API Documentation

MetaCert Privacy Policy

Effective: October 1, 2018

Thanks for visiting us — and, for caring about your privacy as much as we do!

The “Short & Sweet” version:

We do not store or share the content of your email messages — we respect your privacy.

In processing your emails, our algorithms scan email headers for recipients and related data while the text body is scanned to identify match patterns for malware and phishing URLs in order to classify URLs with visual identifiers. Our humans do not read the content of your emails except in the very limited circumstances as described below.

We do not sell your private data or sell access to your personal information. We do not sell ads, or display ads in our products.

We will never send spam or any sort of unsolicited commercial emails to you — or your recipients.

The only data we collect is to make sure we can perform and improve the Service.

The “Long-winded” version:

Our Privacy Policy

Welcome to the web site (the “Site”) of MetaCert Inc. (“MetaCert”, “we”, “us” and/or “our”). This Site is operated by MetaCert Inc. under the trademark “MetaCert” and has been created to provide information about our company and our relationship intelligence platform and related services (together with the Site, the “Services”) to our Service visitors (“you”, “your”). This Privacy Policy sets forth MetaCert’s policy with respect to information including personally identifiable data (“Personal Data”) and other information that is collected from visitors to the Site and Services.


  1. “User” means everyone who registered an account with the Services.
  2. “Your Content” (“Your Data”) means all data (including Personal Data and end user data) that is provided to MetaCert by, or on behalf of, a User through a User’s use of the Services, such as:A. “EmailHeaders”,whichincludetheHeader(TO/FROM/CC/Date)fieldsofyour emails.B. “Private User Data”, which means private electronic data and private information submitted by a User to the Services. This includes account username/password, email message content, and “Contacts”, which are all of a User’s person contacts provided to MetaCert through a User’s use of the Service.
  3. “Login Credentials” are used by MetaCert to access Third Party Services using:A. OAuth tokens when ever possible
    B. Login/password values for Third Party Services that do not support token-based authentication (OAuth or alternatives).

In all cases, login credential data and authentication tokens are encrypted when stored. We use OAuth or the next best alternative when available to avoid storing basic login/ passwords.

Information We Collect:

When you interact with us through the Services, we may collect Personal Data and other information from you, as further described below:

Personal Data That You Provide Through the Services: We collect Personal Data from you when you voluntarily provide such information, such as when you contact us with inquiries, respond to one of our surveys, register for access to the Services, use certain Services, build profile or account information through the Services, sync your address book or other services to the Services. The Personal Data that you provide to us may collectively or implicitly reveal or identify other things about you that are not expressly stated on your profile (for example, your name or profile picture may reveal your gender). Any Personal Data or other information that you supply to us that may be deemed “sensitive” by applicable law is entirely voluntary on your part. You can withdraw or modify your consent to our use of your Personal Data at any time, in accordance with the terms of this Privacy Policy and our Terms of Service. Wherever MetaCert collects Personal Data we make an effort to provide a link to this Privacy Policy.

By voluntarily providing us with Personal Data, you are consenting to our use of it in accordance with this Privacy Policy. If you provide Personal Data to the Services, you acknowledge and agree that such Personal Data may be transferred from your current location to the offices and servers of MetaCert and the authorized third parties referred to herein located in the United States and Canada.

We collect your personal information in the following ways:

  1. Registration. Your MetaCert account (“Account”) is automatically created when you signup to our Services by using the log-in details to your existing email account (i.e. email and password) or using sign-in services such as Google’s OAuth and Microsoft 365 OAuth. These services will authenticate your identity and provide you the option to share certain Personal Data with us such as your name and email address to pre-populate our sign up form or create your account.
  2. Email Data. During signup or through the Site after an account has been created, we collect:A. EmailHeaders. B. LinkURLs.We do not store your: email credentials, text bodies or the attachments of your emails.

