Privacy Policy
InboxPilot stores only the data needed to run the account: account details, mailbox connection metadata, encrypted mailbox credentials, approved rules, billing status, and audit events.
InboxPilot does not persist raw emails, email bodies, attachments, or full message source on our server. Read-only scans classify mailbox metadata transiently and persist only aggregate scan counts plus non-content classifications such as intent, priority, project, and safety reasons.
Email subjects and sender details from scans are shown only in the active browser session immediately after a scan so the user can review suggestions. They are not stored in the server database. If a user explicitly approves a cleanup rule, InboxPilot stores the minimum rule match needed to execute it, such as the sender address and intent.
Mailbox passwords or app passwords are encrypted at rest and are never returned to the browser. Users can export or delete their account data from Settings.