Layne

Privacy

Your data, in plain English.

Last updated: May 23, 2026

What we read

Layne reads emails from a short list of casting-platform senders and your talent agencies. That’s it. Here’s the full list:

  • Casting NetworksAudition alerts, submissions, callbacks
  • Actors AccessBreakdowns and submission confirmations
  • Casting FrontierAudition notifications
  • Casting.comSubmission alerts
  • Your agencyForwarded breakdowns and avail requests from your reps

From those emails we extract the project name, casting director, role, rate, deadline, and body text. The original email stays in your inbox — we never move, delete, or modify it.

What we never see

Layne has no access to anything outside the casting senders listed above. Google’s API lets us request only what we need, and we request the minimum.

  • Personal emails — family, friends, newsletters, shopping
  • Contacts or address book
  • Calendar events
  • Passwords, payment info, or financial data
  • Drafts, sent mail, or trash
  • Google Drive, Photos, or any other Google service

How it works

When a casting email lands in your inbox, Google notifies Layne in real time. Here’s what happens next:

Email arrives
CN, AA, CF, or
your agency
AI parses
Project, role,
rate, deadline
Dashboard
Queue, scoring,
briefings

Similar to how Calendly reads only your calendar availability — not your event details, contacts, or files — Layne reads only casting notifications, not your personal mail.

Your controls

1
Disconnect Gmail anytime. Open Settings, click Disconnect. Layne immediately revokes its token and stops reading your email. Your existing audition data stays unless you ask us to delete it.
2
Delete everything. Email ccmacmini@gmail.com and we’ll purge your account, auditions, and credentials within seven days. Nothing is kept.
3
Revoke from Google directly. Visit myaccount.google.com/permissions to remove Layne’s access from Google’s side at any time, independent of Layne.

Security

Everything in transit is encrypted with TLS. Your data at rest lives in a Postgres database with row-level security — you can only see your own rows, even if someone got into the database directly. Sensitive credentials (Gmail tokens, casting-platform passwords) are encrypted with AES-256-GCM before storage. We don’t store your Google password — only an OAuth token that you can revoke at any time.

What we don’t do

  • We never sell your data.
  • We never use it for advertising.
  • We never train AI models on your emails or audition history.
  • We never share it with third parties except the infrastructure providers that run Layne (Supabase, Vercel, Railway, Anthropic).

Our use of Google API data adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Questions?

Anything at all — privacy questions, deletion requests, or feedback: ccmacmini@gmail.com.