Last updated: April 11, 2026
Cancelette collects only what's necessary to provide the service: your email address (for authentication), subscription metadata you add (service name, amount, renewal date), and — if you connect Gmail — patterns from billing receipt emails. We never store raw email content.
When you connect Gmail, Cancelette requests read-only access scoped to the Gmail API. We scan only for billing receipt keywords. We cannot send, delete, or modify emails. You can revoke access at any time from your Google Account settings. We process email data in memory and discard it immediately — only extracted subscription metadata is stored.
Cancelette does not collect bank credentials, credit card numbers, routing numbers, or any financial account information. Stripe handles all payment processing — we receive only a customer ID and subscription status from Stripe.
All data is encrypted at rest using AES-256 and in transit using TLS 1.3. We use Supabase with row-level security — no user can access another user's data. We conduct regular security reviews.
You may request a full export of your data, correction of inaccurate data, or complete deletion of your account and all associated data at any time from the Settings page. We honor these requests within 30 days.
We do not sell, rent, or share your personal data with third parties for advertising purposes. We share data only with service providers necessary to operate Cancelette (Supabase for database, Stripe for payments, Anthropic (Claude) for AI features) under strict data processing agreements.
Privacy questions: privacy@cancelette.com