Privacy Policy — Sophie CRM

This Privacy Policy explains how Sophie CRM, operated by Stratos X Technologies LLC, collects, uses, and protects your personal information when you use our service at sophiecrm.com and the Sophie CRM application.

1. Information We Collect

1.1 Account Information

When you create an account, we collect your name, email address, and authentication credentials. This information is used to identify you and provide access to the service.

1.2 Gmail Integration Data

If you choose to connect your Gmail account, Sophie CRM requests access to the following Google API scopes:

gmail.send — to send emails on your behalf from your Gmail inbox
userinfo.email — to identify which Gmail account is connected

We store OAuth tokens (access token and refresh token) securely in our database to maintain your Gmail connection between sessions. We do not read, store, or process the contents of your inbox, received emails, or any email data beyond what is necessary to send outreach emails you explicitly compose and authorize.

1.3 Contact Data

You may upload or manually enter contact information (names, email addresses, job titles, company names) into Sophie CRM. This data is stored securely and used solely to power your outreach campaigns within the platform.

1.4 Usage Data

We collect information about how you use the service, including pages visited, features used, and actions taken (such as emails sent, opened, and replied to). This data is used to improve the service and provide analytics within your dashboard.

1.5 Payment Information

Payment processing is handled entirely by Stripe. We do not store your credit card number, CVV, or full card details. We store only your Stripe Customer ID and Subscription ID to manage your billing relationship.

2. How We Use Your Information

We use the information we collect to:

Provide, operate, and maintain the Sophie CRM service
Send outreach emails on your behalf through your connected Gmail account
Process payments and manage subscriptions
Provide customer support and respond to inquiries
Monitor and analyze usage to improve the service
Comply with legal obligations

We do not sell, rent, or share your personal data or contact data with third parties for marketing purposes.

3. Google API Services — Limited Use Disclosure

Sophie CRM's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We only use Google user data to provide and improve the features described in this Privacy Policy. We do not use Google user data for advertising, do not transfer it to third parties except as necessary to provide the service, and do not allow humans to read your Google data unless you have given explicit permission or it is required by law.

4. Data Storage and Security

Your data is stored on secure, encrypted servers. We use industry-standard security measures including HTTPS encryption, secure database connections, and access controls to protect your information. OAuth tokens are stored encrypted and are only used to send emails you explicitly authorize.

While we take reasonable precautions to protect your data, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security.

5. Data Retention

We retain your account data for as long as your account is active or as needed to provide the service. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes. Contact data you upload is retained until you delete it or close your account.

6. Third-Party Services

Sophie CRM integrates with the following third-party services:

Google (Gmail API) — for sending emails. Subject to Google's Privacy Policy.
Stripe — for payment processing. Subject to Stripe's Privacy Policy.
Manus Platform — for authentication and infrastructure. Subject to Manus's Privacy Policy.

7. Your Rights

You have the right to:

Access the personal data we hold about you
Correct inaccurate or incomplete data
Delete your account and associated data
Disconnect your Gmail account at any time from within the app
Export your contact data
Revoke Google OAuth access at any time via Google Account Permissions

To exercise any of these rights, contact us at privacy@stratosxtech.com.

8. Children's Privacy

Sophie CRM is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or by posting a notice within the application. Your continued use of Sophie CRM after changes are posted constitutes your acceptance of the updated policy.

10. Limitation of Liability Disclaimer

Sophie CRM is provided as a software tool by Stratos X Technologies LLC. The builders and developers of this application are not responsible for how users choose to use the platform, the content of emails sent through the service, the accuracy of contact data uploaded by users, or any outcomes resulting from outreach campaigns conducted through the platform. Users are solely responsible for ensuring their use of Sophie CRM complies with applicable laws, including anti-spam regulations (CAN-SPAM, GDPR, CASL), and for obtaining any necessary consent from their email recipients. Stratos X Technologies LLC expressly disclaims liability for any damages arising from misuse of the platform.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@stratosxtech.com
Company: Stratos X Technologies LLC
Website: sophiecrm.com