Privacy Policy

Last updated: March 26, 2026

Introduction

Anvisio ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website, Chrome extension, and related services (collectively, the "Service").

Information We Collect

Account Information

When you create an account, we collect your name, email address, and organization name. If you sign in with Google, we receive your profile information (name, email, avatar) from Google.

User Input

When you use the Chrome extension, you may input notes, context, or other information which is sent to our servers for AI processing. This data is processed to generate suggested app updates and action items.

Connected App Data

With your explicit authorization via OAuth, we access fields and records in your connected apps to provide context-aware suggestions. We access only the data necessary to deliver the Service and never store your app credentials. Sensitive fields (as configured by your admin) are redacted before leaving your browser.

Navigation Data

On domains your organization has configured, we collect normalized URL patterns (e.g., "salesforce.com/opportunity/:id") to understand workflow usage. Record IDs are replaced with placeholders — we do not store full URLs or browsing history outside configured applications.

AI Processing Logs

Every AI suggestion request is logged, including the prompt sent to the AI provider, the response received, the AI model used, token counts, latency, and estimated cost. These logs are used for quality monitoring, debugging, and evaluation. They are not shared externally or used to train AI models.

Meeting Scheduler Data

When you connect Google Calendar, we store encrypted OAuth tokens to access your calendar availability (calendar.freebusy scope), create calendar events (calendar.events scope), and send meeting proposal emails on your behalf (gmail.send scope). We store meeting proposal details including recipient email, proposed time slots, and booking status.

Extraction Metadata

When you run the onboarding extraction, we store entity schemas, field definitions, and picklist values from your SaaS apps. This metadata enables accurate field mapping and is scoped to your organization.

Usage Data

We collect anonymized usage data including feature usage patterns, suggestion acceptance rates, feedback events (approve/edit/dismiss), and error reports to improve the Service.

How We Use Your Information

  • To provide and maintain the Service
  • To generate AI-powered suggestions for app updates
  • To improve the accuracy of our AI models using aggregated, anonymized data
  • To communicate with you about the Service
  • To detect and prevent fraud or abuse

Data Security

We implement industry-standard security measures including encryption in transit (TLS 1.2+), encryption at rest, and role-based access controls. Your data is hosted on AWS infrastructure within the United States.

Data Retention

We retain your data according to the following schedule:

  • Account data: retained while your account is active
  • Suggestions, feedback, and AI processing logs: 90 days, then automatically deleted
  • Navigation events: 30 days, then automatically deleted
  • Extraction metadata: retained while your organization is active
  • Meeting proposals: 90 days after completion or expiry

You may request deletion of your data at any time.

Third-Party Services

We use the following third-party services:

  • Amazon Web Services (AWS) — infrastructure and hosting
  • Anthropic / OpenAI — AI model providers for generating suggestions
  • Google — OAuth authentication, Google Calendar API (availability and events), Gmail API (sending meeting proposals)
  • Third-party SaaS apps — connected via OAuth (e.g., Salesforce, and others as added)

We do not sell, trade, or rent your personal information to third parties.

Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a machine-readable format
  • Withdraw consent for connected app access at any time

Cookies

We use essential cookies for authentication and session management. We do not use tracking or advertising cookies.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, please contact us at privacy@anvisio.com.