At MailerLite, we are excited about the potential of Artificial Intelligence (“AI”) to help you create more effective and engaging email marketing campaigns and landing pages. Our goal is to harness the power of AI responsibly, using it to build innovative tools that enhance our services while upholding our steadfast commitment to your privacy and data security.
This policy explains how we use AI, the principles that guide us, our governance framework, and the safeguards we have in place to protect your information.
Our use of AI is governed by a simple set of principles:
Purposeful Innovation: We use AI with a clear purpose to provide you with valuable, cutting-edge features that improve your workflow, campaign and landing page performance. We don't use AI for the sake of it, but to solve real challenges for our customers.
Transparency: We believe you should always know when you are interacting with an AI-powered feature. We are committed to being transparent about how our AI tools work, what data they use, and what your responsibilities are.
Privacy and Security First: Protecting your data is our highest priority. We implement robust technical and contractual safeguards to ensure that any data processed by our AI features is handled securely and in line with data protection laws.
Human Oversight: AI is a powerful assistant, not a replacement for human judgment. Our AI tools are designed to augment your creativity and decision-making, not to replace it. For our essential internal systems, we ensure meaningful human oversight is in place.
Accountability: We carefully select our AI partners and ensure they meet our high standards for security and data privacy. We have processes in place to choose and select only reliable vendors and hold them accountable for their systems' performance and impact.
Risk-Based Compliance: We are committed to a responsible, risk-based approach to AI. We analyze and classify our AI features in line with global legal frameworks, including the EU AI Act's (Regulation (EU) 2024/1689) risk categories (e.g., High-Risk, Limited-Risk, Minimal-Risk), to ensure appropriate safeguards and governance are applied where they matter most.
MailerLite integrates AI technology from our trusted partners, OpenAI (ChatGPT and Dall-E) and Google (Gemini and Vertex AI), to offer several optional features.
Features like our AI Writing Assistant & Subject Line Generator help you (using the GPT model) overcome writer's block and craft compelling content.
How it works: When you use these tools, the content you choose to input (e.g., your draft text, keywords, or a description of your campaign) is sent to our AI partners to generate suggestions for you.
Data Safeguard: This process happens through secure, enterprise-level APIs. We are committed to processing only the data necessary for the task, in line with the GDPR principle of Data Minimization.
This feature uses AI to assist in the initial generation or design of your landing pages (using the GPT model), allowing you to quickly move from an idea to a functional draft.
How it works: When utilizing this tool, the descriptive input you provide (e.g., business type, desired layout, key elements) is securely transmitted to our AI partner, OpenAI, to generate an initial structure or content suggestions.
Data Safeguard: This interaction uses secure APIs. The information you input is used exclusively to provide the service you requested and is not retained or used to train the provider's AI models, as contractually enforced by our agreements.
This tool helps you generate unique images based on text prompts (using the Dall-E 3 model) to enrich your campaigns and landing pages.
How it works: Your text prompt describing the desired image is securely sent to our AI partner, OpenAI, which generates the image suggestions.
Data Safeguard: This process uses secure APIs. The prompt data is used solely to provide the service and is not retained or used to train the provider's AI models, in line with our core promise on data protection.
We offer advanced AI Agents that use the Model Context Protocol (MCP), a standardized framework, to perform complex actions within your account. MCP securely transmits necessary context and data to third-party AI Agent providers as authorized by you.
How it works: When you direct an AI action requiring live context, the MCP securely gathers the necessary account data (including Subscribers’ Personal Data) and transmits it to the third-party AI Agent provider. The Agent uses this context to determine a specific, executable action (e.g., a function call or a tool request) which is then carried out against your account by our secure internal server.
Data Safeguard: MailerLite ensures the data is strictly minimized for the task and secured with encryption (TLS) during the transfer to the Agent provider. However, the Agent provider’s own terms and privacy policy govern the data handling, retention, and security once the data is received by them. You remain responsible for reviewing these third-party terms and for ensuring your overall compliance related to international data transfers and the Agent’s subsequent actions.
To ensure a secure and unified internal environment for AI-assisted tasks, MailerLite utilizes LibreChat, an open-source AI platform, as our primary internal interface for interacting with Large Language Models (LLMs).
How it works: Authorized staff members interact with AI through the LibreChat interface. When a prompt is submitted, LibreChat packages the input and relevant context into a request. This request is first sent to LiteLLM (https://www.litellm.ai/), our self-hosted AI gateway. LiteLLM acts as a secure proxy that standardizes the request, manages API keys, and enforces internal policies such as rate limiting and usage monitoring. LiteLLM then securely transmits the payload to an external provider (Google Vertex AI) for computation (inference). Once processed, the output returns through LiteLLM to the LibreChat interface for the user.
Data Safeguard: MailerLite maintains full control over the interaction "hub" by self-hosting both LibreChat and LiteLLM on our secure internal infrastructure. This setup ensures that no data or telemetry is stored on third-party proxy servers. We utilize enterprise-grade API connections via LiteLLM with "zero data retention" and "opt-out of training" configurations enforced at the gateway level. This ensures that internal prompts are processed solely for immediate response generation and are never used by external providers to train their models.
We use AI (the GPT model) to assist in automated review processes to ensure all accounts, uploaded images and campaigns align with our policies.
How it works: Your campaign content and account information may be processed to help us identify potential policy issues quickly and efficiently.
Risk Assessment: We have assessed these internal systems against Annex III of the EU AI Act and concluded they do not meet the definition of "high-risk" AI (such as biometric identification or credit scoring). However, we uphold a high standard of care and ensure meaningful human oversight.
Data Safeguard: This process does not involve sharing your subscribers' personal data. The content is processed via secure APIs, and under our agreements, this information is not used to train the providers' models.
We use AI (OpenAI GPT variant) to analyze and categorize "bounce reasons" – the technical error messages received from mailbox providers when an email cannot be delivered. This internal technical aid assists our deliverability and support teams in identifying and resolving complex delivery failures more efficiently.
How it works: When our system encounters a new or complex delivery failure message, the message is processed through an AI tool. The AI analyzes the technical language to determine the specific cause of the bounce (e.g., a temporary server issue or a specific security filter). Our deliverability experts then use this categorized insight to apply technical fixes or optimize our sending infrastructure to improve your overall delivery rates.
Data Safeguard: MailerLite implements automated filters to redact personal identifiers, such as email addresses or names, before the bounce message is analyzed by the AI. This ensures that we process only the technical metadata required to solve the delivery issue.
This is our core promise to you: Any data you process using MailerLite's AI features will not be used to train the AI models of our partners, OpenAI and Google.
We have established specific business contracts with these providers that contractually and technically enforce this. Your data is used exclusively to provide the service you requested and is not retained or used for any other purpose by our partners.
By using our AI features, you agree that the data you choose to input, which may contain personal information, is sent to OpenAI's API and / or Google’s API for processing. MailerLite is not responsible for the data handling practices or policies of OpenAI, Google or any third-party services used by OpenAI or Google, however, MailerLite has concluded enterprise agreements which ensure that transferred data will not be further used to train OpenAI’s and Google’s respective models. You can find more information in our Privacy Policy, in OpenAI's Business Terms, Privacy Policy, API Data Usage Policy, and Google’s Privacy Resource Center, Generative AI and Data Governance page.
At MailerLite, we use AI in two distinct ways: for optional creative tools that you choose to use, and for essential operational processes required to maintain the security and integrity of our platform.
Optional Creative Tools: Features like our AI Writing Assistant, AI Subject Line Generator, AI Landing Page Builder, AI Image Generator, MCP are entirely at your discretion. You have full control over whether to use them and what information you input.
Essential Service Functions: To ensure a safe and reliable platform and to protect all our customers, we use AI for certain necessary functions. This includes the automated screening of new accounts and the review of campaign and image content. These processes are integral to our service and are not optional.
MailerLite maintains a comprehensive internal Acceptable Use of Generative AI Tools Policy that governs how our team interacts with these technologies. All authorized personnel working with AI tools are required to adhere to this policy to ensure that every AI-driven initiative is developed and deployed responsibly and in full compliance with our security and data protection standards. This framework mandates strict data minimization practices, prohibits the use of sensitive information for model training, and requires continuous human oversight of AI-generated outputs.
We are committed to transparency, and we ask you to do the same. When you use our content creation tools to generate text that you publish, you may have legal obligations. For example, Article 50 of the EU AI Act requires that AI-generated text published "with the purpose of informing the public on matters of public interest" must be disclosed as being AI-generated (unless it has undergone a process of meaningful human review). We advise you to familiarize yourself with these requirements to ensure your own compliance.
Regardless of whether an AI process is optional or a required part of our service, our commitment to your data protection remains absolute. All processing is performed under the strict safeguards detailed in this policy.
The world of AI is moving fast, and we are continuously exploring new ways it can benefit our customers. As we evolve, we promise to uphold the principles outlined in this policy. We will be thoughtful and deliberate in introducing new AI features, always prioritizing your trust and data security. We will keep this policy updated to reflect our current practices. All changes are effective immediately upon posting and we suggest that you check this policy periodically.