Legal
Privacy Policy
Last updated: April 16, 2026
1. Information We Collect
In plain English: Account info, what you upload, and the connections you authorize.
Name, email, company details, uploaded documents, usage data, and network metadata (contact names and employers — never email content).
2. How We Use Your Information
In plain English: To match you with VCs, map warm intros, and personalize outreach.
Investor matching, warm intro path calculation, personalized outreach generation, service delivery, and legal compliance.
3. Google User Data
In plain English: Read-only. Optional. Revocable. Never sold.
AHI integrates with Google services to enhance your fundraising workflow. When you choose to connect your Google account, we request access to specific Google data. This access is entirely optional — AHI's core functionality works without connecting Google.
3.1 Scopes We Request
When you explicitly connect your Google account via Settings → Integrations, AHI requests:
- Google Contacts (read-only) —
contacts.readonly: identify warm intro paths to VCs in your network. - Google Calendar (read-only) —
calendar.readonly,calendar.events.readonly: sync investor meetings and generate briefings. - User profile —
userinfo.email,userinfo.profile: account identity.
All Google API access is read-only. AHI does not modify, delete, or write any data to your Google account.
3.2 How We Use Google Data
- Warm intro path mapping (contacts)
- Meeting detection and briefing generation (calendar)
- Account identity (profile)
AHI does not use Google user data for advertising, market research, or any unrelated purpose.
3.3 Storage and Retention
- OAuth tokens encrypted at rest, scoped to your account.
- Contact data stored in your private org space.
- Calendar data stored as meeting records.
- Disconnecting Google immediately revokes the token and deletes stored tokens.
3.4 Google Data Sharing
Never sold. Never used for advertising. Never shared with third parties except infrastructure providers under strict data processing agreements, or when required by law.
AHI's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
3.5 Revoking Google Access
You can revoke AHI's access at any time:
- Disconnect in AHI Settings → Integrations, or
- Remove AHI from your Google Account permissions
Revocation immediately deletes all stored tokens. Previously imported contacts and synced meetings remain unless you delete them.
5. Security
In plain English: Encrypted at rest and in transit. Strict access control.
AES-256 at rest. TLS 1.3 in transit. Encrypted OAuth tokens. Role-based access control.
6. Retention
In plain English: We keep data while your account is active.
Data retained while account is active. Deleted on account deletion request. Tokens deleted on disconnection.
7. Your Rights
In plain English: Access, correct, export, or delete your data anytime.
Access, correct, delete, and export your data. Contact privacy@ahi.vc.
9. Age
In plain English: AHI is for users 18+.
AHI is not directed to users under 18.
10. International Data Transfers
In plain English: Processed in the US with safeguards.
Data processed in the US with appropriate safeguards for international transfers.
11. Changes
In plain English: We'll tell you when material things change.
Material changes communicated via email and in-app notification.
12. Contact
In plain English: Reach privacy@ahi.vc.
For privacy-related questions, contact privacy@ahi.vc.
LootMogul Inc., 2025 Gateway Place, Suite 240, San Jose, CA 95110.