This Privacy Policy explains how Funnel One ("Funnel One", "we", "us") collects, uses, stores, shares, and protects information when you use our website and the Funnel One application (together, the "Services"). It also describes the choices and rights you have regarding your information.
Funnel One is a business-to-business outbound sales-intelligence platform. Our customers are revenue teams; the Services are not directed to consumers or to children under 16.
1. Information we collect
We collect the following categories of information:
- Account & contact data you provide — name, work email, company, role, and authentication credentials for users of the app.
- Customer prospecting data our customers load or that we surface about Shopify Plus stores and business contacts (company name, business email, public firmographic and technographic data).
- Google user data where a user connects a Google account (see Section 2).
- Usage & device data — log data, IP address, browser type, and product-usage events, used to operate and secure the Services.
- Cookies — the marketing site uses only minimal, essential cookies and the application uses a strictly necessary session cookie for authentication.
2. Google user data
Funnel One integrates with Google Gmail and Google Calendar so that reps can run their outreach and book meetings from the accounts they already use. These integrations are optional and are only active if you choose to connect a Google account.
2.1 Gmail
With your permission, Funnel One requests the
gmail.readonly, gmail.send, and
gmail.settings.basic scopes to:
- Detect and sync replies from your prospects, by reading message headers, metadata, and message snippets (via the Gmail API, including the History API) sufficient to match a reply to the correct contact and follow-up task.
- Send follow-up emails on your behalf from your connected Gmail account, so outreach comes from the address your prospects recognize.
- Reuse your Gmail signature so messages Funnel One sends match the rest of your email.
What we store: OAuth tokens (encrypted), a Gmail history identifier for incremental sync, and the minimal reply content (such as a cleaned message snippet) required to create a follow-up task. We do not create a general archive of your mailbox.
2.2 Google Calendar
With your permission, Funnel One requests the calendar.readonly and
calendar.events scopes to:
- Read your availability so Funnel One can offer meeting times that do not conflict with your existing calendar.
- Create calendar events — including a Google Meet link — when a prospect books a meeting, and update those specific events you initiate.
2.3 What we do not do
We do not use your Gmail or Google Calendar data for advertising, we do not sell it, and we do not use it to train generalized artificial-intelligence or machine-learning models. All Google user data is handled under the Limited Use terms below.
2.4 Google API Services Limited Use disclosure
Funnel One's use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements. In particular:
- We only use access to Google user data to provide or improve user-facing features that are prominent in the Funnel One application.
- We do not transfer or sell Google user data to third parties for purposes such as serving advertisements, market research, or building unrelated data products.
- We do not use Google user data for serving advertisements.
- We do not allow humans to read Google user data unless (a) we have your affirmative consent for specific messages, (b) it is necessary for security purposes such as investigating abuse, (c) it is required to comply with applicable law, or (d) the data is aggregated and anonymized and used to operate or improve the Services.
- We do not use Google user data to develop, improve, or train generalized or non-personalized AI and/or ML models.
3. How we use information
- To provide, operate, secure, and support the Services.
- To detect buying signals, enrich and score companies, and orchestrate outbound.
- To send outbound email you initiate and to detect and surface replies.
- To communicate with you about your account, support, and service changes.
- To comply with legal obligations and enforce our agreements.
4. How we share information
We do not sell personal information. We share information only with sub-processors that help us run the Services (hosting, database, email delivery, AI processing), under contracts that require appropriate safeguards. We may also disclose information to comply with law, protect our rights, or in connection with a corporate transaction, with notice where required.
5. Data retention
We retain information for as long as needed to provide the Services and for legitimate business or legal purposes. Google user data is retained only while your Google connection is active and is deleted (including stored tokens and synced reply content) shortly after you disconnect the account or delete your Funnel One account, subject to short backup rotation windows.
6. Data deletion & revoking access
- Revoke Google access at any time from your Google Account security settings (Third-party access) or by disconnecting the integration inside Funnel One. Revoking access stops all further access and triggers deletion of stored Google tokens.
- Delete your data by emailing privacy@funnelone.ai. We will delete your personal data and any associated Google user data within 30 days, except where retention is required by law.
7. Security
We protect information with encryption in transit and at rest, tenant isolation with row-level access controls, least-privilege access, and monitoring. No method of transmission or storage is perfectly secure, but we work to protect your information and to notify you of incidents where required. Report concerns to security@funnelone.ai.
8. Cookies
The marketing site runs with minimal, essential cookies. The application uses a strictly necessary session cookie for authentication. We do not use advertising or cross-site tracking cookies.
9. Your rights (GDPR / EEA / UK)
If you are in the European Economic Area or the United Kingdom, you have the right to access, correct, delete, restrict, or object to processing of your personal data, and the right to data portability. Where we rely on consent, you may withdraw it at any time. Our lawful bases include performance of a contract, legitimate interests in operating a B2B service, and consent where required. You may lodge a complaint with your supervisory authority. To exercise your rights, contact privacy@funnelone.ai.
10. Your rights (CCPA / California)
California residents have the right to know what personal information we collect, to request deletion, to correct inaccurate information, and to opt out of "sale" or "sharing" of personal information. Funnel One does not sell personal information and does not share it for cross-context behavioral advertising. We will not discriminate against you for exercising these rights. To make a request, contact privacy@funnelone.ai.
11. International transfers
We may process information in the United States and other countries. Where required, we use appropriate safeguards such as Standard Contractual Clauses for cross-border transfers.
12. Changes to this policy
We may update this Policy from time to time. Material changes will be reflected by an updated "Last updated" date and, where appropriate, additional notice.
13. Contact us
Questions about this Policy or your data? Email privacy@funnelone.ai. Data controller: Funnel One.