Privacy Policy

Who we are

MeshTale is a product of Codas Labs, LLC. MeshTale is a memory and knowledge layer that lets you import, search, recall, and govern your own content — including AI chat history and content you connect from third‑party services — across the AI tools you use.

Information we collect

• Account information. When you create an account, we collect your name, email address, and authentication details. If you sign in with Google, we receive basic profile information (name, email address, and a Google account identifier) to create and secure your account.
• Content you provide or import. Content you upload, paste, or create in MeshTale, and content you choose to import from connected third‑party services (your "Content").
• Connected‑service data. When you connect a third‑party service, we access the content you authorize us to bring into your workspace. Supported connectors include Google Drive, Gmail, Notion, Slack, Dropbox, GitHub, and Confluence. You control which services you connect and can disconnect them at any time.
• Usage and technical data. Logs, device and browser information, IP address, and similar technical data we use to operate, secure, and improve the Service.

Google user data

If you connect a Google service, MeshTale requests read‑only access to only the data needed to provide the feature you enable:

• Google Drive — drive.readonly (read‑only): to import Drive files you choose into your MeshTale workspace.
• Google Sheets — spreadsheets.readonly (read‑only): to import Google Sheets you choose into your MeshTale workspace.
• Gmail — gmail.readonly (read‑only): to import email messages you choose into your MeshTale workspace.

We use Google user data solely to provide the user‑facing features you activate — importing the content you select so you can search, recall, and govern it within MeshTale. We do not use it for any other purpose.

MeshTale's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

In particular, for data obtained through Google APIs:

• We do not use it for serving advertising, including personalized or retargeted advertising.
• We do not sell it.
• We do not use it, or allow it to be used, to train generalized or foundation artificial‑intelligence models.
• We do not allow humans to read it, except: (a) with your affirmative consent for specific items; (b) where necessary for security purposes (such as investigating abuse) or to comply with applicable law; (c) where the data has been aggregated and anonymized for internal operations; or (d) as needed to provide user‑initiated support.

You can revoke MeshTale's access to your Google data at any time by disconnecting the connector in MeshTale or via your Google Account permissions page at https://myaccount.google.com/permissions.

How we use information

We use information to: provide and operate the Service (including search, recall, and memory features across your AI tools); authenticate and secure accounts; provide customer support; maintain, troubleshoot, and improve the Service (without training generalized AI models on your private Content); and comply with legal obligations.

AI processing and service providers (sub‑processors)

To operate the Service we rely on a limited set of third‑party providers acting on our behalf, including: cloud hosting and compute, managed databases, vector‑search infrastructure, caching, object storage, error and performance monitoring, and AI model providers used to generate embeddings and power retrieval. These providers process data only to provide services to us and under contractual terms that prohibit using your Content to train their own generalized models. We maintain a current list of sub‑processors and will provide it on request.

What we do not do

• We do not sell your personal information or your Content.
• We do not serve advertising in the Service or use your Content for advertising.
• We do not use your private Content to train generalized or foundation AI models.

Security

We protect information using encryption in transit and at rest, access controls and least‑privilege practices, and monitoring. At import, MeshTale applies an automated safety baseline that blocks recognized secrets and credentials and detects common categories of sensitive personal information. This baseline is a best‑effort safety control, not a guarantee. Pattern‑based scanning cannot detect every secret or sensitive value, and you remain responsible for sanitizing content before importing it. No method of transmission or storage is completely secure.

Data retention and deletion

We retain your account information and Content for as long as your account is active or as needed to provide the Service. You may request deletion of your Content or account at any time, and disconnecting a connector stops further access to that service. We may retain limited audit and security metadata (which does not include the substance of your Content) for up to seven years to meet security and compliance obligations, and we may retain information as required by law.

Your rights and choices

Depending on where you live, you may have rights to access, correct, delete, or export your personal information, and to object to or restrict certain processing. You can exercise these rights — and withdraw connector consent at any time — by using in‑product controls or by contacting us at legal@codaslabs.com. We honor applicable rights under laws such as the GDPR and CCPA/CPRA.

International data transfers

We operate in the United States, and information may be processed there. Where required, we use appropriate safeguards for cross‑border transfers.

Children

The Service is not directed to children under 16, and we do not knowingly collect personal information from them. If you believe a child has provided us information, contact us and we will delete it.

Changes to this Policy

We may update this Policy from time to time. We will post the updated version here and revise the "Effective date" above; material changes will be communicated as required by law.

Contact us

Questions or requests regarding this Policy or your data: legal@codaslabs.com (Codas Labs, LLC).