Privacy Policy

Who we are

Our website address is: https://mailfurnace.com.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Information Collection

We collect specific information from users to provide our services and improve the functionality of our application. The data we collect is categorized into two types: customer data and service-related data. Below is a detailed explanation of the data we collect and how it is handled:

1. Customer Data

If you become a customer of our service, we collect the following information to process your orders, provide billing services, customer service, and deliver the features of our application:

• Personal Information: This includes your name, email address, and contact details. We use this information to communicate with you regarding your account, services, and updates.
• Billing Information: We collect billing details such as your address and payment information to process subscriptions and purchases.
  • Credit Card Information: We do not store credit card details on our servers. All payment information is securely processed and stored in Stripe Vaults, a PCI-compliant payment gateway, to ensure the safety and security of your payment data. Our system only interacts with Stripe through secure APIs, ensuring no sensitive payment data resides on our platform.

2. Service-Related Data

To deliver the core functionality of our application, we collect the following data through the email IMAP and/or API and other tools integrated into our service:

• Email Metadata:
  We access metadata related to your emails, such as:
  • Email Headers for DNS verifications
  • Sender and recipient email addresses.
  • Subject lines.
  • Timestamps of sent and received messages.
    This data allows us to provide features like email tracking, performance reporting, and organizational tools.
• Email Content:
  In certain cases, we may process email content (such as subject lines or snippets) to offer advanced features like spam categorization, email classification, or other user-requested services. This data is only accessed with your explicit consent and is never stored unless necessary for temporary processing.
• Inbox Placement Analytics:
  We track and analyze where your emails land within recipient inboxes (e.g., primary inbox, promotions tab, or spam folder). This helps you optimize email campaigns and improve deliverability.
• Spam Ratings:
  We analyze spam scores and related factors to identify deliverability issues and recommend strategies to improve email outreach.

Data Handling and Security

• Temporary Data Processing:
  Any Gmail data accessed by our application is processed on a temporary basis unless explicitly required for ongoing analysis or services. Data that needs to be stored (e.g., for user reports) is securely encrypted and retained only as long as necessary to fulfill the service.
• Anonymized Data:
  For certain analytics or benchmarking purposes, we may anonymize and aggregate data to ensure that no personally identifiable information (PII) is included in the individual records along with data normalisation practises.

By collecting and using this data responsibly, we aim to deliver exceptional service while maintaining the trust and privacy of our users.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email. Subscribing to our email newsletter submits your subscriber data to our email providers Brevo and Klaviyo.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

Compliance with Google’s OAuth 2.0 Policies and API Services User Data Policy

Our application strictly adheres to Google’s OAuth 2.0 policies and the API Services User Data Policy to ensure the highest standards of data security and privacy for our users. Below is a detailed explanation of how we comply with these guidelines:

Restricted Scope Usage

We only request access to restricted scopes that are necessary for the core functionality of our application. Specifically:

• Access to Gmail data is limited to the essential operations required to deliver the features described in our app’s purpose.
• No additional permissions or scopes are requested beyond what is strictly necessary.

Data Use and Storage

• Data accessed through Gmail is used exclusively to provide the services promised by our application. For example, categorising email placements by the folder they are discovered in (i.e. Spam/Junk folder vs. Primary Inbox), and other email metadata.
• User data retrieved via Gmail API is not stored unless it is essential to the operation of the application. Any stored data is securely encrypted and deleted promptly once it is no longer required.
• Gmail data is not used for advertising, marketing, or any unrelated purposes, in compliance with Google’s policies.

No Unauthorized Sharing

• User data is not shared with third parties except as required to comply with legal obligations or with the user’s explicit consent.
• We ensure that any third-party service providers comply with Google’s policies and our own strict privacy standards.

Transparency with Users

• Users are fully informed about the specific Gmail data our application accesses and how it is used.
• We provide clear and accessible ways for users to revoke our app’s access at any time through their Google Account settings.

Regular Security Audits

• Our app undergoes regular security reviews to ensure continued compliance with Google’s policies and the protection of user data.
• We implement industry-standard security measures, such as encryption, secure data transfer protocols, and periodic vulnerability assessments.

Commitment to Google Policies

• We commit to maintaining compliance with Google’s User Data Policy and updating our privacy practices as required by any changes to Google’s guidelines.
• Our application is designed to pass all required Google security and policy reviews, and we take all necessary steps to remain compliant.

By adhering to these standards, we ensure that your Gmail data is handled responsibly, securely, and in line with the high expectations set forth by Google and our users.