Privacy Policy

At Yippie we value transparency. This policy explains what data we collect when you visit getyippie.com, why we collect it, the legal basis for each purpose, and the choices you have. We only collect what we need to run and improve the site.

Data controller

The party responsible for the processing of your personal data (verwerkingsverantwoordelijke) is:

[BEDRIJFSNAAM INVULLEN]
[VESTIGINGSADRES INVULLEN]
KVK-nummer: [KVK INVULLEN]
E-mail: [email protected]

Data we collect and legal basis

We process personal data for the following purposes. For each purpose we state the legal basis as required by Article 6 of the GDPR / AVG.

1. Website analytics

We collect anonymous usage statistics (pages viewed, approximate location, device and browser type, and how you arrived) to understand how the site is used and improve it.

Legal basis: Consent (Art. 6(1)(a) GDPR). We only activate analytics cookies after you accept via our cookie banner. If you decline, analytics stays in cookieless mode and no personal data is stored.

2. Demo requests and contact

If you request a demo or contact us, we collect the details you submit (such as your name, email address, and company) so we can respond to your enquiry and follow up.

Legal basis: Pre-contractual measures at your request (Art. 6(1)(b) GDPR), meaning processing is necessary to take steps before entering into an agreement, and our legitimate interest in managing business enquiries (Art. 6(1)(f) GDPR).

Yippie Inbox Analyser — Chrome extension

The Yippie Inbox Analyser is a free Chrome extension that reads your Gmail inbox metadata to estimate how much time you spend on manual email triage.

What the extension accesses

The extension requests the gmail.metadata OAuth scope. This grants read-only access to email metadata only — the sender address, recipient address, subject line, and date of each message. It does not grant access to message bodies, attachments, drafts, or any other content.

Where your data is processed

All analysis runs entirely inside your browser. Your email metadata is fetched directly from Gmail to your device and is never transmitted to Yippie's servers, stored in any database, or shared with any third party. The extension has no backend and makes no outbound requests except to the Gmail API on your behalf.

What is stored locally

The extension uses chrome.storage.local (your device only) to cache the analysis result for up to one hour, so the popup loads instantly on repeat opens. It also stores your preferences (minutes per email, automation rate, hourly rate). This data never leaves your device and is automatically cleared when you uninstall the extension.

Legal basis

Processing is based on your explicit consent (Art. 6(1)(a) GDPR), granted when you click "Analyse my Gmail inbox" and approve the Gmail permission in the OAuth consent screen. You can withdraw consent at any time by revoking the extension's Gmail access at myaccount.google.com/permissions or by uninstalling the extension.

Removing your data

Uninstalling the extension from Chrome removes all locally stored data immediately. No data exists anywhere else.

Cookies & analytics

We use Google Analytics 4 with Google Consent Mode v2 to understand how the site is used. Until you make a choice in our cookie banner, all analytics and advertising storage is set to denied by default. No tracking cookies are placed. Google Analytics may still receive anonymous, cookieless signals (pings) so we can measure aggregate traffic without identifying you.

When you select Accept, we update your consent to allow analytics and advertising storage, and Google Analytics sets its cookies. When you select Decline, no consent is granted and Analytics stays in cookieless mode. Your choice is remembered in your browser's local storage.

Withdrawing or changing your consent

You can change your mind at any time. Clearing your browser's site data for getyippie.com (or removing the yippie_consent entry from local storage) will make the cookie banner appear again on your next visit, letting you choose anew.

Third-party service providers (data processors)

We do not sell your data. However, to operate this website we share data with third-party service providers (verwerkers) in the following categories:

  • Analytics providers: to measure website traffic and usage (e.g. Google Analytics).
  • Hosting and infrastructure providers: to serve and maintain the website.
  • Email and communication providers: to process and deliver messages you send us.
  • AI processing providers: to power AI-assisted features (inbox classification, reply suggestions, and the Yip assistant), message content and contact data may be processed by Mistral AI SAS, 15 rue des Halles, 75001 Paris, France (EU-hosted). Mistral AI does not use this data to train its models. A Data Processing Agreement with Mistral AI is in place.

Where required under the GDPR, we have concluded a data processing agreement (verwerkersovereenkomst) with each of these providers to ensure your data is processed only on our instructions and with appropriate safeguards in place.

International data transfers

Some of our service providers, including Google (Google Analytics), are based outside the European Economic Area (EEA) or transfer data to countries outside the EEA, including the United States. We ensure that such transfers are subject to appropriate safeguards. For Google, these transfers are covered by the Standard Contractual Clauses (SCCs) adopted by the European Commission, which legally bind Google to protect your data to the same standard as within the EEA.

Data retention

We retain personal data only as long as necessary:

  • Analytics data: Google Analytics is configured with a maximum retention period of 14 months. Aggregate, anonymised reports may be kept longer.
  • Demo requests and contact form submissions: we retain your contact details for up to 12 months after our last interaction with you, after which they are deleted.
  • Cookie consent preference: stored in your browser's local storage and automatically removed when you clear your browser data.

Your rights

Under the GDPR / AVG you have the right to access, correct, or delete the personal data we hold about you, to object to or restrict its processing, and to data portability. Where processing is based on consent, you may withdraw that consent at any time without affecting the lawfulness of processing before withdrawal.

To exercise any of these rights, contact us using the details in the Data controller section above.

You also have the right to lodge a complaint with the Dutch supervisory authority, the Autoriteit Persoonsgegevens (AP), if you believe we are processing your personal data unlawfully. You can reach the AP at autoriteitpersoonsgegevens.nl.

Contact

Questions about this policy or your data? Email us at [email protected] and we will get back to you.

This page is a general starting point and not legal advice. Please review it with qualified counsel before relying on it for compliance.