Privacy Policy

Last updated: March 9, 2026

GoPimi ("we", "us", "our") operates the gopimi.com website and the GoPimi platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

1. Information We Collect

Account Information. When you register, we collect your name, email address, and password. Passwords are stored using one-way hashing and are never stored in plain text.

Workspace Data. Data you create within workspaces — tickets, contacts, organizations, conversations, messages, tags, attachments, and settings — is stored to provide the Service.

Email Data. When you use our email pipeline, we process inbound and outbound emails including sender/recipient addresses, subject lines, message bodies, and attachments. Raw inbound email payloads are stored for debugging and pipeline improvement.

Usage Data. We automatically collect information about how you access and use the Service, including IP addresses, browser type, pages visited, and timestamps. We use Google Analytics for aggregated usage statistics.

API Access. When you use the API, we log request metadata (endpoint, method, timestamp, IP address) for security and monitoring purposes via Laravel Telescope.

2. How We Use Your Information

• To provide, operate, and maintain the Service
• To process and route emails through the ticket and inbox pipeline
• To send notification emails (ticket assigned, replies, SLA breaches) based on your preferences
• To enforce resource quotas and plan limits
• To detect and prevent spam, abuse, and unauthorized access
• To improve the Service, fix bugs, and optimize performance
• To communicate with you about your account, including service updates

3. Data Isolation

GoPimi is a multi-tenant platform. Each workspace's data is logically isolated. Users can only access data within workspaces they belong to. Role-based access control (owner/member) further restricts actions within each workspace.

4. Data Sharing

We do not sell your personal information. We may share data with:

• Service providers: Mailgun (email delivery), payment processors (when billing is enabled), and infrastructure providers necessary to operate the Service
• Legal requirements: When required by law, regulation, or legal process
• Business transfers: In connection with a merger, acquisition, or sale of assets

5. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. Soft-deleted items (tickets, conversations, messages) remain in trash until permanently deleted by the workspace owner. When you delete your account, we will delete your personal data within 30 days, except where retention is required by law.

6. Data Security

We implement appropriate technical and organizational measures to protect your data, including encrypted connections (HTTPS/TLS), hashed passwords, token-based authentication, rate limiting, and input sanitization (XSS/injection prevention). However, no method of transmission over the Internet is 100% secure.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data
• Opt out of notification emails (via preferences or one-click unsubscribe)

8. Cookies

We use essential cookies for authentication and session management. Google Analytics uses cookies for aggregated usage statistics. We do not use advertising cookies or third-party tracking beyond analytics.

9. Third-Party Services

The Service integrates with third-party services including Mailgun (email processing), Google Analytics (usage statistics), and Stripe (payment processing, when enabled). Each service has its own privacy policy governing data handling.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last updated" date. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy, please contact us at hello@gopimi.com.