Privacy Policy

1. Introduction

Welcome to Vruum ("Vruum," "we," "us," or "our"). We provide an AI-powered sales automation platform that helps businesses manage leads and automate personalized outreach across multiple channels.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. Please read this policy carefully. By using Vruum, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

When you create an account, we collect:

• Name and email address
• Company name and business information
• Password (stored securely using industry-standard hashing)

2.2 Lead and Contact Data

To provide our services, we process lead data that you import or create, including:

• Contact names, email addresses, and phone numbers
• LinkedIn profile URLs and social media handles
• Company information (name, industry, size, location, description)
• Enrichment data obtained through third-party services
• Conversation history and communication records
• Reply sentiment analysis and lead scoring data

2.3 Integration and OAuth Data

When you connect third-party services, we store:

• OAuth tokens for Gmail, Outlook, LinkedIn, and calendar services
• API credentials for connected integrations
• Synchronization preferences and settings

2.4 Usage and Analytics Data

We automatically collect:

• Log data (IP address, browser type, pages visited)
• Feature usage and interaction data
• Performance metrics and error reports

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our services
• Process and manage your outreach campaigns
• Generate personalized messages using AI
• Analyze replies and score leads
• Synchronize data with your connected integrations
• Send service-related communications
• Detect, prevent, and address technical issues
• Comply with legal obligations

4. Third-Party Services

Vruum integrates with and may share data with the following categories of third-party services:

4.1 Email Providers

Google (Gmail) and Microsoft (Outlook) for sending and receiving emails on your behalf.

4.2 Social and Messaging Platforms

LinkedIn, Twitter, and Instagram (via Unipile) for social outreach and messaging.

4.3 Calendar Services

Calendly, Google Calendar, and Outlook Calendar for scheduling integrations.

4.4 Data Enrichment

Hunter.io and LinkedIn Sales Navigator for contact and company data enrichment.

4.5 AI Providers

OpenAI and Anthropic for AI-powered message generation, lead analysis, and sentiment classification. Your data may be processed by these providers to deliver our core functionality.

4.6 Infrastructure

Supabase (database and authentication) and Vercel (hosting) for our core infrastructure.

5. Data Security

We implement appropriate technical and organizational measures to protect your data:

• Encryption in transit (TLS/SSL) and at rest
• Secure OAuth token storage
• Access controls and authentication
• Regular security assessments
• Employee access limited to those who need it

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide services. After account deletion:

• Account data is deleted within 30 days
• Lead data is deleted within 30 days
• Backups may be retained for up to 90 days
• Anonymized analytics data may be retained indefinitely

7. Your Rights

Depending on your location, you may have the following rights:

• Access: Request a copy of your personal data
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data
• Export: Request a portable copy of your data
• Restriction: Request restriction of processing
• Objection: Object to certain processing activities

To exercise these rights, contact us at jon@vruum.ai. We will respond within 30 days of receiving your request.

8. Cookies and Tracking

We use cookies and similar technologies to:

• Maintain your session and authentication state
• Remember your preferences
• Analyze usage patterns
• Improve our services

You can control cookies through your browser settings, though some features may not function properly if cookies are disabled.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws.

10. Children's Privacy

Vruum is not intended for use by individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of Vruum after changes constitutes acceptance of the updated policy.