Other Information:

● Non-Identifiable Data: When you interact with MetaCert through the Services, we receive and store certain personally non-identifiable information. Such information, which is collected passively using various technologies, cannot presently be used to specifically identify you. MetaCert may store such information itself or such information may be included in databases owned and maintained by MetaCert affiliates, agents or service providers. The Services may use such information and pool it with other information to track, for example, the total number of visitors to our Site, the number of visitors to each page of our Site, and the domain names of our visitors’ Internet service providers. It is important to note that no Personal Data is available or used in this process. In operating the Services, we may use a technology called “cookies.” A cookie is a piece of information that the computer that hosts our Services gives to your browser when you access the Services. Our cookies help provide additional functionality to the Services and help us analyze Services usage more accurately. For instance, our Site may set a cookie on your browser that allows you to access the Services without needing to remember and then enter a password more than once during a visit to the Site. In all cases in which we use cookies, we will not collect Personal Data except with your permission. On most web browsers, you will find a “help” section on the toolbar. Please refer to this section for information on how to receive notification when you are receiving a new cookie and how to turn cookies off. We recommend that you leave cookies turned on because they allow you to take advantage of some of the Service features.

Google Analytics: We may allow third party service providers to use cookies or similar technologies to collect information about your browsing activities over time and across different websites following your use of the Services. For example, we use Google Analytics, a web analytics service provided by Google, Inc. (“Google”). Google Analytics uses cookies to help the website analyze how users use the Site and enhance your experience when you use the Service. For more information on how Google uses this data, go to www.google.com/policies/ privacy/partners/.

Our Use of Your Personal Data and Other Information:

MetaCert uses the Personal Data you provide in a manner that is consistent with this Privacy Policy. If you provide Personal Data for a certain reason, we may use the Personal Data in connection with the reason for which it was provided. For instance, if you contact us by email, we will use the Personal Data you provide to answer your question or resolve your problem. Also, if you provide Personal Data in order to obtain access to the Services, we will use your Personal Data to provide you with access to such services and to monitor your use of such services. MetaCert and its subsidiaries and affiliates may also use your Personal Data and other personally non-identifiable information collected through the Services to help us improve the content and functionality of the Services, to better understand our users and to improve the Services.

MetaCert Visibility: MetaCert employees, contractors, and agents may, from time to time, access a User’s Personal Data in order to improve the Services. MetaCert and its affiliates may use Personal Data to contact you in the future to tell you about services we believe will be of interest to you. If we do so, each marketing communication we send you will contain instructions permitting you to “opt-out” of receiving future marketing communications. In addition, if at any time you wish not to receive any future marketing communications or you wish to have your name deleted from our mailing lists, please contact us as indicated below. We may also send you service and administrative emails, contact you to inform you about changes in our services, our service offerings, and important service related notices, such as changes to this policy or security and fraud notices. These messages are considered part of the service and you may not opt-out of them. If MetaCert intends on using any Personal Data in any manner that is not consistent with this Privacy Policy, you will be informed of such anticipated use prior to or at the time at which the Personal Data is collected.

Our Disclosure of Your Personal Data and Other Information:

MetaCert is not in the business of selling your information. We consider this information to be a vital part of our relationship with you. There are, however, certain circumstances in which we may share your Personal Data with certain third parties without further notice to you, as set forth below:

  • Business Transfers. As we develop our business, we might sell or buy businesses or assets. In the event of a corporate sale, merger, re-organization, dissolution or similar event, Personal Data may be part of the transferred assets.
  • Agents, Consultants and Related Third Parties. MetaCert, like many businesses, sometimes hires other companies to perform certain business-related functions. Examples of such functions include mailing information, maintaining databases and processing payments. When we employ another entity to perform a function of this nature, we only provide them with the information that they need to perform their specific function.
  • Your Election. We may disclose your Personal Data as elected by you through your use of the profile privacy settings, or your input of information into public fields.
  • Legal Requirements. MetaCert may disclose your Personal Data if required to do so by law or in the good faith belief that such action is necessary to (i) comply with a legal obligation, (ii) protect and defend the rights or property of MetaCert, (iii) act in urgent circumstances to protect the personal safety of users of the Services or the public, or (iv) protect against legal liability.Your Choices:You can visit the Site without providing any Personal Data. If you choose not to provide any Personal Data, you may not be able to use certain Services.Exclusions:This Privacy Policy does not apply to any Personal Data collected by MetaCert other than Personal Data collected through the Services. This Privacy Policy shall not apply to any unsolicited information you provide to MetaCert through the Services or through any other means. This includes, but is not limited to, information posted to any public areas of the Services, such as forums, any ideas for new products or modifications to existing products, and other unsolicited submissions (collectively, “Unsolicited Information”). All Unsolicited Information shall be deemed to be non-confidential and MetaCert shall be free to reproduce, use, disclose, and distribute such Unsolicited Information to others without limitation or attribution.


