Your data. Your rules. Always.
Pepper is built on a simple principle: you're always in control. Every action is transparent. Every permission is explicit. Every decision is yours.
Core Principles
You Approve Everything
Every action requires your explicit approval — whether it's sending an email, scheduling a meeting, or following up on a commitment. At lower trust levels, Pepper only drafts — it never acts. Even at the highest autonomy, every auto-action includes a visible countdown timer so you can cancel with one tap.
Transparent Reasoning
Full transparency into every recommendation. Confidence scores, source references, and reasoning are always visible. You see exactly what Pepper sees, why it's making recommendations, and how confident it is in each suggestion.
You Control the Trust Level
Pepper's trust level is always in your hands. Promote when you're confident. Demote instantly if something feels off. One click returns Pepper to observe-only mode. Trust is earned, never assumed.
VIP Protection
Communications with your VIP contacts — investors, board members, key clients — always surface immediately and always require your personal review, regardless of Pepper's trust level. Pepper never auto-handles VIP communications.
The safety net you'll actually trust
Action
Send email to investor@example.com
Subject
Q3 metrics update
When Pepper is promoted to autonomous mode, every action gets a countdown timer. You can see exactly what's being done, who it affects, and when it will execute. One tap cancels.
The timer is visible on your Ambient Dashboard, in notifications, and in the app. Whether it's an email, a meeting reschedule, or a task update — you always have control.
How we handle your data
Google API Permissions
Pepper uses Google's official Gmail and Google Calendar APIs with the minimum required permissions. Read access lets Pepper classify emails and understand your schedule. Send access is only enabled at Assistant tier and above, with your explicit consent. Calendar modifications are gated behind your approval settings.
Encryption
All OAuth tokens are encrypted with AES-256 before storage. Data is encrypted in transit (TLS 1.3) and at rest. Your email content, calendar data, meeting notes, and relationship profiles are never used to train AI models.
Data Retention
Full briefing content is retained for 30 days. Metadata (dates, types, outcomes) is retained for 90 days. You can export all your data at any time as JSON, including emails, calendar events, tasks, and relationship data.
No Training on Your Data
Your emails, calendar data, meeting notes, tasks, and relationship profiles are never used to train AI models. Pepper uses Claude by Anthropic for AI processing, and your data is not retained by the AI provider.
SOC 2 Compliance
We're committed to enterprise-grade security. Infrastructure is hosted on Vercel and Railway with automated security monitoring.
Regulatory Compliance
Pepper is designed with GDPR and CCPA compliance in mind. You can exercise data subject rights at any time — access, export, or delete all personal data. We process data only as necessary to provide the service, never for advertising or secondary purposes.
Demote instantly, anytime
At any time, for any reason, you can demote Pepper back to Intern mode. Instantly, whenever you want. Pepper immediately stops all autonomous actions and returns to observe-only mode. Your data remains intact. Your preferences are preserved. And when you're ready to promote again, Pepper picks up right where it left off.
Frequently asked questions
Can Pepper read all my emails?
What happens if I delete my account?
Does Pepper work with Google Workspace?
Can my company's IT team audit Pepper's access?
Built for the communications you can't afford to get wrong
Your inbox, your calendar, your relationships. All protected.