Emailgic

Privacy Policy

Last updated: April 28, 2026

This Privacy Policy explains how CHUYWAY LLC ("Emailgic," "Company," "we," "us," or "our") collects, uses, discloses, and protects personal information when you use Emailgic, including our websites, applications, AI-powered email design tools, account features, generated previews, and related services (collectively, the "Service").

This Privacy Policy is intended to provide transparent notice of our privacy practices. It does not limit any privacy rights you may have under applicable law.

1. Who We Are

Emailgic is operated by CHUYWAY LLC, 30 N Gould St Ste N, Sheridan, WY 82801, United States.

For privacy questions or requests, contact us at contact@chuyway.com.

2. Personal Information We Collect

We collect personal information depending on how you use the Service.

Account and Contact Information

We may collect your name, email address, profile image, login identifiers, authentication provider information, account settings, and other information you provide when creating or managing an account.

Authentication Information

If you sign in through Google, GitHub, magic link, or another supported authentication method, we may receive account identifiers, email address, name, profile image, and related authentication metadata from that provider, depending on your settings with that provider.

Billing and Subscription Information

When you purchase a subscription, credit pack, or other paid feature, our payment processor may collect payment details. We generally receive billing metadata such as customer identifier, subscription status, plan, credit balance, purchase history, invoices, and payment confirmation. We do not intentionally store full payment card numbers.

Content You Provide or Generate

We collect content you submit to or generate with the Service, including prompts, chat messages, email copy, brand profiles, brand guidelines, logos, images, uploaded assets, URLs you ask us to analyze, generated MJML or HTML, screenshots, previews, exports, and other materials associated with your projects.

Do not submit confidential, sensitive, regulated, or third-party information unless you have the right to use it and are comfortable with the processing described in this Privacy Policy.

Usage, Device, and Log Information

We may automatically collect IP address, browser type, operating system, device identifiers, referring pages, pages viewed, feature usage, timestamps, diagnostic data, approximate location derived from IP address, and similar analytics or security logs.

Cookies and Similar Technologies

We use cookies, pixels, local storage, and similar technologies to operate the Service, remember preferences, authenticate users, understand product usage, improve performance, and measure marketing effectiveness.

Support and Communications

If you contact us, subscribe to updates, respond to surveys, or communicate with us, we collect the information you provide and metadata associated with the communication.

3. Sources of Personal Information

We collect personal information from:

  • You, when you create an account, use the Service, upload content, purchase a plan, or contact us.
  • Authentication providers, such as Google or GitHub, when you choose to sign in through them.
  • Payment processors, such as Stripe, when you purchase paid features.
  • Service providers that help us operate, secure, analyze, and improve the Service.
  • Public websites or URLs you ask the Service to analyze or capture.
  • Your device and browser through cookies, logs, and similar technologies.

4. How We Use Personal Information

We use personal information to:

  • Provide, operate, maintain, secure, and improve the Service.
  • Create and manage accounts, authentication, sessions, subscriptions, credits, and purchases.
  • Generate, edit, store, preview, export, and share email designs and related assets.
  • Analyze URLs, screenshots, images, prompts, and brand materials when you request design assistance.
  • Process payments, invoices, refunds, subscription changes, and fraud prevention.
  • Provide customer support and respond to inquiries.
  • Send service, transactional, security, billing, and administrative communications.
  • Send marketing communications where permitted, with opt-out rights where required.
  • Monitor usage, debug issues, prevent abuse, protect users, and enforce our Terms of Service.
  • Comply with legal obligations and respond to lawful requests.
  • Evaluate or complete a merger, acquisition, financing, reorganization, sale, or transfer of assets.

5. AI Processing

Emailgic is an AI-powered service. To provide the Service, we may process your prompts, uploaded content, brand materials, URLs, generated designs, screenshots, and related metadata through AI models, browser capture tools, storage providers, and other service providers.

We use AI and automation providers as service providers to generate, analyze, evaluate, transform, or render content you request. Depending on the feature and configuration, these providers may include model providers such as Anthropic, OpenAI, Google, or similar providers.

We do not intentionally use private workspace content to train third-party foundation models unless you expressly authorize that use or we provide additional notice and obtain consent where required. We may use User Content, Generated Output, and related metadata to operate the Service, debug errors, enforce safety and abuse controls, evaluate output quality, provide support, and improve product functionality. We may also use aggregated, de-identified, or anonymized information to improve the Service.

If you publish content, create a share link, use a public feature, or use a free-plan feature disclosed as public or showcase-eligible, that content may be used for examples, previews, galleries, marketing, or other public display as described in this Privacy Policy and our Terms of Service.

AI-generated output may be inaccurate, incomplete, similar to output generated for other users, or unsuitable for your intended use. You are responsible for reviewing output before relying on it, publishing it, sending it, or using it in commercial campaigns.

We do not use the Service as a substitute for legal, compliance, accessibility, deliverability, or marketing review.

