Aero Privacy Policy

Effective Date: April 28, 2025

Welcome to Aero. Your privacy matters to us. This Privacy Policy explains what information we collect, how we use it, and the choices you have.

1. Who We Are

This Privacy Policy applies to Aero GTM AI Limited (Aero, we, our, or us), headquartered at:

2323 Broadway
Oakland, CA 94612

2. What We Collect

When you interact with Aero, we collect:

  • Email address
  • Name

We do not collect any other personal information unless you choose to provide it.

2.1 LinkedIn Member Data (if you authorize it)

If you choose to connect your LinkedIn account, we may access certain information via LinkedIn's Member Data Portability API. This may include your LinkedIn profile, work history, and first-degree connections. We only access this data if and when you grant explicit permission via LinkedIn's OAuth process.

2.2 Gmail and Google Account Data (if you authorize it)

If you choose to connect your Google account, Aero may access your Gmail, Calendar, and basic Google profile information through Google's OAuth APIs. This data helps us power key features such as:

  • Auto-creation of people and companies in Aero based on email data
  • Viewing and organizing your Gmail messages in context (e.g., by company or contact)
  • Associating calendar events with companies and people in Aero
  • Enabling workspace features that rely on your historical communications

We only access this data if and when you grant explicit permission through Google's secure OAuth process. Specifically, we may access:

  • Your Gmail email address and Google profile info (e.g., name, avatar)
  • Gmail message metadata (e.g., subject line, sender/recipient, timestamp)
  • Gmail message content and attachments (used solely to contextualize your interactions within Aero)
  • Calendar event metadata and event details, including attached files or invites

User Controls

  • You may choose to limit access to metadata only or grant Aero access to message bodies, attachments, and calendar event details for richer CRM functionality.
  • You may revoke access at any time through your Google Account Permissions.

2.3 Limited Use Compliance (Gmail and Calendar Data)

Aero's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

  • We do not use Gmail or Calendar data for advertising, profiling, or any unrelated purposes.
  • We only access, use, store, or share Gmail and Calendar data as necessary to provide features that are visible and accessible within Aero's user interface.
  • Gmail and Calendar data are processed only on the basis of your explicit consent via OAuth, not on the basis of legitimate interests.

You may configure Aero's privacy settings to:

  • Keep email/calendar content private while sharing only metadata
  • Blocklist senders, recipients, or domains
  • Exclude specific calendar events from syncing

2.4 Microsoft Account Data (if you authorize it)

If you choose to connect your Microsoft account, Aero may access certain information through Microsoft's secure OAuth APIs. Specifically, we may access:

  • Your Microsoft email address and basic profile information (e.g., name, avatar)
  • Microsoft account ID or tenant ID (used to uniquely identify your account)

We only access this data if and when you grant explicit permission via Microsoft's OAuth process.

Use of Microsoft Account Data

  • To authenticate you and allow you to log in to Aero using your Microsoft credentials
  • To associate your Aero account with your Microsoft account for ongoing access
  • To personalize your workspace (e.g., showing your name and email address)

User Controls

  • You may revoke Aero's access at any time through your Microsoft Account permissions.
  • Revoking access will stop all new data flow, and Aero will delete previously stored Microsoft account data in accordance with our retention policy, unless retention is legally required.

Data Protections

  • We do not receive or store your Microsoft login credentials (such as your password).
  • We only receive tokens that confirm your identity and allow access, consistent with Microsoft's security requirements.
  • Microsoft account data is never shared with third parties, resold, or used for advertising.

2.5 Microsoft Mail and Calendar Data (if you authorize it)

If you choose to connect your Microsoft account, Aero may access your Outlook Mail, Calendar, and basic Microsoft profile information through Microsoft's secure OAuth and Graph API. This data helps us power key CRM features such as:

  • Auto-creation of people and companies in Aero based on email data
  • Viewing and organizing your Outlook messages in context (e.g., by company or contact)
  • Associating calendar events with companies and people in Aero
  • Enabling workspace features that rely on your historical communications

We only access this data if and when you grant explicit permission through Microsoft's secure OAuth process. Specifically, we may access:

  • Your Microsoft email address and profile info (e.g., name, avatar)
  • Outlook Mail metadata (e.g., subject line, sender/recipient, timestamp)
  • Outlook Mail content and attachments (used solely to contextualize your interactions within Aero)
  • Calendar event metadata and event details, including attached files or invites

User Controls

  • You may choose to limit access to metadata only or grant Aero access to message bodies, attachments, and calendar event details for richer CRM functionality.
  • You may revoke access at any time through your Microsoft Account Permissions.
  • Revoking access will stop all new data flow, and Aero will delete previously stored Microsoft Mail/Calendar data in accordance with our retention policy, unless retention is legally required.

