← Back to UNBORING
Privacy Policy
Unboring Work LLC · Last Updated: February 22, 2026
Introduction
Unboring Work LLC ("Unboring," "we," "us," or "our") operates the website unboring.work and related services. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our service.
By using Unboring, you agree to the collection and use of information in accordance with this policy.
Information We Collect
Information You Provide
Account Information
- Email address
- Name (optional)
- LinkedIn profile URL (optional)
Contact Data
- Contacts you import from LinkedIn or Gmail
- Contact names, companies, job titles, and LinkedIn URLs
- Notes and interaction history you add
Communication
- Messages you send us
- Feedback and support requests
Information Collected Automatically
Usage Data
- Pages visited and features used
- Actions taken (contacts saved, strategies generated, drafts copied)
- Time spent on pages
- Device type and browser
Cookies and Tracking
- We use cookies to keep you logged in
- We use PostHog for product analytics
- We use essential cookies only (no advertising cookies)
Information from Third Parties
Gmail
When you connect your Gmail account, we access your email metadata only — this includes sender and recipient addresses, dates, and subject lines. We never read the content of your emails.
This data is used solely to identify who you communicate with and when, so we can track relationship health and remind you to stay in touch.
We request the gmail.metadata scope, which provides read-only access to email headers and labels. We do not request access to read, compose, send, or delete your emails.
LinkedIn
- When you import contacts, we receive the data from your exported LinkedIn CSV file
- We do not access your LinkedIn account directly
Stripe
- When you subscribe, Stripe processes your payment
- We receive confirmation of payment but do not store credit card numbers
How We Use Your Information
1. Provide the Service
- Monitor your email metadata to track relationship health
- Generate outreach strategies and message drafts
- Store and display your network data
- Send you reminders when contacts are going cold
2. Communicate With You
- Send relationship health updates and timing emails
- Send onboarding and reminder emails
- Respond to support requests
3. Improve the Service
- Analyze usage patterns
- Fix bugs and improve features
- Develop new features
4. Process Payments
- Manage subscriptions
- Send receipts
AI Processing
Unboring uses artificial intelligence (Anthropic's Claude) to:
- Generate outreach strategies
- Write message drafts
- Analyze news and signals about your contacts
Important:
- Your contact data (names and companies only) is sent to Anthropic's API for processing
- Email content is never sent to Anthropic — only contact names and context
- Anthropic does not use your data to train their models
- Processed data is not stored by Anthropic beyond the API request
Google API Services — Limited Use Disclosure
UNBORING's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
- We only use Gmail data to provide and improve the contact relationship features you see in the app.
- We do not use Gmail data for advertising, market research, or email tracking unrelated to the service.
- We do not allow humans to read your Gmail data unless you give explicit consent, it is necessary for security purposes, or it is required by law.
- We do not transfer your Gmail data to third parties except as necessary to provide the service (Anthropic for AI processing of contact names only — never email content).
How We Share Your Information
We do not sell your personal information. We share data only with:
Service Providers
| Provider |
Purpose |
Data Shared |
| Anthropic |
AI processing |
Contact names, companies, context |
| Resend |
Email delivery |
Your email address, email content |
| Stripe |
Payment processing |
Email, payment details |
| PostHog |
Analytics |
Usage data (anonymized) |
| Render |
Hosting |
All data (encrypted) |
Legal Requirements
We may disclose information if required by law or to:
- Comply with legal process
- Protect our rights or safety
- Prevent fraud
Data Retention
Active Accounts
We retain your data as long as your account is active. Contact data and interaction history are kept to provide the service.
Deleted Accounts
When you delete your account, we delete your data within 30 days. Some data may be retained in backups for up to 90 days. Anonymized analytics data may be retained indefinitely.
Inactive Accounts
If your account is inactive for 12 months (no logins), we will send you a notice. If you do not respond within 30 days, we will automatically delete all Gmail-derived data associated with your account. Your account and non-Gmail contact data will be retained unless you request full deletion.
Emails
Email logs are retained for 1 year for deliverability analysis.
Your Rights
All Users
You have the right to:
- Access your data (email us for a copy)
- Correct inaccurate data
- Delete your account and data
- Unsubscribe from emails (link in every email)
- Export your contact data
- Disconnect your Gmail account at any time from Settings
- Revoke UNBORING's access to your Google account via your Google Account permissions
California Residents (CCPA)
You have additional rights to:
- Know what personal information we collect
- Request deletion of your information
- Opt out of any "sale" of data (we do not sell data)
- Non-discrimination for exercising your rights
European Residents (GDPR)
You have additional rights to:
- Data portability
- Restrict processing
- Object to processing
- Lodge a complaint with a supervisory authority
To exercise any of these rights, email us at hello@unboring.work.
Data Security
We implement reasonable security measures including:
- Encryption in transit (HTTPS)
- Encryption at rest (database and Gmail credentials encrypted with Fernet)
- Secure authentication (magic links, JWT tokens)
- Rate limiting on authentication and payment endpoints
- Security headers (HSTS, CSP, X-Frame-Options)
- Access controls (limited employee access)
- Webhook signature verification for payment processing
However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.
Cookies
We use the following cookies:
| Cookie |
Purpose |
Duration |
| Session |
Keep you logged in |
Session |
| Auth token |
Authentication |
30 days |
Third-Party Cookies: PostHog may set cookies for analytics. You can opt out by enabling "Do Not Track" in your browser. We do not use advertising cookies.
Children's Privacy
Unboring is not intended for children under 18. We do not knowingly collect information from children. If we learn we have collected data from a child, we will delete it.
International Data Transfers
Your data may be transferred to and processed in the United States. By using Unboring, you consent to this transfer.
We rely on Standard Contractual Clauses for EU data transfers where required.
Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of significant changes by:
- Posting the new policy on our website
- Updating the "Last Updated" date
- Sending an email for material changes
Contact Us
If you have questions about this Privacy Policy, contact us:
Summary
| What We Collect |
Why |
Shared With |
| Email address |
Account, communication |
Resend, Stripe |
| Gmail metadata |
Track relationship health |
Anthropic (contact names only) |
| Contact data |
Provide service |
Anthropic (AI) |
| Usage data |
Improve service |
PostHog |
| Payment info |
Process payments |
Stripe |
This policy is effective as of February 22, 2026.