Security & Privacy FAQs
Has Hey Help undergone any independent security reviews?
Yes. We've passed the risk-based Google Cloud’s CASA (Cloud Application Security Assessment) Tier 2 security review, conducted by a Google-appointed firm. This assessment verifies robust security protocols like access control, secure key management, and adherence to OWASP, ISO 27001, and other standards. More about it can be found at: https://appdefensealliance.dev/casa.
Does Hey Help access my emails?
Yes, but only as needed to deliver our AI assistant features. We access your Gmail inbox with your explicit permission to analyze content and provide tags, summaries, and suggested replies. We never read your emails manually, and we do not store full email content after processing unless explicitly required for a feature (e.g., self-learning corrections).
Can Hey Help employees see my data?
No. Hey Help operates with a zero-human-access policy by default. Your data is only processed by automated systems. In rare cases (such as debugging a critical bug you report), a senior team member may request temporary access—but only with your explicit written consent.
Where is my data stored?
Data is processed and stored on secure servers located in the United States via trusted infrastructure partners (such as Google Cloud Platform and AWS). All storage is encrypted at rest and in transit.
Is my email data used to train AI models?
No. We do not use your data to train any third-party or proprietary AI models. All processing happens within your account scope, and your content is not used to improve public models.
How is my data protected during transmission?
All data transmitted between your device and Hey Help’s servers is encrypted using TLS (Transport Layer Security). This ensures that data in transit cannot be intercepted or tampered with.
Do you store my Gmail password?
Never. Hey Help uses OAuth 2.0 to connect securely with your Gmail account. We do not store or even see your password at any point.
How does self-learning work, and is it secure?
Manual corrections you make help personalize your assistant. These corrections are stored securely and used to improve tagging and drafting accuracy only for your account. No corrections are shared across users.
What subprocessors does HeyHelp use?
We rely on a small number of trusted infrastructure and service providers to securely deliver our product. These subprocessors only handle data necessary for the operation of Hey Help and are contractually required to follow strict confidentiality and security obligations. These are our subprocessors:
Data Processor | Country | Purpose |
|---|---|---|
Amazon Web Services | USA | Cloud Infrastructure |
USA | Cloud Infrastructure, Logging, Analytics | |
Stripe | USA | Payment Gateway |
ActiveCampaign | USA | Email Delivery Service |
Crisp IM | France | Helpdesk and Support |
Updated on: 26/08/2025
Thank you!