Privacy Policy

Resurf.wiki is a follow-up drafting tool. We read data you explicitly grant us access to (your Google Sheets lead lists, your Gmail history), use it to draft emails for you, and show you those drafts. We do not sell your data. By default we do not use your content to train AI models; if you opt in at signup or in Settings, we may use anonymized portions of your drafts to fine-tune our AI (see §5). You can export and delete everything at any time.

• Account data: email address (via Supabase Auth), subscription status (via Stripe), user preferences you set in-app.
• Google Sheets data: rows from sheets you explicitly connect. Read-only. We never write to your sheets.
• Gmail data: email threads with leads on your list. Read-only scope gmail.readonly. Used only to enrich context for draft generation.
• Lead notes: anything you type in the sheet, upload via CSV, or edit in the app.
• Usage metadata: page visits, feature usage, anonymized event logs for debugging and product improvement.

• Drafting personalized follow-up emails (the core product).
• Running our scheduled cron jobs that sync your sheets and produce morning drafts.
• Troubleshooting errors (logged to our observability system with minimum necessary data).
• Billing via Stripe.

We send minimum-necessary data to these sub-processors:

• Anthropic (Claude): lead names, notes, and prior email snippets for draft generation. Zero-retention API agreement covers all Resurf calls.
• OpenAI: used as a fallback / lighter-model option for classification. Same minimum-data principle.
• Supabase: database + authentication host (Postgres, US region).
• Vercel: application hosting + edge functions.
• Stripe: payment processing.
• Resend: transactional email delivery when you hit Send on a draft.

With your explicit opt-in consent at signup (or anytime from Settings), we may use anonymized portions of your drafts to fine-tune AI models that improve draft quality across Resurf. This consent is OFF by default. You can revoke it at any time from Settings, and we will stop using your content for fine-tuning on a going-forward basis. Content already contributed before revocation may remain in model training artifacts we cannot selectively remove.

Independent of this consent: we never sell your data to third parties, never send email from your account without your explicit click, and never write to your Google Sheets. Anthropic and OpenAI calls use zero-retention where available.

You can export your entire account’s data as JSON at any time from Settings. You can delete your account and all associated data within the app. For EU / UK / California residents, you have additional rights under GDPR / UK GDPR / CCPA including access, rectification, erasure, and portability. Email legal@resurf.wiki for a formal request.

We retain your data as long as your account is active. Upon account deletion, we delete personal data within 30 days. Anonymized aggregate metrics may be retained indefinitely for product improvement.

All data in transit is TLS-encrypted. Database data at rest is encrypted by Supabase. Service-role keys and OAuth tokens are stored encrypted and never surfaced in logs or UI. If you believe you’ve discovered a security issue, email security@resurf.wiki.

Resurf.wiki is not intended for users under 18. We do not knowingly collect data from minors.

Resurf’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We use Gmail and Google Sheets data only to provide the in-product drafting features described here. We do not transfer this data to any third party other than the sub-processors named above.

We’ll post material changes to this policy here with a new effective date. For significant changes we’ll notify active accounts by email at least 14 days before the change takes effect.

Resurf.wiki is operated by Healthcare Financial Consortium, Inc. in Irvine, California. Privacy inquiries: legal@resurf.wiki.