Privacy Policy

    Nomo AI

    Effective Date: March 27, 2026 · Last Updated: April 17, 2026

    The Short Version

    Nomo AI processes your email to help you work smarter. We never store the body of your email. We never send email on your behalf. We automatically strip sensitive identifiers (SSNs, EINs, ITINs, dates of birth, bank account numbers) before any AI processing. You can disconnect and roll back to your pre-Nomo inbox state at any time.

    Nomo AI's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

    1. What We Collect

    Information You Provide

    • Account information: Your name, email address, and professional profile (e.g., tax professional, accountant)
    • Organization details: Firm name and your role within it, if applicable
    • Settings and preferences: Your hourly rate (used for time-saved calculations), triage preferences, and feature toggles
    • Feedback and corrections: When you correct a classification or edit a draft, we store the correction to improve your experience

    Information We Access Through Google

    When you connect your Google account via OAuth, we access:

    • Gmail: Email headers (sender, recipient, date), labels, and message metadata. Email subject lines are stored as part of triage metadata for panel display and learning. Email bodies are accessed in memory for real-time classification and drafting but are never written to our database.
    • Google Contacts: Names and email addresses of your contacts, used to identify known clients and senders.
    • Google Calendar: Event times, attendee information, and your timezone setting. Used to detect meeting-related emails and ensure accurate date/time handling.
    • Profile: Your Google email address and display name for account creation.

    The specific OAuth scopes Nomo requests are: gmail.readonly, gmail.modify, gmail.labels, contacts.readonly, calendar.readonly, calendar.events, userinfo.email, and userinfo.profile. These are shown on the Google consent screen when you connect your account.

    Information We Generate

    • Triage classifications: Urgency, relevance, and intent labels assigned to each email
    • Usage metrics: Emails processed, drafts generated, credits consumed, time-saved estimates
    • LLM call logs: Which AI model was used, token counts, response times, and cost — but never the content of the request or response

    2. What We Never Collect or Store

    • Email bodies: Processed in memory for classification and drafting. Never written to our database, cached, or logged.
    • Email passwords: We use Google OAuth exclusively. Your Gmail password is never transmitted to or stored by Nomo.
    • Client PII in our database: Social Security Numbers, Employer Identification Numbers, ITINs, dates of birth, and bank account numbers are automatically redacted before any external AI processing. If redaction fails, the request is aborted.
    • Human access to your email: No human at Nomo reads the content of your emails. Debugging and support are performed on metadata and error logs only. The only exceptions are: (a) you explicitly grant us access to review a specific thread for a support issue, or (b) if required by law.

    3. How We Use Your Information

    • Inbox classification: To prioritize and categorize your incoming email by urgency, relevance, and intent
    • Draft generation: To prepare email responses for your review (we never send email on your behalf)
    • Tax research: To answer tax-related questions with relevant context and guidance
    • Learning and improvement: Your corrections and feedback improve the accuracy of your personal triage over time
    • Usage tracking: To calculate credits consumed, generate time-saved reports, and monitor system performance
    • Account management: To manage your subscription, organization membership, and feature access

    4. Chrome Extension

    The Nomo AI Chrome Extension is the primary way you interact with Nomo AI on desktop. The extension uses the following browser permissions:

    • Side Panel (sidePanel): Displays the Nomo AI triage panel alongside Gmail
    • Active Tab (activeTab): Detects which email you are currently viewing so the panel can show relevant context
    • Storage (storage): Saves your authentication state and preferences locally in your browser
    • Identity (identity): Initiates Google OAuth sign-in so you can connect your Gmail account
    • Alarms (alarms): Schedules periodic background tasks — refreshing the urgent-email badge count and checking for extension updates
    • Notifications (notifications): Sends desktop notifications when Nomo detects time-sensitive inbox signals, such as a client whose tone has shifted from neutral to frustrated

    The extension communicates only with Nomo AI's backend server (nomo-ai-production.up.railway.app) and Google's OAuth services. No data is sent to any other destination. The extension itself does not access or process email content — it sends only the identifier of the email you are viewing to the backend, which handles all email processing server-side under the policies described in this document.

