THE SCHNORRER 💸← Home

Privacy Policy

Effective date: 26 June 2026

Operated by: Moshe Ehrentreu ("we", "us", "our")

Website: Builtbymoshe.co.uk

Contact: mosheehrentreu@gmail.com

The Schnorrer ("the app") helps charity fundraisers send personalized donation-ask emails for their crowdfunding campaigns and track responses. This policy explains what data we collect, how we use it, and the choices you have. We are based in the United Kingdom and handle personal data in line with UK GDPR.

1. Information we collect

Account information. When you sign in with Google, we receive your name, email address, and profile picture from your Google account, which we use to create and identify your account.

Campaign information. When you add a CharityExtra campaign link, we fetch publicly available details about that campaign (title, cause, story, fundraising goal, donation totals, and the public donation feed) to help you write and track your outreach.

Contacts. To help you choose who to email, the app can import your contacts in two ways: by uploading a file (e.g. CSV), or by connecting your Google Contacts. If you connect Google Contacts, you grant the contacts.readonly permission and we use Google's People API to read your contacts' names and email addresses. We use this only to display your contacts so you can select who to add to a campaign, and we store the name and email address of the contacts you add. We do not read or store other contact fields, and we do not modify or delete anything in your Google Contacts.

Outreach and status data. We store the emails you generate, which contacts you have emailed, and whether you have marked them as having donated.

Technical data. Standard log and security data needed to operate the service.

2. Google user data and Google APIs

The app requests the following Google permissions, and only for the purposes described:

Sending email — gmail.send (Gmail API). Used only to send the emails that you compose and explicitly choose to send, from your own Gmail account, on your behalf. We do not read, search, or store the contents of your inbox; we do not access, delete, or modify your existing emails; and we do not send any email without your action.

Reading contacts — contacts.readonly (People API). Used only to read your contacts' names and email addresses so you can choose who to add to a campaign. We do not modify or delete your Google Contacts, and we do not access contact fields beyond names and email addresses.

To send on your behalf when you trigger a send (including emails you queue to send later), we securely store the Google authorization (refresh) token associated with your account. You can revoke this access at any time (see Section 7).

Limited Use disclosure

The Schnorrer's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically, we do not use Google user data for serving advertisements, we do not sell Google user data, we do not transfer it to third parties except as necessary to provide or improve the app's user-facing features, to comply with law, or as part of a merger/acquisition, and we do not use it to train generalized or non-personalized AI/ML models.

3. How we use your information

We use the information described above to:

  • create and maintain your account;
  • fetch and display your campaign's stats and donation feed;
  • generate personalized email drafts based on your campaign and chosen tone;
  • send the emails you choose to send, from your own email account;
  • track your outreach (who has been contacted, who has donated); and
  • operate, secure, and support the service.

4. AI-generated email content

We use a third-party AI provider to generate the email copy you request. The campaign details and the parameters you choose (such as tone and your name) are sent to that provider solely to produce your draft. We do not send your contact list or your Gmail data to the AI provider for this purpose, and this data is not used to train generalized AI models.

5. How your information is stored and shared

Your data is stored using Supabase (our database and authentication provider) with access controls that restrict your data to your own account. We may rely on a small number of service providers to operate the app (such as our hosting provider, Supabase, and our AI provider), who process data only on our instructions.

We do not sell your personal information or your contacts, and we do not share it for advertising.

6. Data retention

We keep your data for as long as your account is active. If you delete your account or specific data (such as a campaign or contact list), we delete the associated personal data within a reasonable period, except where we must retain limited information to comply with legal obligations.

7. Your choices and rights

  • Revoke Google access: you can disconnect the app from your Google account at any time at https://myaccount.google.com/permissions. After revoking, the app can no longer send email on your behalf.
  • Access, correction, and deletion: under UK GDPR you may request access to, correction of, or deletion of your personal data. Contact us at mosheehrentreu@gmail.com
  • Delete your account: contact us, or use the in-app account deletion option where available, and we will remove your personal data as described in Section 6.

8. Security

We use industry-standard measures to protect your data, including encrypted connections and restricted access to stored credentials. No method of transmission or storage is completely secure, but we work to protect your information and limit access to it.

9. Children

The app is not directed to children under 16 and we do not knowingly collect their personal data.

10. Changes to this policy

We may update this policy from time to time. We will post the updated version here and revise the "Effective date" above. Material changes will be communicated where appropriate.

11. Contact us

Questions about this policy or your data? Contact Moshe at mosheehrentreu@gmail.com.

← Back home