1. Overview
Feral, Inc. ("Feral," "we," "us," or "our") operates a workflow automation platform that connects small business clients to their existing software tools — including Google Workspace and QuickBooks Online — to automate business processes on their behalf.
This Privacy Policy describes how Feral collects, uses, stores, and protects information in connection with our platform and services, including information accessed through third-party APIs such as Google and Intuit QuickBooks.
By engaging Feral's services or authorizing our platform to access your accounts, you agree to the practices described in this policy.
2. Information We Access
2a. Google Workspace
When a client authorizes Feral's platform to access their Google Workspace account, we may access the following services depending on the client's contracted workflows:
Gmail
We access Gmail to monitor designated business email addresses for incoming messages that serve as triggers for automated workflows. For example, incoming sales inquiries may be read to extract contact information and opportunity details for CRM population. Incoming invoices may be read to trigger inventory or accounting workflows. Email content is processed during workflow execution and is not retained in Feral's systems beyond what is required to complete the workflow.
Google Drive
We access Google Drive to create, read, and store documents generated by workflow automations — such as payroll outputs, summary reports, and client-facing documents. Access is scoped to files created by Feral's platform unless broader access is explicitly required and authorized by the client.
Google Calendar
We access Google Calendar to read and create events used as triggers or outputs for time-based workflow automations — such as scheduling payroll runs or triggering reminders.
Google Sheets
We access Google Sheets to read structured data used as inputs to automation workflows — such as employee timesheet data ingested for payroll calculation.
All Google Workspace access is granted by the client via OAuth 2.0 and is governed by the scopes explicitly authorized during the consent flow. Feral's use of Google user data complies with the [Google API Services User Data Policy](https://developers.google.com/terms/api-services-user-data-policy), including the Limited Use requirements.
2b. QuickBooks Online
When a client authorizes Feral's platform to access their QuickBooks Online company, we may access the following data depending on the client's contracted workflows:
Employee and contractor records
Compensation and payroll data
Financial transactions and reports
Chart of accounts
Journal entry write access (for posting payroll results)
QuickBooks data is accessed solely to execute the specific workflow automations the client has contracted for. Data is not stored beyond what is necessary for workflow execution and audit logging.
2c. Information You Provide Directly
We may collect contact information (name, email, company) when you inquire about or engage Feral's services, and operational information (workflow configurations, approval preferences) provided during onboarding.
3. How We Use Information
We use the information we access solely to:
Execute the specific workflow automations contracted by each client
Generate outputs required by those workflows (documents, reports, payroll files, CRM records)
Maintain audit logs of workflow execution for client review and compliance
Diagnose and resolve errors in workflow execution
Communicate with clients about their automations and service status
We do not use client data for advertising, model training, benchmarking, or any purpose outside the client's contracted workflows.
4. How We Store and Protect Information
Credential storage: OAuth credentials (access tokens and refresh tokens) for Google and QuickBooks are stored exclusively in Nango, a dedicated OAuth infrastructure provider. Tokens are encrypted at rest and in transit. Feral staff do not have access to raw tokens.
Workflow data: Data processed during workflow execution is handled in isolated, per-client database schemas on Feral's infrastructure. Client data is never commingled across client environments.
Transmission: All data transmitted between Feral's systems and third-party APIs uses HTTPS/TLS encryption.
Retention: Workflow execution logs are retained for 90 days by default. Raw source data (email content, spreadsheet rows, QBO records) is not retained after workflow execution unless the workflow's output explicitly requires it (e.g., a stored payroll record). Clients may request deletion of their data at any time.
5. Data Sharing
Feral does not sell, rent, or share client data with third parties, except:
Sub-processors required to operate the platform — including Nango (OAuth credential management), Google Cloud Platform (infrastructure), and Langfuse (workflow observability and cost attribution). Each sub-processor is bound by confidentiality obligations and data processing agreements.
As required by law — if compelled by a valid legal process, we will notify the affected client to the extent permitted by law before disclosing.
A current list of sub-processors is available upon request at hello@feral.engineering.
6. Third-Party Authorizations and Revocation
All third-party account access (Google, QuickBooks) is authorized by the client via OAuth 2.0. You may revoke Feral's access to your accounts at any time:
Google: Visit [myaccount.google.com/permissions](https://myaccount.google.com/permissions)
QuickBooks: Visit your QuickBooks account settings → Authorized Apps
Revoking access will immediately terminate Feral's ability to execute workflows requiring that integration. Please also notify us at hello@feral.engineering so we can update your workflow configuration accordingly.
7. Your Rights
You have the right to:
Request a copy of the data Feral holds about you or your business
Request correction of inaccurate data
Request deletion of your data (subject to any legal retention requirements)
Revoke third-party authorizations at any time (see Section 6)
To exercise these rights, contact us at hello@feral.engineering. We will respond within 30 days.
8. Changes to This Policy
We may update this policy as our platform and integrations evolve. We will notify active clients of material changes by email and update the "Last updated" date at the top of this page. Continued use of Feral's services after notification constitutes acceptance of the updated policy.
9. Contact
Feral, Inc.
This Privacy Policy covers Feral's automation platform and services. It does not apply to third-party services or platforms that Feral connects to on your behalf — those services are governed by their own privacy policies.