S Spario

LEGAL / PRIVACY

Spario Privacy Policy

Last Updated: March 18, 2026 Effective Date: March 18, 2026

This page presents the current English version of Spario’s Privacy Policy, covering data processing related to Gmail integration, AI assistant workflows, local storage, and push notifications.

Welcome to Spario (hereinafter referred to as “this App” or “we”). This Privacy Policy is intended to explain how we collect, use, store, share, and protect your personal information during your use of this App, as well as how you can manage your information.

Before using this App, please read and fully understand this Policy. If you do not agree with any part of this Policy, please stop using this App and its related services.

In this Policy, “we” refers to: Spario
Contact Email: sndrsoliver57@gmail.com
Official Website: https://bitsata.com

I. Scope of Application

This Policy applies to the processing of personal information when you use the Spario client, its associated push notification services, and AI email processing features directly related to this App.

Based on the current implementation, this App primarily processes data related to Gmail integration, local email synchronization, email search and organization, AI assistant command parsing, and new email push notifications.

II. Information We Process

Depending on the features you use, we may process the following information:

1. Account and Identity Information

When you log in with your Google account and authorize access to Gmail, we may process:

  • Your Google account email address
  • Display name
  • Google authorization information and access credentials
  • Authorization codes used to obtain refresh tokens, if server-side push is enabled

The Gmail permissions requested by the current implementation are related to email reading, synchronization, and organization, including displaying emails, updating read status, archiving, label management, and new email notifications.

2. Email Data

To provide email assistant features, we may process and store the following email data locally on your device:

  • Email subject, snippet, body, and HTML content
  • Sender, recipient, and CC information
  • Email timestamps, thread IDs, and message IDs
  • Status information such as read/unread, starred, spam, trash, and labels
  • Locally generated AI signals, label suggestions, draft schedules, and other derived data

According to the current implementation, most email content, including message bodies, is primarily stored in your local device database for display, search, and filtering.

3. Push Notification Information

When you enable new email notifications, we may process:

  • Device push tokens, such as FCM token and APNS token
  • Your email address
  • Gmail push subscription status and synchronization identifiers such as historyId
  • Limited email summary data retrieved from Gmail for notifications, such as sender, subject, snippet, timestamp, thread ID, message ID, and label information

This information is used to maintain Gmail watch subscriptions, detect new emails, and send notifications to your device.

4. AI Assistant Inputs and Outputs

When you actively use the AI assistant, we may process:

  • Natural language instructions you provide
  • Summaries of retrieved historical results
  • AI-generated search plans, action plans, rule plans, or other structured outputs

Based on the current implementation, AI workflows typically send your input and necessary summary data to large model services to generate search or action plans. Full email bodies are not sent in bulk by default. If future versions introduce AI features involving full email content, such as summarization or classification, we will provide further notice in updates or feature prompts.

5. Local Storage and Runtime Information

To support login persistence, search memory, and synchronization processes, we may locally store:

  • Selected email account ID
  • References to email search result sets
  • AI session state
  • Gmail synchronization identifiers
  • Cached push tokens

III. How We Use Information

We process the above information for the following purposes:

  • Account login, authentication, and Gmail authorization
  • Synchronizing emails from Gmail and displaying them locally
  • Supporting email organization features such as search, filtering, labeling, archiving, and read/unread status
  • Providing AI assistant capabilities when requested, such as intent parsing and action suggestions
  • Sending new email notifications after you grant permission
  • Maintaining service security, troubleshooting, preventing abuse, and operational maintenance
  • Complying with legal obligations or responding to lawful requests from authorities

We do not use your Gmail data or email content for advertising purposes, nor do we sell such data to third parties.

IV. Third-Party Services and Data Sharing

To provide functionality, we may share necessary information with the following service providers:

1. Google

This App relies on Google services, including:

  • Google Sign-In
  • Gmail API
  • Google OAuth token services
  • Firebase Cloud Messaging (FCM)
  • Gemini, if enabled

Relevant data may be transmitted to Google when you connect Gmail, receive push notifications, or use AI features powered by Gemini.

2. DeepSeek

If DeepSeek is enabled as an AI provider, your AI assistant inputs and necessary context may be sent to DeepSeek for processing.

3. Cloudflare

Based on the current implementation, server-side push registration and Gmail watch renewal are handled via Cloudflare Workers and KV. If enabled, the server may store:

  • Email address
  • Access token
  • Refresh token, if obtained
  • Device push token
  • Gmail watch status

4. Other Sharing Scenarios

We do not sell your personal information. We only share data in the following cases:

  • With your explicit consent
  • When necessary to fulfill a contract or provide requested services
  • To comply with laws, court orders, or lawful government requests
  • To protect the safety and property of us, users, or the public

V. Google API Data Usage Commitment

For data obtained via Google APIs, including Gmail API, we commit:

  • To use such data only as necessary to provide core app functionality
  • Not to use Google user data for advertising, profiling, or sale
  • Not to use Gmail data for unrelated purposes
  • To restrict access to authorized personnel only for security, anti-abuse, debugging, legal compliance, or with your explicit consent

We will comply with the Google API Services User Data Policy, including Limited Use requirements where applicable.

VI. Data Storage and Retention

1. Local Storage

Email content, search results, and AI states are mainly stored on your device. Retention depends on:

  • Whether you continue using the app
  • Whether you log out, clear data, or uninstall
  • Functional requirements

2. Server Storage

If push services are enabled, server-side data is retained until:

  • You unlink your email or disable push
  • You revoke Google authorization
  • Tokens expire
  • Cleanup is required for security or compliance

3. Third-Party Retention

Third-party providers may retain logs and request data per their own policies.

VII. Your Rights

Subject to applicable laws, you generally have the right to:

  • Access and understand how your data is processed
  • Correct your account information
  • Revoke notification permissions or Gmail authorization
  • Delete local app data
  • Request deletion of server-side push registration data
  • Stop using AI features to limit data transmission

You can manage your data by:

  • Revoking access in your Google account
  • Disabling notifications in system settings
  • Logging out or removing accounts in the app
  • Contacting us at sndrsoliver57@gmail.com for deletion requests or related inquiries

VIII. Data Security

We implement reasonable technical and organizational measures, including access control, data minimization, secure transmission, and token management.

However, no system is completely secure. While we strive to protect your data, we cannot guarantee absolute security.

IX. Protection of Minors

This App is intended for users with full legal capacity. If you are a minor, please use the App under guardian supervision. If we discover unauthorized collection of minors’ data, we will take appropriate action promptly.

X. Cross-Border Data Transfers

Due to reliance on services such as Google, DeepSeek, and Cloudflare, your data may be transferred and processed outside your country. You acknowledge and agree to such transfers as necessary for functionality, and we will make reasonable efforts to ensure legal compliance.

XI. Policy Updates

We may update this Policy due to feature changes, legal updates, or operational needs. Updates will be communicated via the app, website, or other appropriate means.

If changes are significant, we will provide prominent notice. Continued use after updates constitutes acceptance.

XII. Contact Us

If you have any questions, feedback, complaints, or deletion requests, please contact us:

We will respond within a reasonable timeframe.