Last updated: June 16, 2026
Kelp AI Labs, LLC ("Kelp," "we," "our," or "us"), a Delaware limited liability company, operates an AI-powered email assistant that helps professionals manage and filter their Gmail inboxes. We take your privacy seriously. This page explains what data we access, how we use it, and what controls you have. Your use of Kelp is also governed by our Terms of Service.
Kelp connects to your Gmail account through Google's official OAuth system. We access only the data required to filter your mail and improve that filtering, and we don't keep copies of your personal emails — we read message content only when needed to apply your filters or suggest improvements to them (see Sections 2 and 4).
You stay in control at all times — you can review, adjust, or revoke access whenever you choose.
When you grant permission, Kelp may access the following through Google's secure APIs:
To provide transparency and analytics, Kelp may temporarily store limited operational data:
| Type | Example | Retention | Purpose |
|---|---|---|---|
| Filter logs | Sender, subject, timestamp | 30 days (configurable) | To show what was filtered and why |
| User settings | Filter prompts, LLM preferences | Until deleted by you | To apply your chosen filters |
| Authentication data | Encrypted OAuth tokens (access and refresh) | Until you revoke access or delete your account | To process Gmail events on your behalf |
| Contact fingerprints | Hashed identifiers of email addresses and domains | Until deleted by you | To recognize trusted senders |
| Envelope preview (on by default) | Sender, subject line, short snippet of body (not full email) | 30 days (configurable) | To help you debug and track filtered messages |
| Feedback signals | Sender, subject, and a short snippet of messages you mark as spam; which label you removed or added by hand | 30 days | To suggest improvements to your filtering |
| Assistant conversations & suggestions | Your messages to Kelp's assistant and its replies (and which tools it ran); the filtering suggestions it generates — never the email content it reads to answer you | Suggestions: 30 days; conversations: until you delete your account | To debug and improve the assistant and surface suggestions for your review |
| Memory (learned patterns) | Durable facts about you and your filtering preferences, inferred from your email content and your interactions with Kelp | Until you edit or delete it | To recommend, craft, and personalize your filters |
What are contact fingerprints? When you sync your contacts, Kelp creates a hashed identifier from each email address and domain. This lets Kelp recognize when an email comes from someone you know without storing your actual contact list (names, phone numbers, addresses, or raw email addresses). These hashes are not anonymous in a strict sense — given a guess at an email address, a match can be confirmed — but Kelp never has the underlying address book and never reconstructs it.
We do not store:
We use your data solely to deliver Kelp's core functionality:
Kelp does not currently train, fine-tune, or otherwise adapt machine-learning models on your data, and will not begin doing so without first updating this policy and obtaining any consent required by law.
Kelp's assistant and proactive suggestions. Kelp includes an AI assistant that helps you set up, craft, and maintain your filters, and that periodically reviews how you handle your mail — including signals from your own Gmail actions, such as marking a message as spam, removing a label Kelp applied, or adding a filter's label by hand — to recommend ways to improve your filtering. When it finds one, it surfaces a specific suggestion for you to approve, adjust, or decline; nothing changes until you say so, unless you choose to let Kelp apply its suggestions automatically. When you turn that on, Kelp can apply filter and trust/block changes without asking first and reports what it changed in a weekly summary email. This is used only to improve your own filtering, is visible and reversible from within Kelp, and is not used to train or improve any generalized AI or machine-learning model.
Conversation records. So we can debug and improve the assistant, we keep a record of your conversations with it — the messages you send and Kelp's replies, including which tools it ran — together with the filtering suggestions Kelp generates for you. The email content the assistant reads from your mailbox to answer you (message bodies, subjects, senders, and snippets) is never written into that record. Suggestions are short-lived working state, cleared after about 30 days. These records are used to operate and improve the Service and are not used to train or improve any generalized AI or machine-learning model.
What Kelp learns (its memory). To recommend, craft, and personalize your filters, Kelp keeps a memory of patterns it infers from your email content — which Kelp's periodic review reads automatically as part of the Service, under the Gmail access you grant — and from how you interact with Kelp. This memory has two parts: learned preferences — how you like to use Gmail and how you want Kelp to filter (for example, that you keep some newsletters but reject others) — and an inferred biography — durable facts about you and the senders you deal with that help Kelp judge whether mail is relevant to you (described under "profile personalization" below). Kelp draws on this memory, together with your contacts and trusted senders, to suggest and tune filters that fit you and to deliver the Service. You can view, edit, or delete anything Kelp has learned at any time from your settings, and deletion removes it from active systems within 7 days. This memory is used only to operate and improve your own filtering and is not used to train or improve any generalized AI or machine-learning model.
