⚖️ Privacy Policy

Last updated: August 10th, 2025 at 12:34 PM

Typo, Inc. — Privacy Policy

Effective date: August 10, 2025

Company: Typo, Inc., a Delaware corporation

Contact: team@typo.so

1. Scope

This policy explains how Typo, Inc. (“Typo,” “we,” “us”) collects, uses, stores, shares, and protects information when you use our services, sites, and apps (the “Services”).

2. Information We Collect

Account data: name, email, handle, and profile details you provide.

Content: documents, pages, media, and related metadata you upload or create (including public pages you publish).

Usage data: actions in the product (create, edit, share, integrate), diagnostics, and event logs.

Technical data: device/OS/browser, IP address, timestamps, cookies, and similar technologies.

Integrations: data you explicitly connect (e.g., cloud storage, calendars) per the provider’s permissions.

Support: messages and attachments you send to support.

3. How We Use Information

Provide and improve: operate the Services, render pages, enable search/collaboration/publishing/integrations, fix bugs, and measure performance.

Security and abuse prevention: detect, investigate, and prevent spam, fraud, or misuse; protect accounts and infrastructure.

Communications: send transactional messages (account, security, product notices). With consent or as allowed by law, send product updates or surveys (unsubscribe from non-transactional emails anytime).

Analytics: analyze aggregated/usage trends (e.g., Vercel Analytics, PostHog) to improve reliability and UX.

4. AI/ML Processing

Feature delivery only: we process your content through AI features you invoke (e.g., summarize, generate).

No generalized model training: we do not use or retain data obtained via Google Workspace APIs to develop, improve, or train generalized AI/ML models.

No training on private content without opt-in: we will not use your private content to train our models unless you explicitly opt in (not the default).

Third-party AI vendors: if a feature uses a vendor model, we send only what’s needed to deliver that feature under confidentiality and data-processing terms.

5. Storage and Security

Protection: encryption in transit, access controls, least-privilege, monitoring, and industry safeguards.

Access: limited to authorized personnel with a business need (e.g., support, security); access is logged.

Limits: no system is perfectly secure; maintain your own backups. See the Terms for additional limits and data-loss disclaimers.

6. Sharing and Disclosures

Service providers (processors): hosting, analytics, email/notification, support, and other vendors under contract and confidentiality, processing only per our instructions.

Legal: disclosure if required by law/subpoena or to protect rights, safety, or service integrity.

Business transfers: if we are involved in a merger, acquisition, or sale of assets, your data will transfer to the successor subject to this policy and applicable law.

Creators (opt-in only): if you check a box to join a specific creator’s email list, we share the fields you submit (e.g., email, name) with that creator so they can contact you. Your relationship for those emails is with the creator. Unsubscribe from creator emails at any time. We do not sell your data.

7. Public Pages and Your Responsibility

When you publish content publicly, you are responsible for that content and any applicable laws (including copyright, privacy, publicity, and consumer protection). Do not post content you do not have rights to. Send removal requests to team@typo.so.

8. Cookies and Similar Technologies

We use cookies and local storage to keep you signed in, remember preferences, secure the Service, and measure usage. Control cookies in your browser and (where available) via our cookie banner. Essential cookies are required for core functionality.

9. Retention

We keep personal data only as long as needed to provide the Services, comply with law, resolve disputes, and enforce terms. When you delete your account (or request deletion), we delete or de-identify personal data within a reasonable period. Backups and logs may persist for a limited time and are purged on a schedule.

10. Your Choices and Rights

Access/Update/Delete: manage certain data in settings or contact us to request deletion.

Portability: request a copy of your content in a common format where technically feasible.

Marketing controls: unsubscribe from non-transactional emails at any time (we may still send transactional/service notices).

Permissions: disconnect integrations at any time in settings.

Regional rights: if you are in the EEA/UK/Switzerland, California, or other regions with specific rights, you may have additional rights (e.g., object, restrict, appeal). We honor those rights as required by law.

Global Privacy Control (where required): we honor GPC/“Do Not Sell or Share” signals in applicable jurisdictions.

11. International Transfers; Legal Bases

Transfers: data may be processed and stored in the United States and other countries; where required, we rely on appropriate safeguards (e.g., standard contractual clauses).

Legal bases (EEA/UK): performance of a contract (provide the Services); legitimate interests (secure/improve/communicate about the Services); consent (where relied upon); legal obligations.

12. Children

The Services are not directed to children under 13. Do not provide personal data of children under 13. If we learn we have such data, we will delete it.

13. Third-Party Links and Services

Links and integrations are governed by their own terms and privacy policies. We are not responsible for third-party practices.

14. Changes to This Policy

We may update this policy. If changes are material, we will provide notice (e.g., in-app or email). Your continued use after the effective date means you accept the updated policy.

15. Do Not Sell

We do not sell your personal data and do not share it for cross-context behavioral advertising as defined by applicable U.S. state laws.

16. Contact

For questions or to exercise your rights, email team@typo.so. For takedown or infringement notices, include enough detail for us to act.