Privacy Policy
Last updated: 3 January 2026
Introduction
This Privacy Policy explains how Redlio Designs ("Sendlio", "we", "us", or "our") collects, uses, stores, and shares personal information when you visit sendlio.com, create a Sendlio account, or use our email outreach, warmup, verification, unified inbox, campaign, or analytics services (collectively, the "Service"). By using the Service, you agree to the practices described here.
Who we are
Sendlio is a product of Redlio Designs, headquartered at 12 Krishna Complex, Janta Fatak, Jamnagar, Gujarat, India – 361006. For any privacy-related inquiries, write to privacy@sendlio.com.
1. Information we collect
a) Account data — name, work email, company name, job title, password (hashed), and billing details you provide when signing up or subscribing. b) Connected mailbox data — when you connect Gmail, Outlook, or SMTP/IMAP inboxes, we process mailbox credentials (OAuth tokens or SMTP passwords, encrypted at rest), message metadata, and message content solely to deliver the Service. c) Outreach data — contact lists you upload, sequences you create, messages you send, replies received, and engagement events (opens, clicks, bounces, replies). d) Usage data — pages visited, features used, timestamps, device type, browser, IP address, and referral URL. e) Support data — information you share when contacting support. f) Payment data — handled directly by our payment processor (Stripe); we do not store full card numbers.
2. How we use your information
We use personal information to: provide, operate, and maintain the Service; authenticate users and protect accounts; deliver and warm up email on your behalf; monitor deliverability, reputation, and bounce rates; bill you and process payments; respond to support requests; communicate product updates and security notices; detect, prevent, and investigate abuse or violations of our Acceptable Use Policy; comply with legal obligations; and improve the Service through aggregated, anonymized analytics. We never sell your data.
3. Legal bases (GDPR)
Where EU/UK law applies, we process personal information on the following bases: (i) performance of a contract — to provide the Service you subscribed to; (ii) legitimate interests — to secure the Service, prevent abuse, improve product quality, and conduct limited marketing; (iii) consent — for optional cookies, marketing emails, and other opt-in communications; (iv) legal obligation — to comply with tax, audit, or law-enforcement requests.
4. How we share information
We share personal information only with: (i) service providers that host infrastructure (AWS, Cloudflare), send transactional email (Postmark), process payments (Stripe), provide analytics (Plausible / PostHog), and provide customer support tooling (Intercom, Crisp) — each under written data-processing terms; (ii) our corporate affiliates under the same privacy standards; (iii) authorities when required by law, court order, or to protect rights, property, and safety; (iv) a buyer or successor in the event of a merger, acquisition, or asset sale, with notice to you. We do not sell, rent, or trade personal information.
5. Subscriber data (we act as a processor)
Contact records, email content, reply data, and engagement metadata that you upload or generate through the Service (collectively, "Subscriber Data") remain your property. We process Subscriber Data only on your documented instructions to deliver the Service, as described in our Data Processing Addendum. You are the controller; we are the processor. You are responsible for having a lawful basis to send email and for honoring opt-outs.
6. Cookies and tracking
We use strictly-necessary cookies to keep you logged in and to remember preferences. We use limited analytics cookies (first-party) to understand aggregate product usage. We do not run third-party advertising pixels on our app. See our Cookie Policy for full details and for instructions on how to opt out.
7. Data retention
We retain account data for as long as your subscription is active and for up to 24 months after cancellation to meet tax, accounting, and audit obligations. Subscriber Data is retained while your account is active; upon deletion, we purge it from production within 30 days and from backups within 90 days. You may request earlier deletion by emailing privacy@sendlio.com.
8. Security
We apply industry-standard safeguards: TLS 1.2+ in transit, AES-256 at rest, role-based access control, audit logging, principle-of-least-privilege, encrypted credential storage for connected mailboxes, and regular security reviews. No transmission method is 100% secure; we strive to protect your information but cannot guarantee absolute security.
9. International transfers
We are based in India and use sub-processors located in the United States, European Union, and other jurisdictions. Where personal data moves outside your country, we rely on Standard Contractual Clauses (for EU/UK transfers) and equivalent safeguards. Contact privacy@sendlio.com for a copy of our SCCs.
10. Your rights
Depending on your jurisdiction you may have the right to: access the personal information we hold about you; correct inaccuracies; request deletion; restrict or object to processing; receive a portable copy; withdraw consent; and lodge a complaint with your data-protection authority. EU/UK residents have these rights under GDPR. California residents have rights under the CCPA/CPRA, including the right to know, delete, correct, and opt out of "sharing". To exercise any right, email privacy@sendlio.com — we respond within 30 days.
11. Children
The Service is not directed to individuals under 16. We do not knowingly collect personal information from children. If you believe a child has provided us information, contact privacy@sendlio.com and we will delete it promptly.
12. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be notified by email to account administrators and by a banner on sendlio.com at least 7 days before the new version takes effect. The "Last updated" date below reflects the current version.
13. Contact us
For privacy questions, rights requests, or complaints: privacy@sendlio.com. Postal: Redlio Designs, 12 Krishna Complex, Janta Fatak, Jamnagar, Gujarat, India – 361006.