Last updated: July 1, 2026
MorningBrief is an AI-powered email digest service operated by Edoardo Geiss ("we", "us", "our"). We can be contacted at edoardo.create@gmail.com.
This Privacy Policy explains what personal data MorningBrief collects, how we use it, who we share it with, and what rights you have.
When you sign in with Google, we receive and store your Google account ID, email address, and display name. This is used solely to identify your account and address your digest emails to you.
We request read-only access to your Gmail account via Google OAuth 2.0. This permission allows us to read the content of emails in your inbox to generate your daily digest.
We do not and cannot send, reply to, delete, label, or modify any email in your inbox. This is technically enforced by the scope of the OAuth permission we request (https://www.googleapis.com/auth/gmail.readonly).
Email content is never stored. Emails are fetched from Gmail, sent to Claude (Anthropic's AI) for summarisation, and then immediately discarded. We retain only the generated digest text — not the original emails, not their content, not sender details beyond what appears in the digest.
Google issues us an access token and refresh token when you authorise the app. These tokens are encrypted and stored securely in our database (Firebase, operated by Google). They are never logged, never exposed in API responses, and are used exclusively to fetch your emails for digest generation.
We store the generated digest text for the last 20 digests per user. This lets you view your digest history in the dashboard. You can delete your account at any time to remove all saved digests.
We store your subscription plan (Basic or Pro), preferred digest delivery time (Pro only), email consent preference, and weekly usage counts. These are used to operate the service.
Payments are processed by Stripe. We do not receive or store your credit card number, billing address, or any other payment details. Stripe handles all payment data under their own privacy policy.
We use the data we collect to:
We do not use your data for advertising, analytics resale, or to train AI models.
MorningBrief's use and transfer of information received from Google APIs adhere to the Google API Services User Data Policy, including the Limited Use requirements.
We share your data only with the following third-party services that are necessary to operate MorningBrief:
| Provider | Purpose | Data shared |
|---|---|---|
| Anthropic (Claude) | AI digest generation | Email content (not stored by Anthropic; see their API privacy policy) |
| Google Firebase | Database hosting | Account ID, OAuth tokens, digest history, preferences |
| SendGrid (Twilio) | Email delivery | Your email address and digest content |
| Stripe | Payment processing | Your email address; payment data is handled directly by Stripe |
| Vercel | Application hosting | Standard web server logs (IP, user agent, request path) |
We do not sell, rent, or share your data with any other party. We do not use your data for advertising purposes.
Because MorningBrief accesses Gmail data, we are required to make the following explicit disclosures:
We retain your data for as long as your account is active. Specifically:
On account deletion, all your data (tokens, preferences, digest history) is permanently deleted within 24 hours.
You have the following rights regarding your personal data:
To exercise any of these rights, email us at edoardo.create@gmail.com. We will respond within 30 days.
If you are located in the European Union, you also have the right to lodge a complaint with your national data protection authority.
We take reasonable technical and organisational measures to protect your data, including:
No system is 100% secure. If you become aware of a security vulnerability, please notify us at edoardo.create@gmail.com.
MorningBrief uses only functional cookies necessary to operate the service:
We do not use advertising cookies, third-party tracking cookies, or analytics cookies.
MorningBrief is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, contact us and we will delete it promptly.
We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. For significant changes, we will notify you by email. Continued use of MorningBrief after changes constitutes acceptance of the updated policy.
For any privacy-related questions or requests, contact us at: