Privacy Policy

Last updated: February 8, 2026

🔒 Our Privacy Commitment

  • We never sell your data to advertisers or third parties
  • We never share your content except with AI services needed to generate podcasts
  • You own your content and can delete it anytime
  • Minimal data collection - only what's needed to provide service

1. Information We Collect

Account Information

  • Email address (authentication & notifications)
  • Display name (optional)
  • Password (encrypted via Firebase Auth)
  • OAuth tokens (if using Google sign-in)

Content You Send

  • Email content (subject, body, PDF attachments)
  • Sender email (for allowlist verification)
  • Timestamps and metadata

Payment Information

We store subscription status and credit balance. We do NOT store credit card details - all payment processing is handled by Stripe (PCI-DSS Level 1 certified).

2. How We Use Your Information

We use your data exclusively to:

  • Generate podcasts from your emails
  • Process payments and manage subscriptions
  • Send service notifications
  • Provide customer support
  • Improve our service

We do NOT:

  • ❌ Sell your data to third parties
  • ❌ Share your content for marketing
  • ❌ Use your content to train AI for others

3. Third-Party Services

We use these trusted services:

Google Cloud (Gemini AI, Cloud TTS, Firebase)

For AI generation, hosting, and authentication

Stripe

For secure payment processing

SendGrid

For email delivery and notifications

4. Your Privacy Rights

All Users

  • Access: View all your data in your account
  • Correction: Update your information anytime
  • Deletion: Delete your account from Settings (permanent within 1 hour)
  • Export: Download your podcasts before deletion

EU Users (GDPR)

  • Right to be forgotten
  • Data portability
  • Object to processing
  • Restrict processing

California Users (CCPA)

  • Know what data we collect
  • Request deletion of data
  • Opt-out of data sales (we don't sell data)
  • No discrimination for privacy choices

Exercise your rights via Settings or email privacy@podcastmail.io

5. Cookies & Tracking

Essential Cookies (Required)

  • Authentication session cookies (Firebase)
  • Security tokens (CSRF protection)

Optional Cookies

  • User preferences (theme, settings)

We do NOT use: Advertising cookies, third-party tracking pixels, or analytics cookies.

6. Data Security

  • All data transmitted over HTTPS/TLS encryption
  • Database and file storage encrypted at rest
  • OAuth 2.0 secure authentication
  • Regular security audits and updates

7. Data Retention

  • Active accounts: Data retained while active
  • Deleted accounts: All data permanently deleted within 1 hour
  • Podcasts: Deleted when you delete them
  • Billing records: Retained 7 years (legal requirement)

8. International Data Transfers

Data is stored in Google Cloud's US region (us-central1). By using our service, you consent to data processing in the United States. For EU users: Google Cloud complies with GDPR using Standard Contractual Clauses.

9. Children's Privacy

Not intended for users under 13. If a child has created an account, contact privacy@podcastmail.io.

10. Contact Us

Email: privacy@podcastmail.io

Response Time: Within 30 days (GDPR/CCPA compliant)

← Back to Home