Grasp Visual
All Compliance Documents

Privacy Policy

Version: 2.0Last Updated: February 15, 2026Effective: February 15, 2026Tier 2 (Small Business/Commercial)

1. Introduction

Grasp Visual (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Email to Print service and related services (collectively, the “Service”). By using our Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, username, and authentication credentials
  • Gmail Account Data: Access to your Gmail account for email processing (with your explicit consent)
  • License Information: License status, expiration dates, and usage data
  • Support Communications: Information you provide when contacting us for support

2.2 Automatically Collected Information

  • Usage Data: How you interact with the Service, including features used and frequency of use
  • Device Information: Device type, operating system, and application version
  • Log Data: IP addresses, access times, and error logs
  • Email Processing Data: Email metadata (sender, subject, date) for print history

2.3 Gmail API Data

When you connect your Gmail account, we access:

  • Email messages and attachments (read-only access)
  • Email metadata (subject, sender, date, recipient)
  • Profile information (email address, name)

We do NOT store email content or attachments on our servers. All email processing occurs locally on your device.

2.4 Payment and Financial Information

When you purchase a subscription or license, the following information is collected and processed:

  • Transaction Information: Purchase date, plan type, amount paid, and currency
  • Billing Contact Information: Name and email address associated with payment
  • Subscription Status: Current plan, billing interval, renewal date, and cancellation status
  • Payment Processor Identifiers: Customer ID, subscription ID, and order ID assigned by our payment processor

We do NOT collect, store, or have access to your full payment card number, CVV, or bank account details. All payment card data is handled exclusively by our third-party payment processor (see Section 5.2).

2.5 Cross-Application Data

If you use multiple Grasp Visual applications, we maintain a unified customer record that links your subscriptions across our products. This includes:

  • Your email address (as a common identifier)
  • Subscription status for each application
  • Combined order history across applications

This data is used to provide a unified customer portal experience and is not shared with third parties beyond what is described in Section 5.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide, maintain, and improve the Email to Print service
  • Authentication: To verify your identity and manage your account
  • License Management: To validate licenses, track usage, and manage subscriptions
  • Email Processing: To monitor your Gmail account for emails matching print patterns and process them for printing
  • Payment Processing: To process purchases, manage subscriptions, handle refunds, and maintain billing records
  • Support: To respond to your inquiries and provide customer support
  • Security: To detect, prevent, and address technical issues and security threats
  • Compliance: To comply with legal obligations and enforce our terms

4. Data Storage and Security

4.1 Data Storage

  • Local Storage: Email processing data is stored locally on your device
  • Server Storage: Account information, license data, subscription records, and usage statistics are stored on secure servers located in the United States
  • Gmail Data: We do not store email content or attachments on our servers
  • Payment Data: Payment card information is stored exclusively by our payment processor; we only store transaction identifiers and subscription metadata

4.2 Security Measures

  • Encryption of data in transit (HTTPS/TLS)
  • Secure authentication and authorization
  • Regular security audits and updates
  • Access controls and monitoring
  • Secure credential storage using OS keychain

5. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share information only in the following circumstances:

5.1 Service Providers

We share information with trusted third-party service providers who assist in operating our Service (e.g., cloud hosting, email services). These providers are bound by data processing agreements and may only use your data as instructed by us.

5.2 Payment Processor (Sub-Processor)

Our payment processor, Lemon Squeezy (operated by Lemon Squeezy, LLC, a Stripe company), acts as the Merchant of Record for all transactions and processes the following data on our behalf:

  • Your name and email address (for invoicing and receipts)
  • Your payment card or payment method details (collected directly by them; we never receive full card numbers)
  • Your billing address (for tax calculation)
  • Transaction amounts and history

Lemon Squeezy processes payments using Stripe's infrastructure (PCI Level 1 certified). Their processing of your data is governed by their own privacy policy. We have a Data Processing Agreement (DPA) in place with this processor.

5.3 Other Disclosures

  • Legal Requirements: When required by law, court order, or government regulation
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • Consent: With your explicit consent

6. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request access to your personal information
  • Correction: Request correction of inaccurate information
  • Deletion: Request deletion of your personal information
  • Portability: Request transfer of your data in a structured, machine-readable format
  • Opt-Out: Withdraw consent for data processing
  • Complaint: File a complaint with a data protection authority

To exercise these rights, contact us at the information provided in Section 14.

7. GDPR Compliance (EU Users)

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis: We process your data based on contract performance (providing the Service), legitimate interests (security, fraud prevention), and consent (Gmail API access)
  • Data Processing Agreements: We have DPAs with all third-party processors, including our payment processor
  • Data Protection Officer: Contact information for data protection inquiries is provided in Section 14
  • Right to Object: You can object to processing based on legitimate interests
  • Data Transfer Safeguards: When your data is transferred outside the EEA, we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) are in place

8. CCPA Compliance (California Users)

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request disclosure of personal information collected, including categories and specific pieces of data
  • Right to Delete: Request deletion of personal information
  • Right to Opt-Out: Opt-out of the sale of personal information (we do not sell personal information)
  • Non-Discrimination: We will not discriminate against you for exercising your rights

Categories of personal information we collect: Identifiers (email, name), commercial information (purchase history, subscription data), internet activity (usage data, log data), and geolocation (derived from IP address for tax purposes by our payment processor).

9. Data Retention

We retain your information for as long as necessary to:

  • Provide the Service
  • Comply with legal obligations
  • Resolve disputes
  • Enforce agreements

Payment and financial data retention periods:

  • Transaction records and order history: 7 years (tax and legal compliance)
  • Subscription metadata: Duration of subscription + 90 days after cancellation
  • Payment processor identifiers: Duration of customer relationship + 90 days

For all specific retention periods, see our Data Retention Policy.

10. Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

11. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, specifically the United States where our servers are located. We ensure appropriate safeguards are in place to protect your data in accordance with this Privacy Policy, including Standard Contractual Clauses where required by applicable law.

12. Cookies and Tracking

For information about our use of cookies and similar technologies, please see our Cookie Policy.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy on this page
  • Updating the “Last Updated” date
  • Sending you an email notification (for material changes)

We will provide at least 30 days notice before material changes take effect. Your continued use of the Service after changes become effective constitutes acceptance of the updated policy.

14. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

Grasp Visual
Email: info@graspvisual.com
Website: www.graspvisual.com
Address: 15201 Mason Rd 1000 - PMD 367, Cypress, TX 77433

Data Protection Officer (for GDPR inquiries):
Email: info@graspvisual.com

This Privacy Policy is effective as of February 15, 2026. Last updated: February 15, 2026.