Data Protections

  • We do not use Outlook Mail or Calendar data for advertising, profiling, or unrelated purposes.
  • We only access, use, store, or share Outlook Mail and Calendar data as necessary to provide features that are visible and accessible within Aero's user interface.
  • Outlook Mail and Calendar data are processed only on the basis of your explicit consent via OAuth, not on the basis of legitimate interests.
  • Microsoft Mail and Calendar data are encrypted in transit and at rest. Human access to this data is strictly prohibited except (a) with your explicit consent for troubleshooting, or (b) when required by law. All such access is logged and monitored.

3. How We Use Your Information

We use the information you provide for the following purposes:

  • Communication: To send you updates, product information, and relevant content
  • Personalization: To address you by name and tailor communications to your interests
  • Data Enrichment: We may use your email address to look up publicly or commercially available information about you or the company you work for (e.g., company name, industry, role, company size)
  • LinkedIn Data (with your consent): Used to personalize your workspace, speed up onboarding, and help you manage key relationships
  • Gmail/Calendar Data (with your consent): Used to structure and surface conversations within Aero, auto-create contacts and companies, and power communication-based GTM workflows
  • Microsoft Data (with your consent): Used for authentication, structuring and contextualizing interactions, auto-creating contacts and companies, and powering CRM workflows

4. Data Sharing

We do not sell your personal information. We may share certain information in limited cases:

  • Service Providers: Third-party vendors who help us operate our systems or enrich data. These providers are contractually bound to protect your information and may only use it for authorized purposes.
  • Legal Requirements: If compelled by law or legal process, we may disclose your information.

LinkedIn Data:

Never shared or resold; used solely for your benefit within Aero.

Gmail and Calendar Data:

Not shared with third parties under any circumstances, except as strictly necessary to operate Aero's core services (e.g., cloud hosting providers). Never used for advertising, profiling, or other secondary purposes. Access, use, storage, and transfer of Gmail and Calendar data comply with the Google API Services User Data Policy, including Limited Use requirements.

Microsoft Data:

Not shared with third parties under any circumstances, except as strictly necessary to operate Aero's core services (e.g., cloud hosting providers). Never used for advertising, profiling, or other secondary purposes.

5. Your Rights

You can request at any time to:

  • Access the information we have about you
  • Update or correct your details
  • Delete your information from our systems

Just reach out to us at amrit@aerogtm.com.

LinkedIn-Specific Rights:

You may revoke Aero's access from your LinkedIn settings. We will delete any previously accessed data on request unless we're required to retain it by law.

Gmail-Specific Rights:

You can revoke Gmail access via your Google Account Permissions. Revocation stops all new data flow, and Aero will delete previously stored Gmail/Calendar data in accordance with our retention policy, unless retention is legally required.

Microsoft-Specific Rights:

You may revoke Aero's access from your Microsoft Account settings. Revocation stops all new data flow, and Aero will delete previously stored Microsoft account and Microsoft Mail/Calendar data in accordance with our retention policy, unless retention is legally required.

6. Data Retention

We retain your information only as long as needed to fulfill the purposes described in this policy or comply with legal obligations.

LinkedIn Data: Stored only while your OAuth token is active and deleted once access is revoked or expires.

Gmail and Calendar Data: Stored only while your OAuth token remains valid. Automatically deleted once access is revoked, your token expires, or you delete your Aero account. All such data is permanently removed within [X days], unless otherwise required by law.

Microsoft Data: Stored only while your OAuth token remains valid. Automatically deleted once access is revoked, your token expires, or you delete your Aero account. All such data is permanently removed within [X days], unless otherwise required by law.

7. Data Security

We use reasonable safeguards to protect your data. While no system is completely secure, we are committed to protecting your information and improving our security over time.

Google Data Protections:

Gmail and Calendar data are encrypted in transit and at rest. Human access to Gmail or Calendar content is strictly prohibited except (a) with your explicit consent for troubleshooting, or (b) when required by law. All such access is logged and monitored.

Microsoft Data Protections:

Microsoft account, mail, and calendar data are encrypted in transit and at rest. We never store your Microsoft credentials, and human access is strictly prohibited except (a) with your explicit consent for troubleshooting, or (b) when required by law. All such access is logged and monitored.

8. Updates to This Policy

We may occasionally update this Privacy Policy. When we do, we'll revise the effective date at the top and notify you of any major changes.

9. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

Email: amrit@aerogtm.com

Mailing Address:
Aero GTM AI Limited
2323 Broadway
Oakland, CA 94612

Back to Home