Privacy Policy

Last updated: April 16, 2026

1. Information We Collect

Name, email, company details, uploaded documents, usage data, and network metadata (contact names and employers — never email content).

2. How We Use Your Information

Investor matching, warm path calculation, AI outreach personalization, service delivery, and legal compliance.

3. Google User Data

AHI integrates with Google services to enhance your fundraising workflow. When you choose to connect your Google account, we request access to specific Google data. This access is entirely optional — AHI's core functionality works without connecting Google.

3.1 Scopes We Request

When you explicitly connect your Google account via Settings → Integrations, AHI requests the following permissions:

• Google Contacts (read-only) — contacts.readonly: We read your Google contacts to identify warm introduction paths to investors in your network.
• Google Calendar (read-only) — calendar.readonly, calendar.events.readonly: We read your calendar events to sync investor meetings and generate briefing documents.
• User profile — userinfo.email, userinfo.profile: We read your basic Google profile (name and email) for account identity.

All Google API access is read-only. AHI does not modify, delete, or write any data to your Google account.

3.2 How We Use Google Data

• Network path mapping (contacts)
• Meeting detection and briefing generation (calendar)
• Account identity (profile)

AHI does not use Google user data for advertising, market research, or any purpose unrelated to the features described above.

3.3 Storage and Retention

• OAuth tokens encrypted at rest, associated with your user account.
• Contact data stored in your private org space.
• Calendar data stored as meeting records.
• When you disconnect Google, we immediately revoke the token and delete all stored tokens.

3.4 Google Data Sharing

Never sold. Never used for advertising. Never shared with third parties except infrastructure providers under strict data processing agreements, or when required by law.

AHI's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

3.5 Revoking Google Access

You can revoke AHI's access at any time:

• Disconnect in AHI Settings → Integrations, or
• Remove AHI from your Google Account permissions

Revocation immediately deletes all stored tokens. Previously imported contacts and synced meetings remain unless you delete them.

4. Data Sharing (General)

No selling. Share only with infrastructure providers, legal requirements, or with your explicit consent.

5. Security

AES-256 at rest. TLS 1.3 in transit. Encrypted OAuth tokens. Role-based access control.

6. Retention

Data retained while account is active. Deleted on account deletion request. Tokens deleted on disconnection.

7. Your Rights

Access, correct, delete, and export your data. Contact privacy@ahi.vc.

8. Cookies

Essential cookies only. No advertising cookies. No third-party tracking.

9. Age

AHI is not directed to users under 18.

10. International Data Transfers

Data processed in the US with appropriate safeguards for international transfers.

11. Changes

Material changes communicated via email and in-app notification.

12. Contact

For privacy-related questions, contact privacy@ahi.vc.

LootMogul Inc., 2025 Gateway Place, Suite 240, San Jose, CA 95110.