Back to home

Privacy Policy

Last updated: February 19, 2026

1. Overview

Mailbox Taxi (“the Software”) is a desktop application developed by Mailbox Taxi (“Company,” “we,” “us”). We take your privacy seriously. This Privacy Policy explains what information the Software collects, how it is used, and your rights regarding that information.

2. Our Core Privacy Principle

Mailbox Taxi is designed with a local-first architecture. The Software runs entirely on your desktop computer. Your email credentials, email content, folder structures, attachments, and migration data are processed locally on your machine and are transmitted only between your device and the IMAP email servers you configure. We do not operate relay servers, proxy servers, or any cloud infrastructure that handles your email data.

3. Information We Do Not Collect

The Software does not collect, transmit, or store on our servers:

  • Email credentials (usernames, passwords, OAuth tokens)
  • Email message content, headers, or metadata
  • Email attachments or folder structures
  • IMAP server hostnames, ports, or connection details you configure
  • CSV batch import data or migration job details
  • Migration reports generated by the Software

4. Information We May Collect

In the course of operating our business, we may collect limited information in the following contexts:

a) Waitlist & Email Signup

When you join our waitlist or subscribe to updates via our website, we collect your email address. This is used solely to notify you about product launches, updates, and relevant announcements. You may unsubscribe at any time.

b) License Verification

After the early access period, the Software may periodically verify your license key with our licensing server. This process transmits only the license key and a machine identifier — no email data, credentials, or personal content is involved.

c) Crash Reports (Opt-in)

If you opt in to anonymous crash reporting, the Software may send diagnostic data (stack traces, system information, Software version) to help us improve stability. Crash reports never contain email content, credentials, or migration data. You can disable this in the Software's settings at any time.

d) Website Analytics

Our website may use privacy-respecting analytics to understand page visits and traffic sources. No personally identifiable information is collected through website analytics.

5. Data Stored on Your Device

The Software stores configuration and migration data locally on your device, including:

  • Email server connection settings (encrypted at rest)
  • Migration job history and status logs
  • Generated PDF and Excel reports
  • Application preferences and settings

This data remains on your device and under your control. You can delete it at any time by removing the Software's data directory or uninstalling the application.

6. How Your Data Is Protected

All connections between the Software and IMAP email servers use TLS/SSL encryption, the same standard used by your regular email client. Locally stored credentials are encrypted using your operating system's secure credential storage (Keychain on macOS, Credential Manager on Windows, libsecret on Linux).

7. Third-Party Services

The Software connects to third-party email servers (Gmail, Outlook, Yahoo, iCloud, etc.) that you configure. These connections are direct — between your machine and the provider's servers. We do not act as an intermediary. Your use of these providers is subject to their respective privacy policies and terms of service.

8. Data Retention

Email & migration data: Stored only on your local device. We retain no copies.

Waitlist emails: Retained until you unsubscribe or request deletion.

Crash reports: Retained for up to 90 days for debugging purposes, then automatically deleted.

9. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Withdraw consent for optional data collection (crash reports, analytics)
  • Object to processing of your data
  • Data portability

To exercise these rights, contact us at privacy@mailboxtaxi.com.

10. Children's Privacy

The Software is not directed at children under the age of 13. We do not knowingly collect personal information from children. If we learn that we have collected information from a child under 13, we will delete it promptly.

11. International Data Transfers

Because the Software processes data locally on your device, your email data does not cross international boundaries through our systems. Waitlist and crash report data may be stored on servers located in the United States.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date and may notify you through the Software or our website.

13. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, contact us at privacy@mailboxtaxi.com.