    5. Third-Party Services

    We share limited data with the following services to operate Nomo AI:

    Anthropic (AI Processing)

    • What we send: Email metadata and PII-redacted content for classification and draft generation
    • What we don't send: Raw SSNs, EINs, ITINs, dates of birth, bank account numbers, or other sensitive identifiers
    • Purpose: Powers AI classification and drafting

    OpenAI (AI Processing — drafting fallback)

    • What we send: Email metadata and PII-redacted content for draft generation only (not classification), used as a fallback when our Anthropic drafting path fails
    • What we don't send: Raw SSNs, EINs, ITINs, dates of birth, bank account numbers, or other sensitive identifiers
    • Purpose: Keeps draft generation available during Anthropic API outages or rate-limit events

    PostHog (Analytics)

    • What we send: Product usage events (e.g., "email triaged," "draft generated"), feature engagement, and anonymized performance metrics
    • What we don't send: Email content, client information, or PII beyond your email address for user identification
    • Purpose: Understanding product usage, improving features, monitoring system health

    HubSpot (CRM)

    • What we send: Your email address, name, professional profile, plan tier, and lifecycle events (e.g., "trial started," "subscription activated")
    • What we don't send: Email content, client information, triage data, or any PII beyond basic account details
    • Purpose: Managing our relationship with you — onboarding, support, and communication

    Google (OAuth and APIs)

    • What we access: Gmail messages, contacts, and calendar events as described in Section 1
    • What we store: OAuth access and refresh tokens (encrypted at rest in our database)
    • Purpose: Reading your email, applying labels, creating drafts, detecting calendar signals, identifying known contacts

    Railway (Infrastructure)

    • What is hosted: Our application server and PostgreSQL database
    • Purpose: Hosting and running the Nomo AI service

    6. Data Security

    • Encryption in transit: All data transmitted between your browser, our servers, and third-party services uses HTTPS/TLS encryption
    • Encryption at rest: OAuth tokens and API keys are encrypted at the application layer in our database
    • Authentication: Token-based authentication with automatic expiry. No cookies are used for authentication.
    • PII redaction: Automatic detection and redaction of SSNs, EINs, ITINs, dates of birth, and bank account numbers before any external AI processing. If redaction fails, the request is aborted.
    • Access control: Database access is restricted to application-level queries with parameterized SQL. No direct database access is exposed externally.
    • SOC 2: Certification is on our near-term roadmap.

    7. Data Retention

    • Account data: Retained while your account is active. Deleted within 30 days of account deletion.
    • Triage results: Retained while your account is active to power learning and accuracy improvements. Deleted within 30 days of account deletion.
    • LLM call logs: Retained for cost monitoring and system performance analysis. Deleted within 30 days of account deletion.
    • Email bodies: Not retained. Processed in memory and immediately discarded.
    • Feedback and corrections: Retained while your account is active to maintain your personalized triage accuracy. Deleted within 30 days of account deletion.

    8. Your Rights and Controls

    • Disconnect: You can revoke Nomo's access to your Google account at any time from your Google Account settings or through Nomo's settings.
    • Rollback: One-click rollback restores your inbox to its exact pre-Nomo state — all Nomo labels removed, original labels restored.
    • Data deletion: Contact us at privacy@getnomo.ai to request deletion of your account and associated data. Deletion is completed within 30 days.
    • Data export: Contact us at privacy@getnomo.ai to request an export of your personal data.
    • Correction: You can correct any classification at any time through the correction interface.

    9. California Privacy Rights (CCPA)

    If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

    • Right to Know: You can request what personal information we collect, use, and disclose about you. See Sections 1–5 of this policy for a complete description.
    • Right to Delete: You can request deletion of your personal information. Contact us at privacy@getnomo.ai and we will delete your data within 30 days.
    • Right to Opt-Out of Sale: Nomo AI does not sell your personal information. We have never sold personal information and have no plans to do so.
    • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

    Categories of personal information we collect: Identifiers (name, email address), professional information (role, organization, hourly rate), internet activity (product usage events, feature engagement), and inferences (triage classifications generated from your email metadata).

    Categories of personal information we share with service providers: Identifiers and internet activity with PostHog (analytics), HubSpot (CRM), and Anthropic and OpenAI (AI processing) — strictly for operating the Service as described in Section 5.

    We do not sell personal information. We do not share personal information for cross-context behavioral advertising.

    To exercise any of these rights, contact us at privacy@getnomo.ai. We will verify your identity before processing your request.

    10. What We Will Never Do

    • Never send email on your behalf. Every draft requires your review and explicit action to send.
    • Never delete your email. We organize with labels and archiving only. Your complete email history stays intact.
    • Never sell your data. Your information is used solely to provide and improve the Nomo AI service.
    • Never use your data to train third-party AI models. Your email content is not used to train Anthropic's models or any other third-party AI.
    • Never modify your Google Calendar settings or events you created. Calendar settings are strictly read-only. Any events Nomo creates on your behalf are tagged "[Scheduled by Nomo AI]" and can only be modified or deleted by Nomo.

    11. Children's Privacy

    Nomo AI is designed for professional use and is not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

    12. Changes to This Policy

    We may update this privacy policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date above. Your continued use of Nomo AI after changes are posted constitutes acceptance of the updated policy.

    13. Contact Us

    If you have questions about this privacy policy or our data practices:

    Email: privacy@getnomo.ai
    Company: Nomo LLC

    This privacy policy applies to the Nomo AI service available at getnomo.ai and the Nomo AI Chrome Extension.