Privacy Policy

Eline, Inc. (“Eline”, “we”, “us”) operates a B2B SaaS platform — an AI marketing manager that plans, delegates to a team of specialist agents, and runs marketing execution for B2B companies.

This policy describes the personal data we collect, how we use it, and the rights you have over that data. It applies to eline-ai.com and any product surface served from app.eline-ai.com.

We collect three categories of personal data:

• Account data — email address (required for sign-in), name, role, company name. Provided directly by you during onboarding.
• Connector data — OAuth tokens with minimum scope per platform. Read-only against your data sources (HubSpot, ad platforms, banking, search console). Two write-capable scopes are explicit and opt-in: Gmail send (only if you want Eline to email on your behalf) and Slack post (notifications). Detail in the “Minimum scope per source” section below. Tokens are encrypted at rest with per-organization keys and rotated on schedule.
• Usage data — log entries on every approval, transition, and audit event. Page-level analytics from Vercel Analytics + Speed Insights, scoped to the marketing site.

We use personal data only for the purposes you signed up for: running the agents you configure, rendering your morning digest, and supporting the workflows you initiate.

We never sell personal data, and we never train AI models on data pulled from your source systems. The marketing site is excluded from the no-AI-training stance — we want LLM answer engines to surface us, and the marketing copy is fair game.

Eline never modifies your books, CRM records, ad campaigns, or bank transactions. OAuth scopes against those sources are read-only: HubSpot uses crm.objects.*.read; LinkedIn Ads usesr_ads/r_ads_reporting; Brex uses*:read; Google useswebmasters.readonly/analytics.readonly/adwords (read).

Two scopes are explicitly write-capable, opt-in, and surfaced in the OAuth consent screen so you see them before granting:

• Gmail send (gmail.send) — only if you want Eline to send demo confirmations or lead emails on your behalf. Decline this scope and Eline still works; transactional email falls back to our Resend domain.
• Slack (chat:write + incoming-webhook) — posts notifications (your morning digest, agent alerts) into a single channel you choose during the OAuth flow.

QuickBooks deserves a callout: Intuit’s OAuth API doesn’t offer a read-only scope — it’s all-or-nothing oncom.intuit.quickbooks.accounting. We request the scope, but the application code never invokes a write endpoint. You can verify this in your QuickBooks audit log.

The writes Eline performs to its own database — your profile, agent configuration, decisions, and audit log — are what every product does and are separate from this policy.

We rely on the following sub-processors as of this policy’s effective date:

• Supabase — application database, authentication, file storage. Hosted in the AWS ap-south-1 region.
• Vercel — application hosting, edge functions, analytics.
• Anthropic — the AI models that power the agents. Content and context you ask Eline to act on are processed by Anthropic to generate output; per Anthropic’s commercial terms, your inputs are not used to train their models.
• Resend — transactional and outbound email delivery.
• Google s2 favicon service — fetches public favicon images for connector cards. No personal data is sent.

We’ll update this list at least 30 days before adding any new sub-processor with access to customer data. Customers under a Data Processing Agreement (DPA) get notified directly.

Under GDPR and CCPA you can request access to, correction of, or deletion of your personal data. Email privacy@eline.com and we’ll respond within 30 days.

You can also delete your account at any time from Settings → Account → Delete account. Deletion cascades through every table that references your user ID, including connector tokens.

We retain personal data for as long as your account is active, plus 90 days after deletion to allow for accidental restoration. After that, all rows are permanently purged.

Audit log entries are retained for 7 years after the event timestamp, in line with financial-records best practices.

When we materially change this policy, we’ll email all account holders at least 14 days before the change takes effect. Continued use of Eline after that date constitutes acceptance.

Non-material changes (typo fixes, link updates) are made silently and reflected in the changelog.