pinqiopinqio

Legal

Privacy Policy

Effective 2026-04-22

This Privacy Policy explains how Pinqio ("Pinqio", "we", "us", "our") collects, uses, and safeguards information when you use the Pinqio website (pinqio.com), the Pinqio web application, and the Pinqio Chrome Extension (together, the "Services"). Pinqio is operated by the business owner listed on our Terms of Service.

TL;DR: Pinqio organizes LinkedIn DM conversations you already have. We never send messages on your behalf and we do not sell or share your data with third parties other than the named sub-processors below.

1. Information we collect

1.1 Account information

  • Email address, name, optional title / timezone / signature — entered at signup and editable in Settings.
  • Hashed password (bcrypt), session tokens (DB-stored, 30-day rolling).
  • IP address and user agent associated with each session.

1.2 Conversation data (from you or the Chrome Extension)

  • LinkedIn contact name, role, company, profile URL — provided by you manually or captured by the Pinqio Chrome Extension when you open a conversation on linkedin.com.
  • Message text (what you send, what you receive), timestamps, attachments you upload.
  • Pipeline metadata: status (Hot / Warm / Cold / Replied / Snoozed), labels, notes, snooze schedules, follow-up reminders.

1.3 AI-related data

  • Prompts and responses generated when you use the AI reply drafter, summarizer, labeler, or follow-up suggester.
  • Per-call provider / model / tokens / cost, stored in AiUsageLog for billing transparency.

1.4 Billing data

  • Stripe customer ID, subscription ID, plan, status, period dates. Pinqio does not store credit card numbers — Stripe holds these.

1.5 Usage and telemetry

  • Aggregate feature usage (number of conversations, drafts generated).
  • Error logs (stack traces, URL, user ID).
  • Service-health checks (latency to Postgres, Stripe, LLM providers, Resend, R2).

2. What Pinqio does NOT collect

  • Your LinkedIn password or any LinkedIn credentials. Pinqio does not sign in to LinkedIn, does not use LinkedIn's API, does not access your connections graph.
  • Messages from LinkedIn conversations you have not opened with the Pinqio extension visible. The extension reads only the currently-open conversation DOM.
  • Personal data of your LinkedIn contacts beyond the public profile fields you see on LinkedIn itself (name, role, company, public profile URL, avatar).
  • Your browsing history outside of linkedin.com.

3. How we use information

  • To provide the Pinqio service (render your inbox, run AI drafts).
  • To operate billing and enforce plan limits.
  • To send transactional emails (verify, reset, magic link, digests, alerts).
  • To improve Pinqio — in aggregate and de-identified form only.
  • To investigate security incidents or abuse of the service.

4. Sub-processors

Pinqio shares data with the following named sub-processors:

  • Railway — hosting + Postgres database (USA). Privacy.
  • Stripe — payment processing (USA). Receives email and billing name only, never message content. Privacy.
  • Resend — transactional email delivery (USA). Receives email address + email body. Privacy.
  • Cloudflare R2 — encrypted object storage for attachments (global). Privacy.
  • Anthropic, OpenAI, Google — LLM providers. Receive prompts (conversation context + your instructions) when you use AI features. Configurable per-feature in Settings → AI.
  • Inngest — job scheduling (USA). Privacy.

5. AI providers and prompts

When you invoke an AI feature (e.g. ⌘J reply drafter), Pinqio sends the relevant conversation context + your instructions to the provider configured for that feature. The provider generates a response that Pinqio shows to you.

We use providers' no-training options where available (Anthropic, OpenAI, Google all support this for API-tier customers), meaning your prompts are not used to train their models.

6. Data retention

  • Account data: kept until you delete your account.
  • Conversations and messages: kept until you archive or delete.
  • AI usage logs: 24 months for billing + cost audits.
  • Stripe webhook events: indefinite (audit).
  • Error logs: 90 days.
  • Session records: 30 days past expiry.

7. Your rights

If you are located in the EU/UK (GDPR), California (CCPA), or other regions with similar protections, you have rights to:

  • Access your data (Settings → Export data, or email support).
  • Correct data (in-app edits, or email support).
  • Delete your data (Settings → Delete account, or email support). Pinqio performs a hard cascade delete.
  • Object to processing or request restricted processing.
  • Data portability — we return a full JSON export.

To exercise any right, email privacy@pinqio.com. We respond within 30 days.

8. Security

  • Passwords bcrypt-hashed (12-char minimum with complexity).
  • TLS on every request; HSTS enforced in production.
  • Secrets (API keys) encrypted at rest with AES-256.
  • 2FA available for all users; required for admins.
  • Full append-only admin audit trail for all internal actions.

9. Children

Pinqio is not intended for users under 16. If we learn that a user is under 16, we delete the account.

10. International transfers

Data is stored in the United States. For EU/UK users, we rely on Standard Contractual Clauses with our US-based sub-processors.

11. Changes

We will post updates here and notify users of material changes via email at least 14 days before they take effect.

12. Contact

Privacy questions: privacy@pinqio.com. Other support: support@pinqio.com.