Privacy Policy

This Privacy Notice for Mobile Operator, Inc. ("we," "us," or "our"), describes how and why we might access, collect, store, use, and/or share ("process") your personal information when you use our services ("Services"), including when you:

• Download and use our mobile application (PiA), or any other application of ours that links to this Privacy Notice
• Use PiA to manage your email communications, including features such as automated email drafting, email organization, and AI-assisted email composition
• Engage with us in other related ways, including any sales, marketing, or events

Questions or concerns? Reading this Privacy Notice will help you understand your privacy rights and choices. We are responsible for making decisions about how your personal information is processed. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at filippo@mobileoperator.com.

SUMMARY OF KEY POINTS

This summary provides key points from our Privacy Notice, but you can find out more details about any of these topics by using our table of contents below to find the section you are looking for.

1. WHAT INFORMATION DO WE COLLECT?

In Short: We collect only the information necessary to provide you with email services.

As an email client, PiA needs to access and process your email data to function. Here's exactly what we collect and why:

Email Data:

• Email content and metadata: Subject lines, message bodies, senders, recipients, and timestamps — required to display and manage your emails
• Drafts and sent messages: Stored to enable draft saving, scheduled sending, and sent mail tracking
• Contacts: Email addresses from your messages to power autocomplete and contact suggestions
• Attachments: Processed to display and download files attached to your emails
• Email credentials: OAuth tokens (for Gmail, Outlook, Yahoo) or encrypted passwords (for IMAP accounts) — required to connect to your email provider

Application Data:

• Device information: Device model, operating system version, and app version — used for troubleshooting and compatibility
• Anonymous usage analytics: Feature usage patterns (not email content) — used to improve the app
• Crash reports: Technical error logs — used to fix bugs

What we do NOT collect:

• We do not scan your emails for advertising purposes
• We do not build advertising profiles based on your email content
• We do not collect data from third parties about you

2. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law.

• To deliver and facilitate delivery of services to the user. We may process your information to provide you with the requested service.
• To fulfill and manage your orders. We may process your information to fulfill and manage your orders, payments, returns, and exchanges made through the Services.
• To save or protect an individual's vital interest. We may process your information when necessary to save or protect an individual's vital interest, such as to prevent harm.

3. WHAT LEGAL BASES DO WE RELY ON TO PROCESS YOUR INFORMATION?

In Short: We only process your personal information when we believe it is necessary and we have a valid legal reason to do so under applicable law.

The General Data Protection Regulation (GDPR) and UK GDPR require us to explain the valid legal bases we rely on in order to process your personal information. We may rely on consent, performance of a contract, legal obligations, or vital interests as our legal bases.

4. WE DO NOT SELL OR SHARE YOUR DATA

In Short: We do not sell, rent, or share your personal information with third parties for their commercial purposes.

We will never:

• Sell your personal data to anyone
• Share your email content with advertisers or data brokers
• Allow third parties to access your emails for marketing purposes
• Use your email content to build advertising profiles
• Trade or rent your contact information

Limited service providers: Your data may be processed by essential infrastructure providers (cloud hosting, AI processing) solely to operate the PiA service. These providers are contractually prohibited from using your data for any other purpose and must meet our security standards. They cannot access the human-readable content of your emails.

5. AI FEATURES AND YOUR DATA

In Short: AI features use third-party providers to process your emails and help you write — but your data is never used for marketing or sold to anyone.

PiA uses AI-powered features (including third-party AI providers) to help you draft emails, summarize conversations, and organize your inbox. Here's how we handle your data:

How AI processes your data:

• When you use AI features, your email content is sent to AI providers to generate responses, summaries, or suggestions
• AI providers include services like OpenAI, Anthropic, and others that power our AI features
• Processing happens to serve your request and provide you with the service

What we will NEVER do:

• Sell your data to anyone — ever
• Share your data for marketing or advertising purposes
• Allow your data to be used to build advertising profiles
• Use your emails for any purpose other than providing you with PiA's services

6. IS YOUR INFORMATION TRANSFERRED INTERNATIONALLY?

Our servers are located in the United States. Your information may be transferred to, stored by, and processed by us in our facilities and in the facilities of third parties, including facilities in the United States.

7. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your data only as long as needed to provide the service, and you can delete it anytime.

• Email data: Retained while your account is active. Deleted when you disconnect an email account or delete your PiA account.
• Drafts and sent messages: Retained until you delete them or close your account.
• Account credentials: Encrypted and stored only while your email account is connected. Deleted immediately upon disconnection.
• Analytics data: Anonymized usage data may be retained for up to 24 months to improve the service.
• After account deletion: All personal data is permanently deleted within 30 days. Some anonymized, aggregated data may be retained for analytics.

8. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We use industry-standard encryption and security practices to protect your email data.

Security measures we implement:

• Encryption in transit: All data transmitted between your device and our servers uses TLS encryption
• Encryption at rest: Your email credentials and sensitive data are encrypted when stored
• Secure infrastructure: We use industry-leading cloud providers with SOC 2 and ISO 27001 certifications
• Access controls: Employee access to user data is strictly limited and logged
• Regular security reviews: We conduct ongoing security assessments of our systems

While we implement robust security measures, no electronic transmission over the Internet can be guaranteed to be 100% secure. We encourage you to use strong, unique passwords for your email accounts.

9. DO WE COLLECT INFORMATION FROM MINORS?

We do not knowingly collect data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor.

10. WHAT ARE YOUR PRIVACY RIGHTS?

In Short: You have full control over your data. You can access, correct, delete, or export it at any time.

Your rights include:

• Access: Request a copy of all personal data we hold about you
• Correction: Update or correct inaccurate personal information
• Deletion: Delete your account and all associated data at any time
• Export: Download your data in a portable format
• Withdraw consent: Disconnect email accounts or stop using specific features

How to exercise your rights:

• Delete your data directly from the app settings
• Email us at filippo@mobileoperator.com for any privacy requests

We will respond to all legitimate requests within 30 days.

11. CALIFORNIA RESIDENTS: YOUR CCPA RIGHTS

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

We do not sell your personal information. PiA has never sold personal information and will never sell your personal information. Because we do not sell data, there is no need to opt out — but we want to be clear: your data is not for sale.

Your CCPA rights include:

• Right to know: What personal information we collect and how we use it
• Right to delete: Request deletion of your personal information
• Right to non-discrimination: We will not treat you differently for exercising your privacy rights

To exercise these rights, contact us at filippo@mobileoperator.com.

12. OTHER US STATE PRIVACY RIGHTS

Residents of other US states with privacy laws (including Virginia, Colorado, Connecticut, Utah, and others) have similar rights to access, correct, and delete their personal information. Contact us at filippo@mobileoperator.com to exercise these rights.

13. DO WE MAKE UPDATES TO THIS NOTICE?

Yes, we will update this notice as necessary to stay compliant with relevant laws. The updated version will be indicated by an updated "Revised" date at the top of this Privacy Notice. For significant changes that affect how we handle your data, we will notify you through the app or via email.

14. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have questions or comments about this notice, you may contact us:

15. HOW TO DELETE YOUR DATA

You have the right to delete your data at any time:

• From the app: Go to Settings → Account → Delete Account to permanently delete all your data
• Disconnect accounts: Remove individual email accounts from Settings to delete only that account's data
• By email: Contact filippo@mobileoperator.com to request data deletion

Upon deletion, all your personal data (emails, drafts, contacts, credentials) will be permanently removed from our systems within 30 days.