Legal

Privacy Policy

Effective date: April 29, 2026 · Iroko Labs Inc.

Atona is a product of Iroko Labs Inc. ("we", "us", or "our"). This Privacy Policy explains how we collect, use, and protect your personal information when you use Atona ("the Service").

By using Atona, you agree to the practices described in this policy.

1. Information we collect

We collect information you provide directly and information generated through your use of the Service:

Account information: name, email address, phone number
Google account data: email messages, calendar events, and contacts — only when you explicitly grant access
Communications: SMS and WhatsApp messages sent and received through the Service
Voice data: call transcripts and summaries when you use voice features
Usage data: interactions with the Service, feature usage, and preferences

2. How we use Google user data

Atona's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

When you connect your Google account, Atona may access:

Gmail (read, send, modify) — to triage your inbox, draft responses, and surface important emails in your daily briefing
Google Calendar — to schedule, reschedule, and prepare you for meetings
Google Contacts — to personalize communication and recognize senders

We use this data solely to provide the Atona service to you. Specifically:

We do not sell your Google data to any third party
We do not use your Google data for advertising purposes
We do not allow humans to read your email content except when required for security investigation, to comply with applicable law, or with your explicit permission
We do not use your Google data to train AI or machine learning models
We only transfer your Google data to others as necessary to provide the Service, subject to confidentiality obligations

3. How we use your information

We use the information we collect to:

Provide, operate, and improve the Atona service
Generate your daily briefings and handle tasks on your behalf
Send you service-related notifications and updates
Respond to your requests and support inquiries
Ensure the security and integrity of the Service

4. Sensitive data handling

Sensitive emails — including banking, financial, medical, and legal content — are never sent to AI systems for processing.

Atona classifies over 200 sensitive content patterns before any AI processing occurs. Emails matching these patterns are excluded entirely and are never transmitted to third-party AI providers.

This classification happens automatically. You do not need to configure or manage it. Sensitive content remains accessible only through your email provider — Atona will not read, summarize, or act on it.

5. How AI processes your data

Atona uses third-party AI systems (such as Anthropic) to understand your requests and generate responses. Here is how that works:

What is processed: non-sensitive email metadata (subject lines, sender names), calendar details, your instructions, and drafted responses
When processing occurs: only when fulfilling a specific feature or request — such as drafting a reply, generating a briefing, or summarizing a meeting
What is excluded: sensitive content (financial, medical, legal) is never sent to AI providers, as described in Section 4
No training: your data is never used to train, fine-tune, or improve any AI or machine learning models — ours or any third party's

AI providers process data strictly on behalf of Atona, under contractual agreements that prohibit them from retaining, sharing, or using your data for any purpose other than providing the Service.

6. Automated actions on your behalf

Atona is designed to act on your behalf — not just provide information. This means Atona may:

Send or reply to emails using your connected email account
Schedule, reschedule, or cancel calendar events
Send SMS or WhatsApp messages from your assistant number
Flag emails that need your attention
Draft responses for your review before sending

These actions are based on your instructions, preferences, or features you have enabled. Atona does not take actions outside the scope of what you have authorized.

You remain in control. You can review pending actions, override decisions, disable specific automation features, or turn off automated actions entirely from within the app.

7. Data retention

Atona is designed to minimize the data it stores:

Email content: never stored. Atona reads emails directly from your email provider (e.g., Gmail) in real time. Email content is not copied to Atona's servers.
Email metadata: subject lines, sender names, and flags (e.g., "needs your attention") are stored for up to 30 days to power briefings and notifications.
Drafted responses: when Atona drafts a reply on your behalf, the draft is retained temporarily until you approve, edit, or dismiss it.
Assistant memory: your preferences, interaction history, and context are retained while your account is active. This is what allows Atona to learn how you work and improve over time.
Cached integration data: when you disconnect an integration (e.g., Google), all cached data from that integration is deleted within 30 days.

You may request deletion of all your data at any time by contacting [email protected].

8. Data sharing

We do not sell your personal information. We do not share your data for advertising purposes. We may share data with:

AI providers: such as Anthropic, who process non-sensitive data strictly on our behalf to provide the Service. These providers are contractually prohibited from retaining or using your data for any other purpose, including model training.
Infrastructure providers: such as AWS, who host and operate the Service under strict confidentiality agreements.
Legal requirements: when required by law, court order, or to protect the rights and safety of our users.

9. Security

We implement industry-standard security measures including encryption at rest and in transit, access controls, and regular security reviews. However, no system is completely secure. If you believe your account has been compromised, contact us immediately at [email protected].

