Triage

Privacy Policy

Last updated: February 13, 2026

1. Introduction

Triage ("we", "us", or "our") is operated by AshlrAI, Inc. This Privacy Policy describes how we collect, use, and protect your personal information when you use our AI-powered email management platform at trytriage.ai (the "Service").

By using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and organization name. If you sign in via Microsoft or Google OAuth, we receive basic profile information from your identity provider.

Email Data

To provide our Service, we access email metadata (sender, recipient, subject, date) and email body content from your connected email accounts (Microsoft 365 or Gmail). This data is used to categorize emails and generate draft responses. We access only the data necessary to provide the Service.

OAuth Tokens

We store encrypted OAuth access and refresh tokens to maintain your email provider connection. These tokens are used solely to access your email on your behalf.

Usage Analytics

We collect anonymized usage data to improve the Service, including page views, feature usage, and performance metrics. We use PostHog for product analytics and Sentry for error tracking.

Payment Information

Payment processing is handled by Stripe. We do not store credit card numbers or full payment details on our servers. Stripe's privacy policy governs the handling of payment data.

3. How We Use Your Information

  • AI Processing: Email content is processed by our AI system (powered by xAI) to categorize emails and generate draft responses. Email content is sent to the AI provider for processing and is not used for model training.
  • Service Delivery: To provide email categorization, draft generation, team collaboration, and automation features.
  • Communication: To send transactional emails (welcome messages, payment notifications, team invitations) via SendGrid.
  • Improvement: To analyze usage patterns and improve the Service.
  • Support: To respond to your questions and provide customer support.

4. Third-Party Services

We use the following third-party services to operate Triage:

  • Supabase: Database hosting (PostgreSQL)
  • Vercel: Application hosting
  • Stripe: Payment processing
  • SendGrid: Transactional email delivery
  • xAI: AI email categorization and draft generation
  • Sentry: Error monitoring
  • PostHog: Product analytics
  • Microsoft Graph API / Gmail API: Email access
  • Slack: Optional team notifications

Each service has its own privacy policy governing the data they process. We only share the minimum data required for each service to function.

5. Data Retention

We retain your account data and email metadata for as long as your account is active. Email body content is processed in real-time and cached temporarily for the AI features. If you cancel your subscription, your data is retained for 30 days to allow for reactivation, after which it is deleted.

6. Your Rights

You have the right to:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate personal data.
  • Deletion: Request deletion of your personal data and account.
  • Portability: Request your data in a portable format.
  • Disconnect: Revoke email provider access at any time through your email provider's settings.

To exercise any of these rights, contact us at support@ashlr.ai.

7. Cookies

We use essential cookies to maintain your session and authentication state. We use PostHog for analytics, which may set cookies to track anonymized usage. We do not use advertising cookies or sell your data to third parties.

8. Security

We implement industry-standard security measures including encrypted data transmission (TLS), secure session management, rate limiting, CSRF protection, and regular security audits. OAuth tokens are stored securely and access is scoped to the minimum required permissions.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by email or through the Service. Continued use of the Service after changes constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

support@ashlr.ai