Mailpipe logo
Mailpipe.dev

Privacy Policy

Last updated: December 2024

Introduction

Mailpipe ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

Please read this Privacy Policy carefully. If you do not agree with the terms of this Privacy Policy, please do not access the Service.

Information We Collect

Account Information

When you create an account, we collect:

  • Email address
  • Name
  • Password (stored securely hashed)
  • Payment information (processed by our payment provider, not stored by us)

Usage Data

We automatically collect certain information when you use our Service:

  • IP address
  • Browser type and version
  • Operating system
  • Pages visited and features used
  • Time and date of access
  • Error logs and performance metrics

Email Data

Important: Your email content is stored in your own Supabase database, not on our servers. We do not have access to read your emails. We only access metadata necessary for routing and processing (sender address, recipient address, subject line).

How We Use Your Information

We use your information to:

  • Provide, maintain, and improve the Service
  • Process payments and manage your subscription
  • Send important updates about the Service (security alerts, feature updates)
  • Respond to customer support requests
  • Monitor and analyze usage patterns to improve user experience
  • Detect and prevent fraud, abuse, or security incidents
  • Comply with legal obligations

How We Share Your Information

We do not sell your personal information. We may share your information with:

Service Providers

We work with third-party service providers who assist us in operating the Service:

  • Payment processors (Stripe) for billing
  • Analytics providers for usage insights
  • Cloud infrastructure providers for hosting

Legal Requirements

We may disclose your information if required by law, such as in response to a subpoena, court order, or government request.

Business Transfers

If Mailpipe is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

Data Security

We implement industry-standard security measures to protect your information:

  • TLS encryption for all data in transit
  • Encrypted storage for sensitive data at rest
  • Regular security audits and penetration testing
  • Access controls and authentication requirements
  • Employee security training

However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

Data Retention

We retain your account information for as long as your account is active or as needed to provide you the Service. If you delete your account, we will delete your personal information within 30 days, except where we are required to retain it for legal purposes.

Your email data stored in your Supabase database is not affected by account deletion and remains under your control.

Your Data Rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of the personal information we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information
  • Portability: Request a copy of your data in a portable format
  • Objection: Object to processing of your personal information
  • Restriction: Request restriction of processing in certain circumstances

Since your email data is stored in your own database, you have complete control over it. You can access, modify, or delete your data at any time through Supabase.

To exercise your rights regarding account data stored with us, please contact us at privacy@mailpipe.dev.

Third-Party Services

Our Service integrates with third-party services that have their own privacy policies:

  • Supabase: Your email data is stored in your Supabase database. Review Supabase's Privacy Policy.
  • Email Providers: Postmark, Mailgun, SendGrid, Resend, and AWS SES process emails on your behalf. Review their respective privacy policies.
  • Stripe: Processes payments. Review Stripe's Privacy Policy.

Cookies and Tracking

We use cookies and similar technologies to:

  • Essential cookies: Required for authentication and session management
  • Preference cookies: Remember your settings and preferences
  • Analytics cookies: Understand how users interact with our Service

We do not use cookies for advertising purposes or share cookie data with third parties for advertising.

You can control cookies through your browser settings. Note that disabling essential cookies may affect the functionality of the Service.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place for such transfers, including Standard Contractual Clauses where required.

Children's Privacy

Our Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it immediately.

California Privacy Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information we collect
  • Right to delete your personal information
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising your privacy rights

European Privacy Rights (GDPR)

If you are in the European Economic Area, you have additional rights under the General Data Protection Regulation:

  • Right to lodge a complaint with a supervisory authority
  • Right to withdraw consent at any time
  • Right to object to processing based on legitimate interests

Our legal basis for processing your personal data includes:

  • Contract performance (providing the Service)
  • Legitimate interests (improving the Service, fraud prevention)
  • Legal obligations (compliance with laws)
  • Consent (where specifically requested)

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending an email notification for significant changes

Your continued use of the Service after changes constitutes acceptance of the updated Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@mailpipe.dev

For data protection inquiries in the EU, you may also contact our Data Protection Officer at dpo@mailpipe.dev.