Privacy

Your reading habits are yours.

Sumi is built on a simple premise: the way you consume information is private. This page explains, plainly, what we access, what we keep, and what we will never do.

Last updated: March 2026

What we access

Sumi connects to your Gmail account using Google OAuth. We request read-only permission — specifically the gmail.readonly scope — to retrieve emails from the senders and labels you define as sources.

We only read messages that match your defined sources. We do not scan your entire inbox. We do not read your sent mail, your conversations, or anything you have not explicitly pointed Sumi toward.

Your Google OAuth tokens are encrypted at rest and used solely to make authorised queries to the Gmail API.

What we store

We store what is necessary to produce and deliver your digest:

  • Your email address, for account identification and digest delivery
  • The source definitions you set (sender addresses and Gmail labels)
  • Processed newsletter content: cleaned markdown text and AI summaries of fetched messages
  • Your generated digests, available to you in your digest history
  • Your delivery preferences: timezone, delivery time, and format
  • Subscription status, managed by Stripe

Raw email content is held temporarily during processing and is not retained beyond what is needed to produce a digest.

What we never do

  • Sell your data to any third party, ever
  • Build advertising profiles or behavioural models based on your reading habits
  • Share your email content or summaries with anyone other than you
  • Send you marketing emails beyond service-related communications
  • Use your data to train AI models without explicit consent
  • Read any part of your Gmail outside your defined sources

AI processing

Newsletter content is processed using Anthropic Claude models — including per-email cleanup and summarization, and daily digest composition. Content sent to these services is used solely to generate your digest.

We operate under the data processing agreements of these providers, which restrict use of customer data for model training by default. We do not opt in to any data sharing that would allow your content to be used in third-party training.

Third parties

Sumi relies on a minimal set of infrastructure providers:

  • Google — OAuth authentication and Gmail API access
  • Anthropic — AI processing of newsletter content (Claude models)
  • OpenRouter (optional, when configured) — Failover API path to the same Claude models
  • Stripe — Payment processing and subscription management. Stripe does not receive your email content.
  • Postmark — Transactional email delivery of your digest

Deletion

You can disconnect your Google account from Sumi at any time via your Google account settings. Upon account deletion request, we remove your data from our systems within 30 days.

To request deletion, email us at the address below.

Contact

Questions or requests regarding your privacy can be sent to [email protected]. We respond to all requests within 5 business days.