Global Privacy Policy of
Email Veritas Security Technologies, Ltd.

1. Welcome

This privacy policy outlines how Email Veritas Security Technologies Ltd. ("EmailVeritas Ltd.") uses and protects the information you provide when using the Phishing Detector (formerly known as the Email Veritas Anti-Phishing Application) and the free URL Checker product, along with their respective extensions for Google Workspace and Microsoft Outlook. It may be updated to comply with legislative, regulatory, or technological changes. Any modifications will be posted online, making it important for users to regularly review this policy.

EmailVeritas complies with Google's Limited Use Requirements for information received from Gmail APIs.

2. Information We Collect

2.1 Phishing Detector

• Designed to protect email communications from phishing by analyzing email messages for aggregated message information (lexical and syntactic) necessary for identifying scams.
• Registration requires your name and email address only. Processes email messages to extract needed information without storing the actual messages, which are discarded post-analysis.

2.2 URL Checker

• Enhances email security by allowing users to inspect URLs found in their emails for potential risks, such as phishing or malicious links.

2.2.1 Google Workspace Extension

• Read-Only Email Access: Processes email content to extract URLs for user inspection in a read-only mode. No email data is stored, altered, or shared.

2.2.2 Microsoft Outlook Extension

• Utilizes Microsoft Graph API scopes for user authentication, email message fetching, and URL analysis.

No sensitive personal data revealing racial or ethnic origins, political opinions, health, or sexual life is collected or processed.

3. Information We Store

3.1 Phishing Detector

• Stores user names, email addresses, and credentials on our local server, alongside encrypted destination and originator email addresses from the user's SENT and INBOX folders. Encryption ensures the security and privacy of this data.

3.2 URL Checker

• Does not store any email content or extracted URLs. Only minimal user account information, such as the email address for authentication and usage tracking, may be stored securely to improve user experience and functionality.

4. How We Use Information We Collect

4.1 Phishing Detector

• Uses the collected data to classify email messages as legitimate or scams, creating user profiles and assigning labels without human review. All processing steps are automated.

4.2 URL Checker

• Real-Time URL Inspection: URLs selected by the user or entered manually are securely sent to our AI-powered API for analysis to determine if they are safe, suspicious, or malicious.
• Localized Experience: Utilizes the user's Google Workspace or Microsoft Outlook language settings to provide a localized and user-friendly interface.

4.3 Use of Data for AI and ML Models

• Data obtained through Google Workspace APIs and Microsoft Graph APIs is not utilized to develop, improve, or train generalized AI or ML models. All data is processed strictly for real-time inspection and analysis to detect potential risks and threats. No user data is retained or stored for any AI or ML training purposes.

5. Information We Share

EmailVeritas Ltd. does not transmit individual or aggregated data to third parties nor sells user data. Data is processed on local servers without remote server transmission, except as legally necessary or to protect EmailVeritas Ltd., its users, or the public.

6. Security

EmailVeritas Ltd. employs administrative, technical, and physical safeguards to protect personal data. However, we cannot guarantee complete security due to inherent Internet vulnerabilities.

7. Data Retention and Deletion

7.1 Data Retention

We are committed to ensuring the privacy and security of your data. For comprehensive information on data retention and deletion practices, please refer to our Data Protection Policy.

Data obtained through Google Workspace APIs and Microsoft Graph APIs is not retained beyond the duration necessary to perform real-time URL inspections and ensure security functionality. No data extracted through API access is stored, cached, or reused after the analysis process is completed. We strictly adhere to Google's and Microsoft's data retention policies and guidelines.

7.2 User-Initiated Data Deletion

Users have the right to request the deletion of their personal data at any time by contacting us through the support channels specified in this policy. Upon verification of the request and the user's identity, all relevant data will be permanently removed from our systems, except when legal obligations require otherwise.

7.3 Data Access and Correction

Users can request access to their personal data and have the right to request corrections of any inaccurate data. This can be done through the support channels specified in this policy.

7.4 Data Portability

Users have the right to request a copy of their personal data in a structured, commonly used, and machine-readable format. This right applies to the data you have provided to us and is stored in our systems.

8. Changes to This Privacy Policy

We may update our privacy policies and practices from time to time. Any changes will be reflected on this page, and where appropriate, notified to you by email.

9. Contact Us

For inquiries about this Privacy Policy, contact EmailVeritas Ltd. at:

• Email: info@emailveritas.com
• Mail: 4217 Kincaid Street, Victoria, BC V8X 4K7, Canada