Data Retention Policy

• Raw forwarded emails and attachments: not stored. They exist only in memory while we process the check, and are discarded after we reply.
• Check summaries: scrubbed structured results (risk level, red flags, detected sender/brand) are kept until you delete them or for up to 12 months.
• Operational logs: never contain message content — only step/decision metadata with a per-check trace id. Kept 30–90 days, then purged.
• Audit log: account-changing and consent actions are recorded and kept longer, as the record for disputes and consent proof.

If a check fails to process, we ask you to re-forward the message rather than retaining the original for retry.