Back to App

Data & Privacy Policy

Last updated: February 2026

1. Introduction

This Data Policy explains how LinkedIn Auto-Responder ("the App", "we", "our") collects, uses, stores, and protects your personal data when you use our service. We are committed to protecting your privacy and handling your data responsibly.

2. Data We Collect

2.1 Account Information

  • Google account details (name, email address, profile picture) when you sign in
  • Supabase user ID (automatically generated)

2.2 LinkedIn Data

  • LinkedIn account connection details (via Unipile OAuth)
  • Incoming LinkedIn messages (sender name, occupation, message content)
  • Chat IDs for message threading

2.3 AI-Generated Data

  • Intent classifications (e.g., OPPORTUNITY, SPAM, RECRUITER)
  • Priority ratings (HIGH, MEDIUM, LOW)
  • AI-suggested reply text
  • AI reasoning for suggestions

2.4 Usage Data

  • Approval/rejection decisions on suggested replies
  • Message history and audit trail
  • Timestamps of actions

3. How We Use Your Data

  • Authentication: To verify your identity and provide access to your account
  • Message Analysis: To classify incoming LinkedIn messages using AI (OpenAI GPT-4o-mini)
  • Reply Suggestions: To generate professional reply drafts for your review
  • Message Delivery: To send approved replies to LinkedIn on your behalf
  • History & Audit: To maintain a record of processed messages and actions taken

4. Data Storage & Security

  • All data is stored in Supabase (PostgreSQL) with Row Level Security (RLS) enabled
  • Each user can only access their own data — enforced at the database level
  • All communications use HTTPS encryption
  • API keys and secrets are stored securely and never exposed to the client
  • Database queries are sanitized to prevent injection attacks
  • Table access is whitelisted to prevent unauthorized queries

5. Third-Party Services

We use the following third-party services to provide our functionality:

  • Google OAuth: For user authentication (governed by Google's Privacy Policy)
  • Supabase: For data storage and user authentication
  • Unipile: For LinkedIn account connection and message delivery
  • OpenAI: For AI-powered message analysis (messages are sent to OpenAI for processing)
  • CodeWords (Agemo): For backend service hosting and webhook management
  • Vercel: For frontend application hosting

6. Data Sharing

We do not sell, trade, or rent your personal data to third parties. Your data is only shared with the third-party services listed above, strictly for the purpose of providing the App's functionality. We do not share your data with any other parties.

7. Data Retention

  • Pending messages are deleted after you approve or reject them
  • Message history is retained for your audit trail until you delete your account
  • LinkedIn account data is deleted when you disconnect your account
  • When you delete a LinkedIn account, all associated webhooks, Unipile connections, and database records are automatically removed

8. Your Rights

You have the right to:

  • Access your data through the App's interface
  • Delete your LinkedIn accounts and associated data at any time
  • Disconnect your LinkedIn account, which removes all webhooks and stored messages
  • Reject any AI-suggested reply — no message is sent without your explicit approval
  • Request full deletion of your account and all associated data

9. Human-in-the-Loop

The App uses AI to suggest replies, but never sends messages automatically. Every reply requires your explicit approval before being sent. You maintain full control over all communications sent from your LinkedIn account.

10. Changes to This Policy

We may update this Data Policy from time to time. We will notify users of any material changes by updating the "Last updated" date at the top of this page.

11. Contact

If you have any questions about this Data Policy or your data, please contact us at support@agemo.ai.

2026 LinkedIn Auto-Responder. All rights reserved.