Sellaray

Privacy Policy

Last updated: March 31, 2026

1. Introduction

Sellaray ("we," "us," or "our") operates the website sellaray.com and provides an AI-powered sales development platform that sends cold emails on behalf of our clients. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform.

2. Information We Collect

We collect the following types of information:

  • Account Information: Name, email address, company name, and billing information when you create an account or subscribe to our service.
  • Campaign Data: Information you provide about your ideal customer profile, target audience, email sending domains, and campaign preferences.
  • Prospect Data: Business contact information (name, email, job title, company) sourced from third-party B2B data providers for the purpose of outbound email campaigns.
  • Usage Data: Information about how you interact with our platform, including pages visited, features used, and campaign performance metrics.
  • Device and Log Data: IP address, browser type, operating system, and access timestamps collected automatically.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our AI-powered email outreach services.
  • Send personalized cold emails on your behalf to your target prospects.
  • Process payments and manage your subscription.
  • Analyze campaign performance and provide reporting.
  • Communicate with you about your account, service updates, and support requests.
  • Detect and prevent fraud, abuse, or security incidents.
  • Comply with legal obligations.

4. Email Sending on Your Behalf

Our core service involves sending outbound emails on behalf of our clients. When you use Sellaray, you authorize us to send emails from your domain to business prospects. You are responsible for ensuring that your use of our service complies with applicable laws, including CAN-SPAM and any relevant anti-spam legislation in your jurisdiction.

5. Third-Party Services

We use the following third-party services to operate our platform:

  • Supabase: Database hosting, authentication, and backend infrastructure.
  • Stripe: Payment processing and subscription management. Stripe collects and processes your payment information in accordance with its own privacy policy.
  • Resend: Transactional and outbound email delivery on behalf of our clients.

Each of these providers has its own privacy policy governing how they handle data. We encourage you to review their respective policies.

6. Cookies and Tracking

We use essential cookies to maintain your session and authenticate your account. We may also use analytics cookies to understand how our platform is used. You can control cookie preferences through your browser settings.

7. Data Retention

We retain your account data for as long as your account is active or as needed to provide our services. Campaign data and prospect data are retained for the duration of your subscription and for a reasonable period afterward to fulfill legal and business obligations. You may request deletion of your data at any time by contacting us.

8. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit and at rest, secure authentication, and access controls. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

9. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have certain rights under the General Data Protection Regulation (GDPR), including the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your data.
  • Object to or restrict the processing of your data.
  • Request data portability.
  • Withdraw consent at any time where processing is based on consent.

To exercise any of these rights, please contact us at the email address below.

10. CAN-SPAM Compliance

Emails sent through our platform comply with the CAN-SPAM Act. All outbound emails include a clear identification of the sender, a valid physical mailing address, and a functioning unsubscribe mechanism. Unsubscribe requests are processed promptly.

11. Children's Privacy

Our service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we learn that we have collected data from a child, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date. Your continued use of the platform after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at: chasec.hofstetter@gmail.com