logo
Log inBook DemoSign up for free

SellEaser Privacy Policy

Your privacy, our commitment

This document explains how SellEaser collects, processes, and protects your data across our browser extension, email warmup, email validation, and data enrichment services.

Effective May 31, 2026Last updated May 31, 2026

Introduction

At Selleaser, your privacy is our priority. This policy outlines how we collect, use, and protect the information you provide when using our platform — including outreach campaign management, email warmup, email validation, and data enrichment features.

Selleaser acts as a data processor on your behalf for the contact data you bring into the platform, and as a data controller for the account and usage data we collect directly from you. When you use Selleaser to contact others, you become the data controller for your recipients' personal data and are responsible for ensuring your outreach complies with applicable laws — including GDPR, CAN-SPAM, and CASL. By using Selleaser, you agree to the practices described in this document. If you do not agree, please discontinue use of our services.

Data we collect

We collect data in two ways: information you provide directly, and data generated automatically through your use of the platform.

  • Account information — your name, email address, company name, and billing details when you register or subscribe.
  • Contact lists — prospect and lead data you upload or create within Selleaser, including names, email addresses, job titles, and company information.
  • Campaign content — email templates, sequences, and messaging you author inside the platform.
  • Usage data — login history, feature interactions, and session data collected automatically as you use the platform.
  • Cookies and tracking — we use cookies and similar technologies to keep you logged in, remember your preferences, and understand how the platform is used.

The data you submit should not include sensitive personal data such as government identifiers, financial account numbers, or medical records.

Outreach campaign data

When you create and run outreach campaigns, Selleaser stores your contact lists, email sequences, scheduling preferences, and campaign performance metrics (open rates, reply rates, click-through rates).

This data is used exclusively to operate and display your campaigns. It is accessible only to you and any team members you explicitly authorize. We do not use your campaign content or contact data for any purpose other than delivering the service.

Campaign data is retained for as long as your account is active and can be deleted at any time from your account settings.

Selleaser is designed to help you run compliant outreach. Under GDPR, sending cold emails to business contacts may be lawful under legitimate interests, provided the message is relevant and recipients can easily opt out. Under CAN-SPAM and CASL, every commercial email must include a working unsubscribe mechanism and your physical address. You are responsible for honoring opt-out requests and maintaining suppression lists.

Email warmup

When you connect a mailbox to Selleaser for use in a campaign, you consent to participating in our email warmup network. Warmup is a process designed to gradually build and maintain the sending reputation of your mailbox, improving deliverability for your outreach campaigns.

By connecting your mailbox, you agree that Selleaser may: Send a low volume of automated warmup emails from your mailbox to other participants in the warmup network. Deliver warmup emails from other users' mailboxes to your connected mailbox. Automatically engage with those emails (e.g. opening, replying, or moving from spam) to simulate healthy sending patterns.

Warmup activity is limited strictly to improving deliverability. Warmup emails are not used for commercial solicitation and do not contain your personal campaign content.

Selleaser continuously monitors the health of every connected mailbox. If we detect that a mailbox is unsafe, has been flagged, or appears on a known blacklist, we will automatically suspend that mailbox from warmup activity to protect all participants in the network. You will be notified if your mailbox is excluded for this reason. You may disconnect your mailbox and opt out of the warmup network at any time through your account settings.

Email validation

Selleaser's email validation feature verifies the deliverability of email addresses in your contact lists before campaign dispatch. During this process, addresses are checked against syntax rules, domain records (MX/DNS), and mailbox existence signals.

Validated email addresses and their results (valid, invalid, risky, unknown) are stored securely within your account and used solely to improve deliverability for your campaigns.

We do not share individual email addresses or validation results with third parties beyond the technical sub-processors required to perform the verification. These sub-processors are contractually bound to handle your data securely and only for the stated purpose.

Keeping contact data accurate is not just good practice — under GDPR, data controllers are required to ensure that personal data they hold is kept up to date and relevant. Email validation helps you meet this standard before sending.

Data enrichment

Data enrichment within Selleaser enhances your contact records by appending additional professional information — such as job titles, company size, industry, and LinkedIn profiles — to help you personalize outreach at scale.

Enrichment is performed using commercially available data sources and public professional networks. The enriched data is stored in your account and subject to the same access controls as your other contact information.

You are responsible for ensuring your use of enriched data complies with applicable laws in your recipients' jurisdictions. Selleaser provides the tooling; the lawful basis for processing enriched data in your campaigns remains your responsibility.

Under GDPR, appending third-party data to a contact record is considered further processing of personal data. You should be able to demonstrate this is compatible with your original purpose. When recipients ask how you obtained their information, you are required to be transparent about it.

Mailbox access

When you connect a mailbox (e.g. via Google or Microsoft OAuth), Selleaser accesses only the permissions required to send and receive emails on your behalf for campaign and warmup purposes. We do not read, store, or analyze the personal content of emails in your inbox beyond what is necessary to operate these features.

Selleaser's use of data received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. This means we do not use Google user data to develop, improve, or train generalized AI or machine learning models.

You can revoke Selleaser's access to your mailbox at any time through your account settings or directly via your email provider's security settings. Upon revocation, Selleaser will immediately cease accessing your mailbox, though previously processed data may be retained as described in the Data Retention section below.

Data security

All data within Selleaser is encrypted in transit (TLS 1.2+) and at rest (AES-256). Access to production systems is restricted to authorized personnel and protected by multi-factor authentication.

We conduct regular security assessments and follow industry-standard practices to protect your data from unauthorized access, disclosure, or loss. In the event of a data breach that affects your information, we will notify you without undue delay, in line with our obligations under GDPR and applicable law.

Data retention

We retain your data only for as long as necessary for the purposes it was collected — a principle required under GDPR and reflected in our practices across all features. Below is a summary of our retention periods:

  • Account & billing information: Duration of account + 3 years after closure (or as required by law)
  • Contact lists & campaign data: Duration of account; deleted within 30 days of account closure
  • Enriched contact data: Duration of account; deleted within 30 days of account closure
  • Email validation results: Duration of account; deleted within 30 days of account closure
  • Warmup & mailbox activity logs: 90 days rolling
  • Data subject rights requests: 3 years from date of request

Your rights and control

You retain full ownership and control over the data you bring into Selleaser. Under GDPR and equivalent laws, you have the right to access, correct, delete, and export your personal data, restrict how it is processed, and object to certain uses of it. If processing is based on your consent, you may withdraw that consent at any time.

To exercise any of these rights, contact us at  [email protected]. We will respond within 30 days. If you feel your rights have not been respected, you have the right to lodge a complaint with your local data protection authority.

Third-party services

Selleaser uses a limited number of trusted third-party sub-processors to deliver our services (e.g. cloud infrastructure, email delivery, payment processing). Each sub-processor is vetted and bound by data processing agreements that align with this policy and meet the requirements set out under GDPR.

We do not sell your personal data or contact lists to third parties, and we do not use your data for advertising purposes.

Policy changes

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we make material changes, we will notify you by email or through a prominent notice in the platform before the change takes effect. The date at the top of this page always reflects when the policy was last updated.

Continued use of Selleaser after a policy update constitutes your acceptance of the revised terms.

Contact us

If you have questions about this Privacy Policy or how your data is handled, please reach out to our team. We are committed to responding promptly and transparently.

[email protected]