Privacy Policy

Last Updated: 3/16/2026

1. Introduction

Welcome to FGAC.ai ("we", "our", or "us"). We respect your privacy and are committed to protecting your personal data. FGAC.ai is designed as a secure proxy that sits between your AI agents and your connected API services, enforcing security rules without unnecessarily storing your data.

2. Google API Services Limited Use Policy

FGAC.ai's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

3. How We Access and Use Your Data

When you connect your Google Workspace or Gmail account to FGAC.ai, we request certain OAuth scopes (such as gmail.readonly, gmail.send, and gmail.modify). We use this access strictly to:

  • Proxy API requests made by your configured AI agents to the Gmail API.
  • Apply your custom security rules (e.g., blocking reads of emails containing 2FA codes, or allowing sending only to whitelisted domains).

Important limitations on our data use:

  • No Data Storage: We do not permanently store your email messages, subject lines, attachments, or any other content retrieved from the Gmail API. Content passes through our servers in-memory purely to evaluate your security rules and is then immediately discarded.
  • No Human Access: No humans read your email data.
  • No AI Training: We never use your emails or any Google Workspace data to train, fine-tune, or improve our own or third-party AI models.

4. Information We Store

To provide our service, we strictly store:

  • Your account identifier (Internal ID and Email Address) used for login.
  • Your OAuth access tokens and refresh tokens (securely managed via Clerk).
  • The proxy API keys you create and the security rules you define (Regex patterns, target emails).
  • Metadata regarding proxy requests (e.g., timestamp, matched rule name, success/failure status) for your dashboard logs. We do not log the body or content of the emails in these logs.

5. Deletion of Data

You can revoke FGAC.ai's access to your Google account at any time via your Google Account Security settings. If you delete your FGAC.ai account, all associated API keys, defined security rules, access logs, and metadata will be permanently deleted from our databases.

6. Contact Us

If you have any questions or concerns about this privacy policy, please contact support.

← Back to Home