Privacy Policy

Last updated: 16 July 2026

TalosOps (“TalosOps”, “we”, “us”) provides an AI-assisted customer-operations platform used by businesses (“clients”) to handle their own customers’ support conversations across channels such as web chat, Telegram, and email. This policy explains what data we access, how we use it, how long we keep it, and the choices available to you. It applies to the TalosOps platform and this website.

Who controls the data

For customer-support content processed on behalf of a client, the client is the data controller and TalosOps is a data processor acting on the client’s instructions. For this website and for account administration, TalosOps is the controller.

Data we access and process

  • Connected-mailbox email. When a client connects a mailbox (via Google/Microsoft OAuth, or via IMAP/SMTP with an app password), we read incoming messages to that mailbox so the AI agent can understand and respond to customer support requests, and we send replies from that same mailbox. We process message headers, subject, body text, and attachments needed to handle the conversation.
  • Conversation content. Messages exchanged with a client’s customers on connected channels, plus derived data (AI drafts, summaries, categorization, ticket state).
  • Account & contact data. Names, email addresses, and role for the client team members who use the platform; messages submitted through the contact form on this site.
  • Integration credentials. OAuth refresh tokens and app passwords for connected mailboxes and third-party services, always stored encrypted (see Security).

How we use the data

  • To read incoming support emails and generate and send replies on the connected mailbox’s behalf.
  • To display conversations to the client’s authorized staff in the operator dashboard, and to let staff take over, edit, or send replies.
  • To produce AI drafts, summaries, and categorization that help the client’s team respond faster.
  • To operate, secure, debug, and improve the service for that client.

We do not sell personal data, use it for advertising, or use email content to train generalized AI/ML models. AI replies are generated per request using a third-party model provider (Anthropic) under contractual terms that prohibit training on the data we send.

Google user data — Limited Use

TalosOps’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically, data accessed through Gmail APIs is used only to provide and improve the user-facing customer-support features described above; it is not transferred or used for advertising, and it is not used to train generalized AI/ML models. Human access to Gmail data occurs only (a) with the mailbox owner’s consent (their own staff acting in the dashboard), (b) as needed for security or to comply with applicable law, or (c) in aggregated/anonymized form for operations.

Sharing

We share data only with infrastructure subprocessors that operate the service: our hosting/serverless provider (Vercel), our database and storage provider (Supabase), and our AI model provider (Anthropic). Each processes data only to provide their service to us. We do not otherwise disclose personal data except when required by law.

Retention & deletion

Conversation and email data is retained for as long as the client’s account is active or as needed to provide the service, and is deleted on the client’s instruction. A client (or a connected mailbox owner) can disconnect a mailbox at any time from the dashboard, which stops all further access and removes the stored credentials. To request deletion of specific data or revoke access, contact us at the address below, or revoke TalosOps’s access directly from your Google Account permissions.

Security

Integration credentials (OAuth refresh tokens and app passwords) are encrypted at rest. Data is isolated per client (tenant) with row-level security in the database and access controls in the application. Access to production data is restricted to authorized personnel and logged.

Your choices

Depending on your location you may have rights to access, correct, or delete your personal data, or to object to or restrict its processing. For support-conversation data, direct these requests to the client whose service you contacted; we will assist that client in fulfilling them. For data we control, contact us directly.

Changes

We may update this policy; material changes will be reflected by the “Last updated” date above.

Contact

Questions or requests: privacy@talosops.com.