Privacy Policy

Last updated: February 24, 2026

Who we are

EMISSARY is operated by Scott Young ("we," "us," or "our"). By using EMISSARY, you agree to this Privacy Policy and our Terms of Service.

What EMISSARY does

EMISSARY is a Chrome extension that helps you unsubscribe from unwanted email senders and block future junk from reaching your inbox. It uses AI classification to identify marketing emails, newsletters, and spam based on sender information and subject lines only.

What data we access

To provide the service, EMISSARY accesses your Gmail account via the Gmail API. Specifically, we read:

• Sender email address — to identify and classify who is sending you email
• Email subject line — to assist with classification accuracy
• List-Unsubscribe headers — to execute unsubscribe requests on your behalf

We also use the Gmail API to:

• Send unsubscribe requests (mailto: unsubscribe) on your behalf
• Create Gmail filters to block future junk senders
• Modify email labels when processing messages

What data we do NOT access

EMISSARY never reads, stores, transmits, or processes:

• The body or content of your emails
• Email attachments
• Your contacts or address book
• Any email metadata beyond sender address and subject line

How we use your data

Sender addresses and subject lines are used solely to classify email as junk, legitimate, or uncertain. Classification is performed by an AI model (Anthropic Claude API). Only sender address and subject line are sent to the AI — never full email content.

Classification results are stored in a secure database associated with your Gmail address so that previously seen senders are not re-classified (reducing costs and improving speed).

We do not use your data for advertising, marketing profiling, or any purpose beyond operating the core email management service.

Data storage

We store the following in our secure cloud database (Google Firestore, hosted in the United States):

• Your Gmail address (to associate your data)
• Sender email addresses and their classifications (junk/keep)
• Timestamps of when senders were classified
• Watchdog configuration (on/off state)

We do not store email subjects, email bodies, or any other email content in our database.

Retention: Your data is retained until you request deletion or your account has been inactive for 24 consecutive months, whichever comes first.

Cookies and tracking

EMISSARY does not use cookies, tracking pixels, or any analytics or advertising technology on this website or in the extension.

Data sharing

We do not sell, rent, or share your personal data with any third parties for advertising, marketing, or any other commercial purpose.

The only third-party service that receives any data is Anthropic (Claude AI API), which receives sender address and subject line only for classification purposes. Anthropic's privacy policy is available at anthropic.com/privacy.

Google API compliance

EMISSARY's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We only use Gmail data to provide and improve EMISSARY's email management features
• We do not use Gmail data to develop, improve, or train generalized AI or ML models
• We do not allow humans to read your Gmail data unless you have given explicit permission, it is necessary for security purposes, or we are required to do so by law
• We do not use or transfer Gmail data for serving advertisements

International data transfers

EMISSARY is operated from the United States. Data stored in Google Firestore is located in the United States (us-east1 region). If you are located outside the United States, your data will be transferred to and processed in the United States. By using EMISSARY, you consent to this transfer.

Your rights

All users: You can revoke EMISSARY's access to your Gmail account at any time via your Google Account settings. You can request deletion of all stored data by emailing privacy@scottyoung.co. We will delete all data associated with your Gmail address within 7 days.

EU/EEA residents (GDPR): You have the right to access, rectify, erase, restrict processing of, and port your personal data. You also have the right to object to processing and to lodge a complaint with your local data protection authority. To exercise any of these rights, contact us at privacy@scottyoung.co.

California residents (CCPA): You have the right to know what personal information we collect, to request deletion of your personal information, and to opt out of the sale of personal information. We do not sell personal information. To exercise your rights, contact us at privacy@scottyoung.co.

Data deletion

You can request deletion of all your data at any time by emailing privacy@scottyoung.co. We will delete all stored data associated with your Gmail address within 7 days of your request.

Uninstalling the Chrome extension stops all active data processing. It does not automatically delete previously stored data — please contact us if you want your stored data removed.

Security

All data is transmitted over HTTPS. Access to your Gmail account requires explicit OAuth authorization, which you can revoke at any time via your Google Account settings. We use industry-standard security practices for all stored data.

Children's privacy

EMISSARY is not intended for use by children under 13. We do not knowingly collect data from children under 13. If we become aware that a child under 13 has provided us with personal data, we will delete it immediately.

Changes to this policy

If we make material changes to this privacy policy, we will update the date at the top of this page. Continued use of the extension after changes constitutes acceptance of the updated policy.

Contact

Questions about this privacy policy or your data? Email us at privacy@scottyoung.co.