Found.ai — Discover Hidden Money in Your Inbox

Last updated: April 14, 2026

What we access

Found.ai requests read-only access to your Gmail account via Google OAuth 2.0. We use the gmail.readonly scope. We cannot send, delete, or modify your emails.

What we store

We do not store your email content. When we scan your inbox, we extract only structured financial data: amounts, sender names, dates, and card/reward identifiers. Raw email content is discarded immediately after parsing.

We store:

Your name, email address, and profile photo (from Google)
Extracted financial items (gift card amounts, cashback values, etc.)
Subscription and billing information

Data security

OAuth tokens are stored encrypted at rest using Google Cloud KMS. All data is transmitted over TLS. We follow industry-standard security practices.

Data deletion

You can delete all your data at any time from your account settings. Upon deletion, all stored data — including tokens, profile information, and scan results — is permanently removed.

Third parties

We use Firebase (Google Cloud) for authentication and data storage, and Stripe for payment processing. We do not sell your data to third parties.

Contact