Privacy Policy

1. Introduction

Sendlume (“we,” “our,” or “us”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered cold email outreach platform and related services (“Service”). By using Sendlume, you consent to the practices described herein.

2. Information We Collect

We collect information to provide and improve our Service, including:

• Personal Data You Provide: full name, username, email address, phone number, profile details (company, designation, picture), password, and OTP verification data.
• Contact Lists & Campaign Data: email contacts, cold email content, and campaign metadata you upload or generate.
• Usage & Device Data: IP address, device info, browser type, operating system, and usage analytics.
• Integration Data: data accessed from connected third-party services (e.g., Notion) with your explicit consent to enhance AI personalization.

3. How We Use Your Information

We process your data for the following purposes:

• Account creation, verification, and authentication, including OTP.
• Operating and providing platform features.
• AI-powered personalized email generation based on user data and context.
• Autofill and streamline email content with profile and campaign information.
• AI model training and continuous improvement using anonymized/pseudonymized data.
• Analytics, troubleshooting, and service optimization.
• Fraud detection, security enforcement, and legal compliance.
• Customer support and communications.
• Marketing messages (with opt-out available).
• Compliance with applicable laws and lawful requests.

4. Consent and Your Choices

• We obtain your informed consent before collecting and processing your personal data.
• You can withdraw your consent at any time through account settings or by contacting us.
• You have the right to access, correct, and request deletion of your personal data.
• Marketing communications and cookies can be opted out of via your account preferences.
• We respect browser-level universal opt-out mechanisms where applicable.

5. Cookies and Tracking Technologies

We use cookies to:

• Enable essential platform functions.
• Remember your preferences.
• Analyze usage and performance.
• Deliver targeted advertising, including Facebook Ads retargeting.

You will be informed via cookie consent banners and can manage cookie preferences at any time.

6. Data Sharing and Third Parties

• We do not sell or rent your personal data.
• We access data from third-party integrations only with your consent to provide enhanced AI personalization.
• We maintain contractual safeguards ensuring data confidentiality with integration partners.
• We may disclose data to comply with legal requirements or protect rights and safety.
• Third-party service providers (e.g., cloud hosts, payment gateways) are bound by confidentiality obligations.

7. Data Storage, Transfer, and Security

• Data is stored in secure Tier III-certified data centers located in India.
• We implement encryption (in transit and at rest), access controls, routine security audits, and other best practices.
• Data transfers occur solely within our secured infrastructure and are compliant with applicable law.
• We employ multi-factor authentication and zero trust principles to restrict unauthorized access.

8. Automated Decision-Making and AI

• Our platform uses AI and automated decision systems to generate personalized email content.
• These systems optimize outreach based on data you provide and integration context.
• Users can request human review or support if they have concerns about automated outputs.

9. Data Retention

• We retain your data only for as long as necessary to provide services or fulfill legal obligations.
• After an account deletion request, data is retained securely for 60 days to allow restoration.
• Post 60 days, data is irreversibly deleted from all systems.

10. Business Transfers

• In the event of a merger, acquisition, or asset sale, your personal data may be transferred.
• We will ensure continued protection of your data consistent with this Privacy Policy.
• You will be notified of any such transfer and related changes.

11. Dispute Resolution and Governing Law

• Privacy-related disputes will be handled through amicable negotiation or arbitration per applicable law.
• This Privacy Policy is governed by the laws of India, subject to applicable regulations.

12. Children's Privacy

• Our Service is not directed to children under 16 years.
• We do not knowingly collect or process children's personal data.
• If you believe we have collected data from a child, please contact us for prompt deletion.

13. Your Rights and Controls

• Access, correction, and deletion of your data via portal or support.
• Opt-out from marketing communications and cookies at any time.
• Withdrawal of consent and data portability requests welcomed.
• Transparent mechanisms to exercise your privacy rights easily.

14. Transparency, Updates, and User Engagement

• We communicate policy updates promptly through email and platform notices.
• We provide clear, plain-language privacy information, structured navigation, and visual aids for better understanding.
• Our Privacy Policy is publicly available at all data collection points and on our website free of charge.
• Previous versions will be archived and accessible.

15. Compliance, Audits, and Training

• We conduct regular privacy and security audits.
• Engage privacy and legal experts to ensure compliance with evolving regulations (including India's DPDP Rules 2025).
• Provide ongoing employee training on data privacy and incident response protocols.

16. Contact Us

For questions, privacy requests, or concerns, please contact: