When you upload a list of email addresses to SparkToro, the file is processed entirely in memory for real-time matching. We compare the emails in your list to publicly available profiles from our data partners so we can build an aggregated audience and generate the insights you see in your final report. At no point is your file written to disk, cached, or stored in any database. The email list is automatically and permanently discarded the moment processing completes.

What does SparkToro actually store?

The only information retained is the aggregated, anonymized audience insight—for example, “this audience frequently visits these websites or listens to these podcasts.”
We never store:

• Email addresses
• Any personally identifiable information
• Any raw or intermediate data derived from your uploaded file

How is the upload secured?

All uploads and API requests are protected using TLS 1.2+ encryption during transit. Access to the in-memory processing environment is tightly restricted and monitored. Only the automated matching system has access to the uploaded file, and the file is not accessible to other internal services or personnel.

What about compliance and data privacy regulations?

SparkToro does not act as a data processor for your users and does not store PII, which significantly reduces compliance risk. Our system design aligns with the intent of GDPR, CCPA, and similar regulations by:

• Avoiding PII storage
• Processing only what is required for the requested report
• Keeping all processing transient and isolated
  Because the uploaded emails are used only for real-time matching and immediately deleted, a Data Processing Agreement (DPA) is generally not applicable.

Do you sell, share, or reuse uploaded data?

No. Uploaded files are never reused for model training, enrichment, marketing, or any other purpose. They are used solely to generate your audience report and then destroyed.