FinDr., Inc. ("FinDr.," "we," "our," or "us") provides software tools for professor discovery, research matching, outreach drafting, and related academic workflow support. By accessing or using FinDr., you consent to the practices described in this Privacy Policy.
1. Information We Collect
We collect information you provide directly to us, information created through your use of the service, and certain information from third parties.
- Account information, such as your name, email address, password, institution, education level, and profile details.
- Google account information, if you sign in with Google or connect Gmail, such as your Google account identifier, email address, email-verification status, basic profile information, granted scopes, and OAuth tokens needed to keep your connected account working.
- Profile and workflow information, such as majors, minors, research interests, time commitment, uploaded CVs, saved professors, shortlists, and settings.
- Communication and outreach information, such as drafted emails, sent emails, recipients, subject lines, attachment metadata, and connected inbox provider details.
- Usage and diagnostic information, such as IP address, browser type, device information, log events, timestamps, and product interaction data.
- Payment and subscription metadata processed through our payment providers.
2. Outreach and Email Processing
When you draft or send communications through FinDr., we may process message content, recipient information, delivery metadata, attachment metadata, and connected inbox details in order to provide the service. We may log operational details related to sending, such as provider used, recipient address, subject line, CV attachment status, and timestamps. We do not guarantee delivery, response, inbox placement, or recipient behavior.
3. AI-Assisted Content
FinDr. may generate suggested language, summaries, rankings, or draft communications using AI-assisted systems. AI-generated content may be incomplete, inaccurate, or inappropriate for a given situation. You remain solely responsible for reviewing and approving any content before it is used or sent.
4. Public Academic and Institutional Information
FinDr. may collect, index, organize, summarize, and display publicly available academic or institutional information, including faculty names, departments, research descriptions, contact information, and lab or publication references. This information may come from public faculty pages, institutional directories, publications, or other lawful public sources. We do not guarantee that public source information is complete, accurate, or current.
5. How We Use Information
We use information to operate, improve, secure, and support FinDr. This includes providing account access, matching and search functionality, outreach drafting and delivery, customer support, fraud prevention, abuse detection, subscription administration, and compliance with legal obligations. If information comes from Google APIs or a Google account connection, the additional restrictions in Section 6 apply and control.
6. Google User Data
If you use Google Sign-In, we collect and process your Google account identifier, email address, and email-verification status in order to authenticate you, link your Google identity to your FinDr. account, and maintain your login session. If you connect Gmail, we also collect and process the connected sender address, OAuth access token, refresh token if provided by Google, granted scopes, token-expiration metadata, and the email-delivery details needed to send emails that you explicitly direct FinDr. to send from the product interface.
We store Google OAuth tokens and related account metadata on our servers so your linked Gmail account can remain connected and can send email at your direction. For Gmail-connected accounts, FinDr. requests only the scopes needed for sign-in and sending mail. We do not request Gmail inbox read access, do not import your inbox for analytics or marketing, and do not use Google user data for advertising, sale to data brokers, or other unrelated purposes. We also do not use Google user data to train generalized AI or machine-learning models.
Except as necessary for security, fraud prevention, abuse detection, or legal compliance as described in this Privacy Policy, FinDr. does not use Google user data for any purpose other than providing or improving the user-facing functionality of FinDr. that you request and use. This means we use Google user data only to provide or improve Google Sign-In, Gmail connection management, sending emails at your direction, login reliability, OAuth connection health, delivery troubleshooting, and related security for those features. We do not use Google user data for unrelated product development, generalized analytics, profiling, or commercial resale.
7. Sharing, Transfer, and Disclosure
We share information only as reasonably necessary to operate FinDr. Depending on the feature you use, this may include Google LLC, our cloud hosting, database, and file-storage providers, our security and logging providers, and service providers that help us operate application infrastructure and customer support.
Google user data is subject to stricter limits. We do not sell or transfer Google user data to advertising platforms, data brokers, or information resellers. We disclose or transfer Google user data only in the following situations: to Google LLC in order to authenticate your account or send the email you instruct us to send; to infrastructure providers processing data on our behalf solely to provide or improve the Google-connected features that are prominent in FinDr.; for security purposes such as investigating abuse or preventing fraud; to comply with applicable law or legal process; or as part of a merger, acquisition, or asset sale after any consent required by law or Google policy is obtained.
We do not permit human review of Google user data except when it is necessary for security, fraud investigation, legal compliance, or user-authorized support for a specific issue you ask us to resolve.
8. Abuse Monitoring and Fraud Prevention
We may monitor and review account activity to detect abuse, spam, scraping, unauthorized access, excessive outreach volume, suspicious logins, fraudulent behavior, or policy violations. We may suspend, throttle, restrict, investigate, or terminate accounts where we identify risk.
9. Retention
We retain information for as long as reasonably necessary to provide the service, maintain security, enforce our agreements, resolve disputes, comply with legal obligations, and preserve business records. Retention periods may vary depending on the type of information involved and whether the account remains active.
For Google user data specifically, we retain Google Sign-In identifiers while your FinDr. account remains active, and we retain Gmail OAuth credentials while your Gmail account remains connected. If you disconnect Gmail from FinDr., we delete the stored Gmail OAuth credentials from our active systems, subject to backup retention and legal obligations.
10. Security
We use reasonable administrative, technical, and organizational measures designed to protect information. For Google user data, this includes server-side token storage, access controls, and other safeguards designed to reduce unauthorized access, disclosure, or misuse. No system is completely secure, and we cannot guarantee absolute security, uninterrupted availability, or protection against every unauthorized access attempt or service failure.
11. International Use
FinDr. may be accessed from outside the United States. If you use the service from another jurisdiction, you understand that your information may be processed in the United States or other locations where our providers operate, and you are responsible for complying with local laws applicable to your use.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Changes become effective when posted. Your continued use of FinDr. after an updated Privacy Policy is posted means you accept the revised policy.
13. Contact
If you have questions about this Privacy Policy or our data practices, contact FinDr., Inc. at findrapp.helpdesk@gmail.com.