MetaCert does not knowingly collect Personal Data from children under the age of 13. If you are under the age of 13, please do not submit any Personal Data through the Services. We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce our Privacy Policy by instructing their children never to provide Personal Data on the Services without their permission. If you have reason to believe that a child under the age of 13 has provided Personal Data to MetaCert through the Services, please contact us, and we will endeavor to delete that information from our databases.

Links to Other Web Sites or Applications:

This Privacy Policy applies only to the Services. The Services may contain links to other websites or applications not operated or controlled by MetaCert (the “Third Party Sites”). The policies and procedures we described here do not apply to the Third Party Sites. The links from the Services do not imply that MetaCert endorses or has reviewed the Third Party Sites. We suggest contacting those sites directly for information on their privacy policies.

Third-Party Payment Processor:

We use a third party payment processor to process payments made to us. In connection with the processing of such payments, we do not retain any personally identifiable information or any financial information such as credit card numbers. Rather, all such information is provided directly to our third party processor, Stripe, whose use of your personal information is governed by their privacy policy, which may be viewed at https://stripe.com/us/privacy.

Account Deactivation and Data Retention:

You may deactivate or permanently delete your account by contacting us at: hello (at) MetaCert (dot) com.

If you choose to deactivate your account, your account will be inaccessible until you choose to reactivate it. We will retain the information you have created or saved within MetaCert. If you do not choose to reactivate your account within 90 days of requesting deactivation, your account may be permanently deleted.

If you request that MetaCert permanently delete your account, you will no longer have access to the information you have created or saved within MetaCert. It may take up to 90 days to delete your information from our systems.If you create a new account at a later date, your previous Private User Data and Login Credentials will not be available to you. For technical reasons some information, such as usage and error logs, may be retained in our databases.


MetaCert takes reasonable steps to protect the Personal Data provided via the Services from loss, misuse, and unauthorized access, disclosure, alteration, or destruction.

We take the security of Your Data seriously. We use technical and administrative security measures such as, but not limited to, firewalls, encryption techniques, and authentication procedures, among others, to work to maintain the security of your online session and personal information. In particular:

  • Encryption. We encrypt all information in storage using several advanced protection methods and in-transit using SSL/TLS encryption. In addition, we conduct security audits with a third-party white-hat provide to test our security measures.
  • Disaster Recovery. We implement regular backups of all databases and our data is stored simultaneously at multiple, geographically distributed locations to ensure redundancy in the event of a natural disaster or other emergency.However, no Internet or email transmission is ever fully secure or error free. Therefore, you should take special care in deciding what information you send to us via email. Please keep this in mind whenever disclosing any Personal Data via the Internet.Other Terms and Conditions:Your access to and use of the Services is subject to the Terms of Service at https://developer.metacert.com/api-documentation/legal/

Changes to Privacy Policy:

The Services and our business may change from time to time. As a result, at times it may be necessary for MetaCert to make changes to this Privacy Policy. MetaCert reserves the right to update or modify this Privacy Policy at any time and from time to time without prior notice. Please review this policy periodically, and especially before you provide any Personal Data. This Privacy Policy was last updated on the date indicated above. Your continued use of the Services after any changes or revisions to this Privacy Policy shall indicate your agreement with the terms of such revised Privacy Policy.

Access to Information:

To keep your Personal Data accurate, current, and complete, please contact us as specified below. We will take reasonable steps to update or correct Personal Data in our possession that you have previously submitted via the Services.

Our commitment to data security

To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect online.

How you can access or correct your information

You can access all or any personally identifiable information that we may have from you via any other contact you make with MetaCert by contacting us with on following email address hello@metacert.com

If you have signed up to receive updates from our blog, or you have signed up to any other product we offer such as our Security API product and would like us to remove your details from our system, please email us at hello@metacert.com and we will remove your details within 24 hours.

To protect your privacy and security, we will also take reasonable steps to verify your identity before granting access or making corrections.