10. Your rights and controls

You have the right to:

Access the personal data we hold about you
Request correction of inaccurate data
Request deletion of your account and all associated data
Revoke Google account access at any time via your Google Account settings
Export your data in a portable format

You can also:

Disconnect integrations from within the Atona app under Settings
Disable automation features — turn off auto-replies, auto-scheduling, or any other automated action individually
Delete your account — email [email protected] from your registered email address to request full account and data deletion

11. Children's privacy

Atona is not intended for use by anyone under the age of 18. We do not knowingly collect personal information from minors.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or through the Service. Your continued use of Atona after changes take effect constitutes acceptance of the updated policy.

13. Atona Companion (browser extension)

The Atona Companion is a browser extension that lets you invoke Atona on any web page you're viewing — to summarize an article, draft a reply in a compose box, and (in the future) save, extract, or translate. It is one part of the Atona Service and is governed by everything elsewhere in this Privacy Policy. The points below cover what's specific to the extension.

The extension does not read your pages until you invoke it. A page's content is sent to Atona's backend only when you click the toolbar icon, press the keyboard shortcut, or pick "Ask Atona about this…" from the right-click menu. There is no continuous monitoring of your browsing.

What the extension can read, and when:

The visible page — only the page in the active tab, only at the moment you invoke an action. The extension's content script extracts the visible text (article body, compose-box thread context, etc.) and, where the action requires it, sends that text to Atona's backend over HTTPS along with the page URL.
The active compose box — when you use the Draft action, the extension identifies the textarea or rich-text editor your cursor is in (e.g., a Gmail reply, an Outlook draft, a GitHub PR comment, a forum post box). To ground the drafted reply in what you're replying to, the extension reads the surrounding context: the prior message in the thread when one is detectable on the page, and otherwise the visible article or main content of the page so the draft has something to reference. The extension never sends — the drafted text is placed in the compose box for you to review and submit yourself.

Why the extension declares broad permissions:

The extension installs with permission to act on any web page you visit. This is required so a single install works across every site — your bank's web app, your HR portal, a forum you're replying on. It does not mean the extension reads those sites in the background.
The extension's content scripts are not auto-loaded into pages. They are injected only when you invoke an action, then unloaded when the page navigates away.
If we ever ship an opt-in "ambient" mode for specific sites (e.g., always-on summaries for Gmail), it will require an explicit per-site toggle. It will not be the default.

What we never receive:

Passwords or auth tokens for any site you visit. The extension acts inside your existing logged-in browser session — your saved login cookies stay in the browser; we never see them.
Payment information. The extension cannot read or transmit credit-card numbers, CVVs, or saved payment methods.
Sensitive pages. Before any page text leaves the browser, a client-side classifier checks for banking, tax, medical, or legal indicators. If any match, the action bails locally and no content is transmitted. The same set of patterns guards the rest of Atona (see Section 4).

Vertical workspace data (e.g., Airbnb host inbox). If you connect a paid workspace that the Companion supports — for example, the Vacation Rental Host workspace for Airbnb — the extension activates on that workspace's dashboards (e.g., airbnb.com/hosting) and reads the dashboard data the workspace needs to operate. This requires you to connect the workspace explicitly; the extension does nothing on those sites until then. Data flows to the connected workspace are governed by the same retention and processing rules as the rest of the Service.

Pairing and revocation.

Pairing — connecting the extension to your Atona account is a one-time action. The pairing flow opens a tab to app.atona.ai, mints a one-shot code, and the extension exchanges it for a bearer token stored in browser-local extension storage. The token never leaves the extension; it's used only to authenticate requests to Atona's backend.
Revocation — you can un-pair the extension at any time from its sidebar Settings panel. Un-pairing immediately revokes the bearer token on Atona's backend and clears the extension's local state.
Uninstalling the extension also clears the local state. The bearer token remains valid on the backend until you log out or it expires; un-pair before uninstalling for an immediate revocation.

Retention specific to the extension. Companion-action requests (summarize, draft) are processed transiently: the page content you submit is sent to Atona's backend, used to fulfill the request, and not stored beyond what's necessary to log credit usage. The extension keeps a small audit log of which actions you invoked (kind, timestamp, page hostname only — not page contents) so you can review your own usage from the app's Credits screen. The pairing token is retained until you un-pair.

14. Contact

If you have questions about this Privacy Policy, contact us at:

Iroko Labs Inc.
Atona Privacy Team
[email protected]