6. Legal Bases for Processing

Where laws such as the GDPR or UK GDPR apply, we process personal information under one or more of the following legal bases:

  • Contract: to provide the Service, manage accounts, process purchases, and deliver requested features.
  • Legitimate interests: to secure, improve, analyze, and market the Service, prevent abuse, and support business operations.
  • Consent: where we ask for consent, such as for certain cookies, marketing communications, or optional processing.
  • Legal obligation: to comply with tax, accounting, consumer protection, law enforcement, and other legal requirements.

Key processing activities include:

  • Account access and authentication: account and authentication information; processed to provide account access and security; legal bases include contract, legitimate interests, and legal obligation; recipients may include authentication, hosting, security, and communications providers; retained while the account is active and as needed for security, legal, and business records.
  • Billing, subscriptions, credits, and refunds: account, billing, transaction, subscription, credit, and payment metadata; processed to complete purchases, maintain balances, process refunds, prevent fraud, and comply with tax and accounting requirements; legal bases include contract, legitimate interests, and legal obligation; recipients may include payment processors, hosting providers, accounting providers, and professional advisors; retained as required for tax, accounting, fraud prevention, and legal compliance.
  • AI design generation and editing: prompts, uploaded assets, brand materials, URLs, chat messages, generated designs, screenshots, previews, and related metadata; processed to provide requested AI features, render previews, troubleshoot, evaluate quality, and prevent abuse; legal bases include contract and legitimate interests, and consent where required; recipients may include AI providers, browser automation providers, hosting providers, storage providers, and product analytics providers; retained until deleted, expired, or no longer needed for the Service, legal compliance, security, or business records.
  • Product analytics and improvement: usage, device, log, event, and diagnostic information; processed to understand feature usage, improve performance, debug errors, and protect the Service; legal bases include legitimate interests and consent where required; recipients may include analytics, hosting, security, and infrastructure providers; retained for operational periods appropriate to the purpose.
  • Marketing and communications: contact information, account information, preferences, and engagement information; processed to send service messages and permitted marketing communications; legal bases include contract, legitimate interests, consent, and legal obligation; recipients may include communications, analytics, and customer support providers; retained until no longer needed or until you opt out where applicable.
  • Public, shared, and showcase content: content you publish, share, or create through public or showcase-eligible features; processed to provide sharing, public display, examples, galleries, and previews; legal bases include contract, legitimate interests, and consent where required; recipients may include hosting, storage, CDN, analytics, and public viewers; retained until disabled, deleted, expired, or no longer needed.

7. How We Disclose Personal Information

We may disclose personal information to the following categories of recipients:

  • Infrastructure and hosting providers that host our applications, databases, files, previews, logs, and websites.
  • AI and automation providers that help generate, analyze, evaluate, transform, or render design content.
  • Storage and content delivery providers that store uploaded assets, generated images, screenshots, previews, and exports.
  • Authentication providers that support account login and identity verification.
  • Payment processors that process subscriptions, credit packs, invoices, taxes, and payment disputes.
  • Analytics and product measurement providers that help us understand and improve the Service.
  • Communications providers that send transactional emails, magic links, product notices, and support messages.
  • Professional advisors such as lawyers, accountants, auditors, insurers, and security consultants.
  • Government, law enforcement, or legal requesters when we believe disclosure is required or appropriate under applicable law.
  • Business transaction parties in connection with a merger, acquisition, financing, reorganization, bankruptcy, sale, or transfer of assets.
  • Other users or the public when you share, publish, or make content public, or when a feature is disclosed as public.

Examples of service providers that may be used, depending on feature availability and configuration, include Stripe for payments, Google and GitHub for authentication, PostHog for product analytics, Cloudflare and R2-compatible storage for hosting and file storage, Resend or similar providers for transactional email, and AI model providers such as Anthropic, OpenAI, and Google.

We require service providers to process personal information only as needed to provide services to us and subject to appropriate contractual safeguards.

8. Public, Shared, and Free-Plan Content

Some Emailgic features may make content visible to others:

  • If you create or enable a share link, anyone with access to that link may view the shared content.
  • If you publish content with public visibility, the content may be publicly accessible and may appear in galleries, showcases, previews, or search results.
  • Some free-plan or trial outputs, generated previews, or legacy designs may be public or used in examples or showcases if the product experience discloses that visibility.
  • Paid or private workspace content is not intentionally published by us unless you choose to share or publish it, authorize disclosure, or disclosure is required by law or necessary to operate the Service.

You should not include confidential, sensitive, regulated, or third-party personal information in content that may be public or shareable.

9. Cookies and Tracking Choices

We use the following types of cookies and similar technologies:

  • Essential technologies: required for login, security, account sessions, payments, and core Service functionality.
  • Preference technologies: remember choices such as settings or interface preferences.
  • Analytics technologies: help us understand usage, diagnose issues, and improve the Service.
  • Marketing technologies: help measure campaigns and communicate with users where permitted.

We may use product analytics tools such as PostHog where configured. If we use cookies or tracking technologies for cross-context behavioral advertising, targeted advertising, or other purposes that require additional choices, we will provide the required notices and opt-out mechanisms.

