Privacy Policy

Last updated: January 27, 2026

Privacy Policy

1. Who We Are

Brightenly K.K. operates the Brightenly platform, a CRM and productivity tool for freelancers and small businesses.

2. Purpose of This Policy

This policy explains how we collect, use, store, and protect your personal data.

3. Information We Collect

We collect:

  • Identifiers: Name, email, company name, phone number
  • Gmail Data: Email headers, subjects, message bodies (user-authorized)
  • Contract Data: Contract titles, signer names, timestamps, signatures
  • Usage Data: Pages visited, features used, IP, device type, cookies
  • Transaction Data: Subscription tier, Stripe payment ID, billing history

4. How We Use Your Data

Your data is used to provide and improve our services, process payments, and communicate with you about your account.

5. Gmail Integration Data

5.1 Data We Access

  • Messages and metadata
  • Headers (From, To, Cc, Bcc, Subject)
  • Message content and attachments

5.2 Purpose of Use

  • Display emails in CRM
  • Link to client records
  • Extract details for CRM fields
  • Generate insights

5.3 Storage and Security

Data is AES-256 encrypted at rest, TLS encrypted in transit, stored in US data centers.

5.4 Retention and Deletion

Data is retained while Gmail is connected and deleted within 30 days of disconnect.

5.5 Data Sharing

We do not sell your data. Data is only shared with service providers necessary to operate our platform.

6. Contract Data (Docuseal Integration)

Contract data is stored securely and used only for providing e-signature services.

7. Processors / Service Providers

  • Salesforce/Heroku: Platform hosting (USA)
  • Microsoft Corporation: Azure OpenAI (Japan/USA)
  • Amazon Web Services: Object storage (USA)
  • Stripe Payments Japan K.K.: Payments (Japan/USA)
  • Wildbit LLC (Postmark): Email delivery (USA)
  • Docuseal, Inc.: Contract signing (USA)

8. International Transfers

Data may be transferred to and processed in the United States and Japan.

9. Security and Retention

  • Encryption: TLS 1.2+ in transit, AES-256 at rest
  • Access Controls: Role-based, least-privilege
  • Backups: Encrypted, rotated daily
  • Monitoring: Continuous audit logs and alerts

10. Cookies and Tracking Technologies

We use cookies for authentication, analytics, and improving user experience.

11. Your Rights

You have the right to:

  • Access your personal data
  • Request correction
  • Request deletion
  • Withdraw consent
  • Request a machine-readable copy

12. Government and Legal Requests

We have not received any national-security or law-enforcement requests in the past 12 months.

13. Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page.

14. Contact

For privacy inquiries, contact us at contact@brightenly.io

Questions?

If you have any questions about this document, please contact us.

Contact Us