Privacy Policy

Last Updated: 1/8/2026

1. Introduction

Skrap AI("we", "our", or "us") is committed to protecting your privacy and ensuring compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR). This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

2. Information We Collect

2.1 Personal Information

We collect the following personal information:

  • Account Information: Name, email address, password (encrypted), phone number (optional), profile picture (optional)
  • Payment Information: Billing address, payment method details (processed securely by third parties)
  • Usage Data: API requests, credit usage, service interactions
  • Communication Data: Support requests, feedback, and correspondence

2.2 Automatically Collected Information

  • Device Information: IP address, browser type, operating system, device identifiers
  • Usage Analytics: Pages visited, features used, time spent on service
  • Cookies and Tracking: Session management and user preference data
  • Log Data: Server logs for security and performance monitoring

3. Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contract Performance: To provide our services and fulfill our contractual obligations
  • Legitimate Interest: To improve our services, ensure security, and communicate with you
  • Legal Obligation: To comply with applicable laws and regulations
  • Consent: Where you have explicitly agreed to certain processing activities

4. How We Use Your Information

We use your information to:

  • Provide, maintain, and improve our services
  • Process transactions and manage your account
  • Send service-related communications and updates
  • Provide customer support and respond to inquiries
  • Monitor usage and prevent fraud or abuse
  • Comply with legal obligations
  • Conduct research and analytics to improve our services

5. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

5.1 Service Providers

We may share information with trusted third-party service providers who assist us in operating our service, such as payment processors (Stripe, Razorpay), email delivery services (Resend), and hosting providers. These providers are contractually obligated to maintain confidentiality.

5.2 Legal Requirements

We may disclose information if required by law, court order, or government request, or if we believe such disclosure is necessary to protect our rights, safety, or the rights and safety of others.

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity. We will notify you before this occurs and ensure continued protection of your data.

6. Data Security

We implement comprehensive security measures to protect your personal information:

  • Encryption of data in transit and at rest
  • Regular security audits and penetration testing
  • Access controls and employee training
  • Regular backups with secure storage
  • Incident response procedures

While we strive to protect your information, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

7. Data Retention

We retain your personal information for:

  • Account Data: As long as your account is active or as needed to provide services
  • Usage Data: 3 years for analytics and service improvement
  • Communication Data: 2 years for support and compliance purposes
  • Legal Hold: Extended retention if required by law or legal proceedings

8. Your GDPR Rights

Under GDPR, you have the following rights regarding your personal data:

Right to Access

Request a copy of your personal data we hold.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Data Portability

Request your data in a structured, machine-readable format.

Right to Object

Object to processing based on legitimate interests.

Right to Restrict Processing

Request limitation of how we process your data.

To exercise these rights, please contact us at contact@skrap.ai. We will respond within 30 days.

9. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience. For detailed information, please see our Cookie Policy.

10. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your data during such transfers, including standard contractual clauses and adequacy decisions where applicable.

11. Children's Privacy

Our service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

12. Google Sheets™ Add-on Data Usage

When you use the Skrap.ai Google Sheets add-on, we access Google Sheets data only when you explicitly initiate an action inside the add-on, such as finding or verifying email addresses.

OAuth Permissions and Scopes

The add-on requests the following minimal OAuth permissions, each used only for its specific purpose:

  • spreadsheets.currentonly: We request permission to read and write data in the current spreadsheet only (not all your spreadsheets). This permission is used only to read the email addresses and contact information you select for processing, and to write back the verification or finding results to your sheet.
  • script.external_request: We request permission to make external API calls to Skrap.ai servers. This permission is used only to send the selected email addresses and contact information to our API for verification or email finding services.
  • script.container.ui: We request permission to display the add-on sidebar interface. This permission is used only to show the add-on user interface within Google Sheets.

These permissions are minimal and necessary for the add-on to function. We do not request access to your entire Google Drive, other spreadsheets, or any data beyond what is required for the email verification and finding features.

What Data We Access

We access only the spreadsheet rows you choose to process (either all rows or only the rows you have selected in the sheet, depending on your selection). This includes:

  • Email addresses from the column you specify
  • First name and last name (if provided for email finding)
  • Domain names (if provided for email finding)
  • Status information that we write back to your spreadsheet

When Data is Accessed

Data is accessed only when you explicitly click the "Process" button or similar action within the add-on. We do not access your spreadsheet data in the background, automatically, or without your direct action.

Specifically, we do NOT access data:

  • When you open the spreadsheet
  • When you edit cells in the spreadsheet
  • Automatically or on a schedule
  • When the add-on is not actively being used
  • Using triggers or time-based automation

All data access requires your explicit action (clicking a button in the add-on interface).

Why Data is Sent Externally

The selected data is transmitted securely to Skrap.ai servers to perform the email verification or email finding service you requested. This is necessary to provide the core functionality of the add-on.

Where Data is Sent

Data is sent securely via HTTPS to Skrap.ai servers located in our data centers. We use industry-standard encryption to protect data in transit.

Data Storage and Sharing

Data is sent to Skrap.ai servers only when you explicitly initiate an action in the add-on (such as clicking "Verify Emails" or "Find Emails"). Verification and discovery results are stored securely in your Skrap.ai account to provide you with:

  • Access to processing history and usage records
  • Account functionality and service support
  • Usage analytics for your account

What is stored:

  • Email addresses that were verified or found
  • Verification results (valid, risky, invalid status)
  • Processing timestamps and usage metadata
  • Credit usage information

Data retention: Processing results are retained in your Skrap.ai account according to our data retention policies. You can request deletion of your processing history at any time by contacting us at contact@skrap.ai.

We do not sell or share Google user data with third parties. We do not use Google user data for advertising purposes.

Your API Key

Your Skrap.ai API key is stored securely in your Google account using Google Apps Script's user properties. It is only accessible by the add-on and is not shared with anyone else, including other Google accounts.

Google Sheets™ is a trademark of Google LLC.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. For material changes, we will provide additional notice.

14. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Data Protection Officer

Email: contact@skrap.ai

Address: Regal Treasure Apartments, Ayodhya Nagar, Madhya Pradesh, Bhopal 462041, India

This Privacy Policy is designed to comply with GDPR and other applicable data protection laws. Your privacy rights are important to us.

Google Sheets™ is a trademark of Google LLC.