Privacy Policy
Effective Date: March 8, 2026
1. Introduction
Sandri.ai ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service, including our website, dashboard, and MCP server (collectively, the "Service").
Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Service.
2. Information We Collect
2.1 Information You Provide Directly
- Account Registration: Email, display name, timezone, authentication credentials
- OAuth Connections: When you connect third-party services (Gmail, Google Calendar, Google Drive, Slack, Notion, GitHub, Spotify), we receive and store OAuth tokens to enable those integrations
- API Keys: If you choose to add API keys for supported services, we encrypt and store them securely
- Usage Data: Tool calls, actions performed through the MCP server, and parameters sent to agents
- Support Communications: Email, messages, feedback, and support requests
2.2 Information Collected Automatically
- Service Usage: Tool calls, execution time, latency metrics, and error logs
- Device Information: Browser type, IP address, operating system
- Cookies & Similar Technologies: Session tokens, authentication cookies via Supabase Auth
3. How We Use Your Information
We use collected information to:
- Provide, maintain, and improve the Service
- Process OAuth token exchanges and manage integrations
- Execute tool calls and agent actions on your behalf
- Track usage for billing and tier enforcement
- Send operational and transactional emails (connection confirmations, billing updates)
- Debug technical issues and improve performance
- Comply with legal obligations
We do not use your data to:
- Train AI models
- Build marketing profiles or sell data to third parties
- Display personalized advertising
4. Data Security
4.1 Encryption at Rest
- OAuth tokens are encrypted using AES-256-GCM before storage in the database
- Encryption keys are managed as environment secrets and never exposed in code
- API keys are hashed with SHA-256 and stored securely
4.2 Encryption in Transit
- All communication to/from our service uses HTTPS/TLS
- OAuth state parameters are HMAC-SHA256 signed to prevent tampering
4.3 Access Controls
- All database tables enforce row-level security (RLS) scoped by
auth.uid()
- Only authenticated users can access their own connections and data
- Service-to-service communication uses Supabase service role keys kept in environment secrets
5. Third-Party Services
We integrate with the following third-party providers to enable features:
| Provider |
Purpose |
Data Shared |
| Google (OAuth) |
Gmail, Calendar, Drive access |
OAuth tokens (access + refresh) |
| Slack (OAuth) |
Slack messaging |
OAuth tokens |
| Notion (OAuth) |
Note-taking and page management |
OAuth tokens |
| GitHub (OAuth) |
Repository and issue management |
OAuth tokens |
| Spotify (OAuth) |
Music playback and playlist management |
OAuth tokens |
| Supabase |
Authentication, database, Edge Functions |
User profile, connections, usage logs |
| Vercel |
Dashboard hosting |
No sensitive data |
| Firebase |
Landing page hosting |
No sensitive data |
| Google Places API |
Restaurant search |
Search queries only |
| Skyscanner (RapidAPI) |
Flight search |
Search parameters only |
| OpenTable (RapidAPI) |
Restaurant reservations |
Search parameters only |
| Brave Search API |
Web search |
Search queries only |
| LiteLLM Proxy |
LLM routing |
Tool call parameters |
We do not share your personal information with third parties except as necessary to provide the Service or as required by law.
6. Data Retention
- Inactive Accounts: Accounts may be deleted after 12 months of inactivity
- OAuth Tokens: Stored indefinitely until you disconnect the integration
- Usage Logs: Retained for 90 days for debugging and analytics
- Account Data: Retained as long as your account is active
7. User Rights
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your account information
- Deletion: Request deletion of your account and associated data (excluding usage logs required for billing)
- Portability: Export your data in standard formats
- Control: Disconnect integrations or revoke API key access at any time
To exercise these rights, contact us at privacy@sandri.ai.
8. Data Breaches
In the event of a confirmed data breach involving unencrypted personal information, we will notify affected users within 30 days as required by law.
9. Compliance
- GDPR: If you are in the EU, your data is processed in compliance with GDPR. You have the right to lodge a complaint with your local data protection authority.
- CCPA: If you are in California, you have rights under CCPA. Contact us to exercise "Do Not Sell" or other rights.
- Other Laws: We comply with applicable data protection laws in other jurisdictions.
10. Children's Privacy
Our Service is not intended for users under 13 (or the digital age of majority in your jurisdiction). We do not knowingly collect information from children. If we learn we have collected information from a child, we will delete it promptly.
11. Changes to This Policy
We may update this Privacy Policy periodically. The effective date will be updated, and we will notify you of material changes via email or a banner on the Service.
12. Contact Us
If you have questions or concerns about this Privacy Policy, please contact us at: