Privacy Policy
Last updated: June 30, 2026
1. Information We Collect
We collect minimal data to provide the service:
- Email addresses: The randomly generated or custom usernames you create
- Password hashes: Bcrypt-hashed versions of your account passwords
- Incoming emails: Messages stored for a maximum of 2 hours
- Attachments: Files attached to incoming emails, deleted after 2 hours
- IP addresses: Temporarily logged for rate limiting, rotated within 24 hours
2. What We Do Not Collect
- Personal identification (name, phone, address)
- Browsing history or cross-site tracking
- Device fingerprints or location data
- Payment information (service is free)
3. How We Use Your Data
- Receiving and storing incoming emails temporarily
- Authenticating access via password verification
- Rate limiting to prevent abuse
- Aggregate diagnostics for service improvement
4. Data Storage and Security
Emails stored on servers in the United States. Passwords hashed with bcrypt (cost factor 10). All content auto-purged after 2 hours. TLS encryption in transit.
5. Data Retention
- Messages and attachments: Auto-deleted after 2 hours
- Account credentials: Retained until deletion requested
- IP logs: Rotated within 24 hours
6. Data Sharing
We do not sell, rent, or share your data. Disclosure only if required by law or to protect service safety.
7. Cookies
Minimal necessary cookies only: unlock cookie (24h expiry), localStorage for session persistence. No tracking or third-party cookies.
8. Third-Party Services
No analytics, advertising, or tracking services integrated. Self-hosted, no external scripts.
9. Children's Privacy
Not intended for users under 13. We do not knowingly collect children's data.
10. Your Rights
You may request access, correction, or deletion of your data at any time.
11. Changes
Updates posted here with last updated date. Significant changes noted on homepage.
12. Contact
Privacy inquiries: [email protected].