Comply with legal obligations and enforce our Terms of Service

Where GDPR or similar laws apply, we rely on one or more of the following legal bases: performance of a contract, legitimate interests (such as securing the service and improving product quality), consent where required (for example, non-essential cookies), and legal obligation.

We use essential cookies and local storage to keep you signed in, remember cookie preferences, and protect the service.

With your consent, we may use additional analytics or functional cookies to understand site usage and improve the product. You can choose Essential only or Accept all in the cookie banner.

We do not sell personal data. We may share data with:

• Infrastructure and hosting providers that help us operate the application
• Authentication, payment, email, and notification providers such as Clerk and Stripe
• AI and data processing providers used to classify conversations and generate drafts
• Integration partners you connect, such as Slack or CRM systems, when you enable those features
• Professional advisers or authorities when required by law or to protect rights and safety
• A successor entity in connection with a merger, acquisition, or asset sale, subject to appropriate safeguards

We may process data in countries outside your own, including within the European Economic Area and other jurisdictions where our subprocessors operate. Where required, we use appropriate safeguards such as Standard Contractual Clauses.

We retain personal data for as long as needed to provide the service, meet legal obligations, resolve disputes, and enforce agreements.

Retention periods vary by data type and plan. For example, opportunity history may be limited on the Watch plan and extended on paid plans. You may request deletion as described below, subject to legal and operational requirements.

We apply technical and organizational measures designed to protect personal data, including access controls, encryption in transit, and encrypted storage for sensitive credentials where applicable.

No method of transmission or storage is completely secure. Please use strong authentication and protect your account credentials.

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing of your personal data, and to receive a portable copy of data you provided.

You may also withdraw consent where processing is based on consent, without affecting the lawfulness of prior processing.

To exercise these rights, contact [email protected]. You may also lodge a complaint with your local supervisory authority. In Belgium, this is the Data Protection Authority (APD/GBA).

Inreach processes publicly available posts and profile information from supported platforms to identify relevant conversations for your agents.

If you believe content processed through Inreach should be corrected or removed, contact us with sufficient detail so we can review the request.

Inreach is not intended for individuals under 18. We do not knowingly collect personal data from children.

We may update this Privacy Policy from time to time. When we make material changes, we will post the updated policy and revise the effective date.

Inreach Labs

Brussels, Belgium

[email protected]