Login
© 2026 Meridian
PrivacyTerms
Back to home

Legal

Privacy Policy

How we handle your data and protect your privacy

Last updated: October 13, 2025

What Data We Access

We only access data from services you explicitly connect. All integrations use read-only access where possible.

Google Services

DriveFiles and folders you select, including content, names, and metadata
GmailEmail content, subjects, and sender information (read-only)
CalendarEvent details, participants, and scheduling information (read-only)

Microsoft Services

SharePointDocuments from libraries and folders you authorize
OutlookEmail content and metadata (read-only)

Communication

SlackChannel messages and threads from channels you authorize (read-only)

File Storage

Dropbox & BoxFiles and folders you explicitly select during configuration

Development Tools

GitHubRepository code, commits, and pull requests (read-only)
ConfluencePages, spaces, and attachments you authorize (read-only)

How We Use Your Data

1

Intelligent Search

We index and analyze your connected sources to enable semantic search. Entities like people, organizations, and dates are extracted for better relevance.

2

Summarization

We generate summaries from documents, emails, and messages to help you quickly understand large volumes of information.

3

Contextual Responses

Your data provides context for answering queries. Relevant documents are retrieved based on your questions. No data is shared with other users.

Processing Infrastructure

Content is indexed using Weaviate, LlamaParse, and AWS. All data is encrypted in transit (TLS) and at rest.

What We Don't Do

Sell your data to third parties
Share data with other users or organizations
Use your data to train AI models for others
Access data you haven't connected
Modify or delete your original data
Provide your data to advertisers

Data Retention

Active feedsIndexed while active
Feed deletionRemoved within 30 days
Account deletionPermanently deleted within 30 days
OAuth tokensDeleted on disconnect

Your Rights

Disconnect any service at any time
Delete specific feeds without disconnecting entirely
Revoke access through Google, Microsoft, etc.
Request data deletion or export
View indexed data through the Documents panel

Third-Party Services

We use SOC 2 compliant services for infrastructure:

Weaviate

Vector database

LlamaParse

Document parsing

AWS

Cloud infrastructure

Supabase

Database & auth

Compliance

GDPR CompliantOAuth 2.0Minimal PermissionsExplicit Consent

We may update this policy to reflect new features or legal requirements. Material changes will be communicated via email.