Privacy Policy

Last updated: February 1, 2026

Founders Pulse ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard information when you use the Founders Pulse application.

Information We Access and Process

When you connect third-party services to Founders Pulse, you explicitly authorize read-only access to certain data. We access only what is necessary to provide the service and only within the scopes you approve.

Connected services may include:

• Gmail: Email metadata (sender, subject, timestamps) and message content for summarization, context, and action-item extraction. OAuth scope requested: https://www.googleapis.com/auth/gmail.readonly
• Google Calendar: Event details such as titles, times, attendees, and descriptions. OAuth scope requested: https://www.googleapis.com/auth/calendar.readonly
• Slack: Messages from channels and direct messages you have access to, for context and follow-through detection
• Notion: Page titles and content from workspaces you authorize
• GitHub: Repository activity, issues, and pull requests from repositories you authorize
• Plaid: Bank account names, balances, and transaction history (read-only)

We do not request permissions that allow us to send messages, modify content, or take actions in any connected service.

How We Use Your Data

Your data is used solely to provide Founders Pulse functionality, including:

• Generating Daily Briefs and meeting preparation summaries
• Extracting and tracking action items and follow-through
• Providing historical context and trend awareness over time
• Attaching clear source links and timestamps to all summaries

Founders Pulse does not sell, share, or monetize your personal data.

Data Storage and Retention

To provide historical context, trends, and continuity, Founders Pulse stores a limited, normalized representation of events from your connected services. This includes structured metadata such as timestamps, identifiers, summaries, and source links.

We do not store full copies of third-party systems, nor do we maintain independent replicas of your inboxes, workspaces, or repositories.

Retention Timeframes

• OAuth Access Tokens: Retained for as long as the integration remains connected. Immediately deleted when you disconnect the integration.
• Daily Brief Summaries: Retained for up to 90 days to provide historical context and trend analysis. Deleted upon account deletion.
• Action Items and Insights: Retained for as long as your account is active. Deleted upon account deletion or when you dismiss individual items.
• Market Pulse Data: Retained for up to 30 days. Older items are automatically purged.
• Authentication Data (OTP codes): OTP verification codes expire and are invalidated after 10 minutes. Consumed codes are marked as used immediately.

You may disconnect integrations at any time, which immediately deletes associated access tokens and prevents further data ingestion. You may also request deletion of your account and all associated stored data by contacting us.

Use of Large Language Models (LLMs)

Founders Pulse uses Large Language Models (LLMs) strictly as a language and reasoning layer under constrained conditions:

• LLMs process only pre-structured, normalized data supplied by our systems
• LLMs do not have direct access to your third-party accounts or raw APIs
• LLMs are used to summarize, rank, and explain information — not to observe or discover new data
• LLMs cannot take actions on your behalf, send messages, or modify external systems

We use LLM API configurations that do not train models on your data. The LLM is not treated as an authority or source of truth; all outputs are grounded in your authorized data and include clear source references.

Third-Party Services

Founders Pulse integrates with third-party services using OAuth and API access. Data access is governed by your permissions and by each provider's own privacy policy, including but not limited to:

• Google
• Slack
• GitHub
• Notion
• Plaid
• OpenAI
• Resend (for email verification)

We encourage you to review those providers' policies to understand how they handle data within their systems.

Data Security

We implement reasonable administrative, technical, and organizational safeguards, including:

• Secure and encrypted storage of OAuth tokens
• HTTPS encryption for all data transmission
• Principle-of-least-privilege access controls
• Read-only integration design

Founders Pulse never sends emails, posts messages, or modifies content in connected services.

Your Rights and Controls

You remain in control of your data:

• Disconnect anytime: You can revoke access to any connected service at any time
• Data deletion: Disconnecting a service removes associated access credentials
• Account deletion: You may request full account and data deletion
• Data access: You may request a copy of stored or processed data

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

admin@founders-pulse.app