Privacy Policy

Last updated: July 2026

What we collect

agentmail is designed to collect the minimum data needed to operate:

What we do NOT collect

Data retention

Screening logs (audit trails) are retained for the life of your account. If you delete your account, we purge your logs within 30 days, unless retention is legally required.

GDPR / CCPA

You can request export or deletion of your data at any time by contacting us via GitHub Issues. We comply with all data subject access requests within 30 days.

Security

All traffic is encrypted via HTTPS (HSTS enforced). API keys are transmitted via headers only, never in URLs. We do not store sensitive payment data (Stripe handles all billing).