Privacy Policy
Last updated: March 2026
1. Introduction
MailBox Pro ("the Application") is a desktop email client that uses the Google Gmail API to help users manage
their personal Gmail accounts. This Privacy Policy explains what data we access, how we use it, and how we
protect it.
By using the Application, you agree to the practices described in this policy.
2. Data We Access
The Application accesses your Gmail data through Google OAuth 2.0 authorization. The data accessed includes:
- Email message content (subject, body, snippets)
- Email metadata (sender, recipient, date, message ID)
- Email labels and read/unread status
The Application requests the https://mail.google.com/ scope, which allows reading, sending, and
deleting emails on your behalf.
3. How We Use Your Data
Your data is used exclusively for the following purposes:
- Displaying your emails within the Application's interface
- Storing emails in a local SQLite database on your device for offline viewing
- Sending emails when you explicitly compose and send a message
- Deleting emails when you explicitly request deletion
- Searching your locally stored emails by keyword
We do not use your data for any other purpose.
4. Google API Services User Data Policy
MailBox Pro's use and transfer to any other app of information received from Google APIs will
adhere to the Google API Services User Data Policy, including the Limited
Use requirements.
Specifically, the Application:
- Only uses Google user data to provide and improve user-facing features that are prominent in the
Application's user interface
- Does not use Google user data for serving advertisements
- Does not sell Google user data to third parties
- Does not use Google user data for purposes unrelated to the Application's core
functionality
- Does not allow humans to read Google user data, unless:
- The user has given explicit affirmative consent to view specific data
- It is necessary for security purposes (e.g., investigating abuse)
- It is required to comply with applicable law
5. Data Storage & Security
- Local-only storage: All email data is stored exclusively on your local device in a
SQLite database file
- OAuth tokens: Stored locally in the
data/tokens/ directory on your device
- No external servers: The Application does not upload, transmit, or sync your data to
any external server, cloud service, or remote database
- No telemetry: The Application does not collect analytics, usage data, crash reports, or
any form of telemetry
- Database protection: SQLite WAL mode and transaction protection to ensure data
integrity
6. Data Sharing
The Application does not share your data with any third party. All data processing occurs
entirely on your local device. No data is transmitted to external servers.
7. Data Retention & Deletion
- Locally cached emails remain on your device until you explicitly delete them
- You can delete all local emails for any account via the Application's right-click menu
- Deleting an account from the Application removes all associated tokens, browser data, and locally stored
emails
- You can revoke the Application's access at any time via Google Account
Permissions
8. Children's Privacy
The Application is not directed at children under the age of 13. We do not knowingly collect personal
information from children under 13. If you believe a child has used this Application, please contact us so
we can take appropriate action.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated
"Last updated" date. We encourage you to review this policy periodically.
If we make material changes to how we handle your data, we will update this policy and seek fresh user
consent where applicable.
10. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:
📧 Email: 3266663@gmail.com