Anti-Spam Policy

PolicifyAI is committed to responsible email communication. We comply with the following anti-spam regulations and standards:

• UK PECR (Privacy and Electronic Communications Regulations 2003)
• EU ePrivacy Directive (Directive 2002/58/EC)
• CAN-SPAM Act (United States)
• CASL (Canada's Anti-Spam Legislation)

We do not send unsolicited commercial email. Every marketing or promotional email we send includes a clear unsubscribe mechanism, our physical address, and an accurate subject line.

PolicifyAI sends two categories of email:

• (a) Transactional emails — including payment receipts, subscription confirmations, password reset links, account security alerts, and policy share notifications. These are sent as part of your contractual relationship with PolicifyAI and do not require a separate opt-in under applicable law. They cannot be fully disabled as they are necessary for account security and service delivery.
• (b) Product update emails — including feature announcements, changelog updates, and service improvement notices. These are sent only to users who have opted in, or where we have a legitimate interest under applicable soft opt-in rules (i.e., where you are an existing customer and the email relates to similar products or services).

We never send cold outreach to purchased or rented mailing lists. All contacts in our email system have a direct relationship with PolicifyAI.

Every marketing or product update email we send includes a one-click unsubscribe link in the footer. Clicking this link immediately removes you from our marketing list. We process all unsubscribe requests within 10 business days, though most are processed instantly.

You can also manage your email preferences at any time from your account dashboard under Settings → Notifications.

Please note: Transactional emails (such as receipts, password resets, and security alerts) cannot be unsubscribed from, as they are necessary for the security and management of your account.

You may not use PolicifyAI or any policy document generated through it to facilitate spam or deceptive email practices. Specifically, you may not:

• Generate privacy policies that misrepresent how you collect, use, or share email addresses.
• Use PolicifyAI-generated documents to legitimise or appear to legitimise the sending of unsolicited commercial email.
• Collect email addresses through deceptive means, including fake forms, harvesting, or disguised opt-in checkboxes.
• Operate spam, phishing, or email fraud operations of any kind.
• Use PolicifyAI to generate policies for businesses or operations that engage in prohibited email practices.

Violations of these prohibitions will result in immediate account suspension and may be reported to relevant authorities. PolicifyAI reserves the right to terminate any account used in connection with spam operations without notice or refund.

If you receive an email that appears to come from a PolicifyAI domain and you believe it to be spam, please forward it to [email protected].

We investigate all spam reports within 3 business days. If you are experiencing abuse from a third party using a PolicifyAI-generated policy document to deceive end users, please include as much detail as possible (the domain in question, a copy of the document, the email you received) to help our investigation.

We use Resend (resend.com) for all transactional and product email delivery. Resend maintains its own anti-spam compliance policies and infrastructure, including DKIM, SPF, and DMARC authentication for all outgoing email.

Resend is listed as a sub-processor in our sub-processors list.

For questions about this policy or to report email abuse: [email protected]

To report suspected spam from our domains: [email protected]

For privacy and data subject requests: [email protected]