Transparency, Responsibility, and Your Rights.
Effective Date: November 2025
SpamSlam (“we”, “us”, “our”) provides an AI-powered inbox privacy and unsubscribe assistant. This Privacy Policy explains how we collect, use, disclose and safeguard your personal information.
Account information: name, email address, profile information you provide at signup.
Inbox data (optional & consent-based): when you connect your email account we may read message metadata (sender, subject, timestamp), message headers, and message bodies that are necessary to identify sign-up/confirmation messages and locate unsubscribe links or support addresses. We only access inbox data when you grant permission.
Usage & logs: IP addresses, device information, usage logs and diagnostic data to secure and improve the service.
We use data to provide scanning, classification, unsubscribe and data-deletion assistance, generate reports, perform analytics, and secure our platform. We may send transactional emails (account confirmations, receipts).
We use third-party providers for infrastructure and services (examples: Google for Gmail integration, Supabase for storage, OpenAI for model inference, Stripe for payments, Cloudflare for hosting). We contractually require subprocessors to protect data and not to sell or use your email content for model training.
Account metadata is retained while your account exists. You may request export or deletion of your data at any time by contacting privacy@spamslam.com. When processing email content for AI inference, we treat that data as ephemeral and do not use it to train models.
We use industry-standard technical and organizational measures: TLS in transit, encryption at rest, access controls, regular security reviews. No third party is permitted to access your plaintext inbox contents for advertising or model training.
You may request access, correction, export, or deletion of your personal data. If you are in the EU, you can exercise GDPR rights; if you are in California, you may exercise rights under CCPA/CPRA. Any requests can be processed via your dashboard or Contact privacy@spamslam.it.com.
Data may be processed in jurisdictions outside your country. We take appropriate safeguards for international transfers where required.
If you have questions or want to exercise your rights, any requests can be processed via your dashboard or email privacy@spamslam.it.com.
SpamSlam uses AI to analyze email content to generate unsubscribe instructions and data deletion request templates. This policy outlines the principles governing the use of AI in our product.
Users may disconnect integrations at any time, delete stored results, and export or request deletion of their personal data.
Questions about AI behavior or concerns: privacy@spamslam.it.com
This DPA describes how SpamSlam (the “Processor”) processes personal data on behalf of its customers (the “Controller”). It is intended to meet the requirements of data protection laws including the GDPR.
The customer is the Controller. SpamSlam is the Processor for data collected to provide the service.
Processing is carried out to analyze mailbox metadata and contents (when authorized) to identify senders, unsubscribe links, and to generate deletion requests or templates as requested by the user.
We use subprocessors for infrastructure and services (e.g., Supabase, Cloudflare, OpenAI, Stripe). We maintain a list of subprocessors and ensure contractual protections.
Technical and organizational measures include TLS, encryption at rest, access controls and auditing.
We assist Controllers in responding to data subject requests for access, correction, deletion and portability.
For DPA requests: any requests can be processed via your dashboard or privacy@spamslam.it.com