Last Updated: July 14, 2025

Welcome to Fiscape. We take your privacy seriously. This policy explains what data we collect, why we collect it, and how we use it — with a clear focus on transparency and security.

1. Who We Are

Fiscape is a platform that enables secure, real-time communication between your Custom GPT (like “My Assistant”) and your email, calendar, contacts, or SMS provider. We act purely as a bridge, not a data storage or analysis service.

2. What We Access

When you connect a service like Google, Microsoft, or an IMAP/SMTP-compatible provider (e.g., Yahoo, iCloud, Fastmail, or custom domains), we request permission to access:

  • Email – to send, receive, or reply to messages on your behalf
  • Calendar – to create or retrieve events via Google Calendar, Microsoft Outlook, or iCal/CalDAV
  • Contacts – to look up, create, or delete contacts
  • SMS (optional) – to send messages via Twilio (if configured)

These actions only happen when triggered by your GPT assistant. We do not access anything unless you ask us to.

3. What We Store

We store only the minimum data required to power your assistant features:

🔹 Account Information

  • At checkout, we collect your name, email address, username, and password to set up your account. We may also collect your billing address and phone number to verify your credit card and facilitate future purchases; this information is stored securely and used to prepopulate checkout forms and contact you about your order if necessary. If you enter your credit card details—including card number, expiration date, and security code—this information is securely transmitted to our payment gateway for processing. We do not store your full card details, but we may retain the last four digits and expiration date for reference and to notify you if your card is nearing expiration before a recurring payment. If you’re redirected to an external payment gateway, your account details may be held temporarily in a session variable and completed upon return to our site.
  • When logged in, we use cookies to track some of your activity on our site including logins, visits, and page views.
  • We also store your selected connection method (Google, IMAP/SMTP, Outlook)

🔹 OAuth Credentials (Google & Microsoft)

  • Access token
  • Refresh token
  • Connection status (e.g., “Connected to Gmail”)

Fiscape does not store any email, calendar, or contact content. OAuth tokens are encrypted and stored only to facilitate authorized user-initiated actions. All tokens are immediately revoked and deleted when access is removed.

🔹 IMAP/SMTP & CalDAV Credentials

  • Email username and password (or app-specific token)
  • IMAP and SMTP server details
  • CalDAV/iCal server URL and credentials (if calendar is enabled)
  • All credentials are encrypted

🔹 Usage Data

  • API action count for this billing period
  • Timestamp for quota tracking and resets

🔹 Twilio (if using SMS)

  • Twilio SID, Auth Token, and From Number

We do NOT store or analyze your actual emails, calendar events, contact details, or SMS messages.
These are accessed temporarily and passed directly to fulfill GPT requests — then discarded immediately.

🔒 No Temporary Storage of Message or Event Content

We do not store your messages, calendar events, or contact information — even temporarily.

  • No email bodies or subject lines are saved to our database
  • No event details or attendee lists are cached or retained
  • No contact names, phone numbers, or addresses are logged
  • No SMS content is saved or inspected

All data is passed directly to your connected service in real time. We do not store, buffer, index, or analyze message content in any form.

🔐 We are a stateless conduit, not a data processor. Your data stays with your provider — not with us.

4. How to Disconnect

You can revoke access at any time:

  • Google: myaccount.google.com/permissions or use the Disconnect button in your Fiscape dashboard.
  • Microsoft: myapps.microsoft.com or use the Disconnect button in your Fiscape dashboard.
  • IMAP/SMTP/CalDAV & Twilio: Use the Disconnect button in your Fiscape dashboard.

When you disconnect, we immediately remove all associated tokens and credentials from our system.

5. How We Protect Your Data

  • All communication uses HTTPS encryption
  • OAuth, IMAP, SMTP, and CalDAV credentials are encrypted
  • Your assistant can only access data you’ve explicitly connected
  • No personal message, contact, or calendar content is stored in our database — ever

6. Children’s Privacy

This service is intended for users age 18 and older. We do not knowingly collect personal information from children.

7. Policy Updates

If this policy changes, the new version will be posted here with an updated date. Please review this page regularly to stay informed.

8. Contact Us

Need help or have questions?
Email: support@fiscape.com

✅ Summary: What We Store vs What We Don’t

❌ We DO NOT Store✅ We DO Store
Email message contentOAuth or IMAP/CalDAV credentials (encrypted)
Calendar event detailsEmail address and connection type
Contact names, emails, or phone numbersAPI usage count and plan info
SMS messages or metadataTwilio configuration (if enabled)
Any data related to your content historyMembership level and connection status