Profile personalization. Kelp builds a short profile of concrete facts about you — where you're based, your work, recurring senders — to help its filters judge whether incoming mail is relevant to you. This is on by default; you can turn it off at any time, which stops the profile from reaching your filters. Kelp gathers these facts both as you chat with its assistant and automatically when its periodic review reads your mail; in chat, the assistant asks first before scanning messages you haven't already shown it. The profile is stored with your account, viewable and editable from your settings, and is included as context when emails are sent to AI providers for classification (subject to the sub-processor restrictions in Section 9). The profile and the underlying email content are not used to train or improve any generalized AI or machine-learning model. You can disable it or delete your profile at any time, and deletion removes it from active systems within 7 days.
We do not sell, rent, or share your data with third parties for marketing, advertising, or any purpose unrelated to providing the Kelp service.
Kelp's use and transfer to any other app of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Kelp only uses Google user data to provide and improve user-facing features that are prominent in our application. Specifically:
We will never:
We only transfer Google user data to third parties when:
Kelp employees and contractors will not read your Google user data unless:
If Kelp experiences a data breach affecting your information, we will notify you without undue delay and in any event within 72 hours where required by applicable law.
You can manage your data and permissions at any time:
We keep operational metadata (such as filter logs and envelope previews) only as long as necessary to provide transparency and analytics — typically 30 days, unless you opt to extend it. When you delete your account, all stored metadata and preferences are permanently removed from our active systems within 7 days.
Backup Retention: Deleted data may persist in encrypted backups for up to 30 additional days before being automatically purged. Backup data is not accessible for normal operations.
Legal Retention: We may retain certain data for longer periods if required by law, to resolve disputes, enforce our agreements, or as needed for legitimate business purposes (such as fraud prevention or security investigations).
We use trusted third-party service providers to operate Kelp. These providers are contractually obligated to protect your data and use it only as directed by us.
Kelp uses a third-party large language model (LLM) to classify your email, power its AI assistant, and generate proactive suggestions for improving your filtering:
Anthropic is contractually restricted to use your data only to deliver the requested output and not to train their general AI models. Anthropic may retain inputs briefly (typically up to 30 days) for abuse monitoring before deletion. All requests are made through secure, encrypted API calls.
Kelp's web app uses essential cookies for authentication and session management. We do not use advertising cookies or cross-site tracking.
Product Analytics: We use PostHog to understand how users interact with Kelp, identify bugs, and improve the service. Form input and known personal-information fields (sender names, subjects, snippets, contact emails, domains) are masked before they leave your browser — we see which features you use, navigation, and client-side errors, not typed content. We do not use this data for advertising and do not share it with advertisers.
Do Not Track / Global Privacy Control: We honor your browser's "Do Not Track" and California's "Global Privacy Control" signals. If either is set, analytics are automatically disabled for your session.
Kelp is intended for professional use and is not designed for children under 16. We do not knowingly collect personal information from minors.
Kelp operates from servers located in the United States, and our analytics provider also stores data in the US. If you access Kelp from another country, you consent to the transfer of your information to the US under applicable data-protection laws. Your rights under those laws to access, correct, or delete your personal information remain available; contact us at privacy@trykelp.ai to exercise them.
We do not sell or "share" (as those terms are defined by the California Consumer Privacy Act / California Privacy Rights Act) your personal information. California residents have the right to request access to or deletion of their personal data by contacting us at privacy@trykelp.ai. We honor Global Privacy Control (GPC) signals as an automatic opt-out from analytics.
If Kelp is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you by email before your data becomes subject to a different privacy policy.
We review this Privacy Policy at least annually to ensure it remains accurate and compliant with applicable laws. We may update it from time to time. We will notify you by email at least 30 days before any material change takes effect.
The most current version will always be available at trykelp.ai/privacy.
If you have questions, concerns, or requests about this Privacy Policy or your data, contact us at:
privacy@trykelp.ai
or
Kelp Privacy Team
Boulder, Colorado