"Strapi have a live demo available and ask for an email address for access to it. This is, as you'd expect, part of their sales funnel. It's done properly, with a checkbox to explicitly opt in to "occasional product and company updates by email". I gave Strapi a unique email address, one that was used for that one transaction with them and nothing else. They sent me a few emails about the demo, and then added me to their mailing list."
"A year and a day later, on October 1st, 2025 I start receiving more email to that unique email address. It's advertising a company called unstructured.io who seem to be selling an "AI based data extract, transform and load" product, but their website is reminiscent of Geocities in its heyday so I didn't dig too deep into exactly what they do."
"I do a few quick checks to make sure that unstructured.io don't have legitimate access to my information. If Strapi had rebranded to unstructured.io, or been bought by them, or even partnered with them then their use of my email address still might not be entirely legitimate, but it wouldn't be anything worth chasing down. Nothing."
A unique email address was provided to Strapi to access a live demo, with an explicit opt-in checkbox for occasional product and company updates. That address received demo messages and was added to Strapi's mailing list, with the last contact in mid‑October 2024. On October 1, 2025 the same address received promotional email from unstructured.io advertising an "AI based data extract, transform and load" product. No legitimate relationship between Strapi and unstructured.io was found. The unsolicited messages suggest a possible compromise or unauthorized transfer of Strapi customer contact data. A copy of the spam was sent to privacy@strapi.io.
Read at Wordtothewise
Unable to calculate read time
Collection
[
|
...
]