You can control cookies through your browser settings. Some features may not work correctly if essential cookies are blocked. Where required, we provide additional cookie choices or honor legally required opt-out signals.

10. Marketing Communications

We may send marketing communications where permitted by law. You can opt out by using the unsubscribe link in our emails or contacting us. We may still send transactional, security, billing, legal, or account-related messages.

11. Sale, Sharing, and Targeted Advertising

We do not sell personal information for money. We do not knowingly sell or share personal information as those terms are defined under the California Consumer Privacy Act, as amended by the California Privacy Rights Act, unless we provide required notice and opt-out rights.

Product analytics, measurement, and marketing technologies can be regulated differently depending on how they are configured and used. If our practices involve sale, sharing, targeted advertising, or profiling that requires opt-out rights, we will update this Privacy Policy and provide any required "Do Not Sell or Share My Personal Information," "Your Privacy Choices," Global Privacy Control, or equivalent choices.

12. Data Retention

We retain personal information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Service, maintain accounts, preserve generated content, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and support business records.

Retention periods vary by data type. For example:

  • Account information is generally retained while your account is active.
  • Billing and transaction records may be retained as required for tax, accounting, fraud prevention, and legal compliance.
  • Generated content, uploaded assets, previews, screenshots, and chat history may be retained until deleted, expired, or no longer needed to provide the Service.
  • Security, diagnostic, and analytics logs may be retained for shorter operational periods unless needed for security, legal, or compliance reasons.

We may retain de-identified, aggregated, or anonymized information that no longer identifies you.

13. Security

We use administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure. You are responsible for maintaining the confidentiality of your login credentials and for using appropriate safeguards when sharing links or exports.

14. International Transfers

We are based in the United States, and we and our service providers may process personal information in the United States and other countries. These countries may have data protection laws different from those in your location.

Where required, we rely on appropriate safeguards for international transfers, such as standard contractual clauses or other lawful transfer mechanisms.

15. Your Privacy Rights

Depending on your location, you may have rights to:

  • Access or know the personal information we process about you.
  • Request correction of inaccurate personal information.
  • Request deletion of personal information.
  • Request portability of personal information.
  • Object to or restrict certain processing.
  • Withdraw consent where processing is based on consent.
  • Opt out of certain marketing communications.
  • Opt out of sale, sharing, targeted advertising, or certain profiling where applicable.
  • Appeal a denied privacy request where applicable law provides an appeal right.
  • Lodge a complaint with a data protection authority.

To exercise privacy rights, contact us at contact@chuyway.com. We may need to verify your identity before responding. Authorized agents may submit requests where permitted by law, and we may request proof of authorization.

We will not discriminate against you for exercising privacy rights, although some requests may affect our ability to provide certain features.

16. California Privacy Notice

This section applies to California residents where the CCPA/CPRA applies.

In the preceding 12 months, we may have collected the following categories of personal information:

  • Identifiers, such as name, email address, IP address, account identifiers, and authentication identifiers.
  • Customer records information, such as billing metadata, purchase history, and account records.
  • Commercial information, such as subscriptions, credit packs, invoices, and transaction history.
  • Internet or electronic network activity, such as usage logs, device information, browser information, and interactions with the Service.
  • Approximate geolocation, such as location inferred from IP address.
  • Audio, electronic, visual, or similar information, such as uploaded images, screenshots, previews, generated designs, and support communications.
  • Professional or employment-related information, if you provide it in prompts, brand materials, or account communications.
  • Inferences, such as preferences, usage patterns, or design-related settings derived from your use of the Service.
  • Sensitive personal information, only if you choose to provide it in user content or where needed for account security, and not for purposes requiring a right to limit unless we provide that right.

We collect, use, retain, and disclose these categories for the business and commercial purposes described in this Privacy Policy. We disclose these categories to the recipients described in "How We Disclose Personal Information."

California residents may request to know, access, correct, delete, and receive information about certain disclosures. California residents may also opt out of sale or sharing and may limit use of sensitive personal information where applicable.

17. EEA, UK, and Swiss Users

If you are located in the European Economic Area, United Kingdom, or Switzerland, you may have rights under applicable data protection laws, including the rights described in "Your Privacy Rights."

You may also have the right to complain to your local supervisory authority. If we are required to appoint an EU or UK representative or data protection officer, we will update this Privacy Policy with the relevant contact details.

18. Children's Privacy

The Service is not directed to children under 13, and our Terms of Service require users to be at least 18 years old or the age of majority in their jurisdiction. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to us, contact us and we will take appropriate steps to delete it.

19. Third-Party Links and Services

The Service may link to or integrate with third-party websites, platforms, payment processors, authentication providers, AI providers, email service providers, or other services. Their privacy practices are governed by their own policies, not this Privacy Policy.

20. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised "Last updated" date. Where required, we will provide additional notice or request consent.

21. Contact Us

For questions, requests, or complaints about this Privacy Policy or our privacy practices, contact:

CHUYWAY LLC

30 N Gould St Ste N

Sheridan, WY 82801

United States

contact@chuyway.com