Introduction

OpenInbox ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our temporary email service.

By using OpenInbox, you agree to the collection and use of information in accordance with this policy. We designed our service with privacy as a core principle — we collect the minimum data necessary to provide our service.

Information We Collect

For Anonymous Users (No Account)

• Temporary email address (randomly generated)
• Email content received in your inbox (automatically deleted)
• IP address (for security and rate limiting only)
• Basic usage analytics (aggregated, non-personal)

For Registered Users

• Email address (for account access)
• Password (encrypted with bcrypt)
• Display name (optional)
• Subscription and billing information
• API usage data
• Session information

What We Do NOT Collect

• We do not read or analyze your email content
• We do not sell your data to third parties
• We do not use tracking pixels or invasive cookies
• We do not share data with advertisers

Data Retention

Our service is designed to be ephemeral. Data retention varies based on your plan:

After expiration, emails and associated data are permanently deleted and cannot be recovered.

Security Measures

We implement industry-standard security measures:

• Encryption: All data is encrypted in transit using TLS 1.3
• Password Security: Passwords are hashed using bcrypt with salt
• Two-Factor Authentication: Available for all registered users
• Rate Limiting: Protection against brute-force attacks
• Regular Audits: Security assessments and penetration testing
• Minimal Data: We only store what's absolutely necessary

Third-Party Services

We use the following third-party services:

• Cloudflare: Email routing, DDoS protection, and CDN
• Lemon Squeezy: Payment processing (for premium subscriptions)
• Vercel/Railway: Application hosting
• Advertising Partners: Display ads on free tier (see Cookies & Advertising section below)

Each service has its own privacy policy and handles data according to their terms.

Cookies & Advertising

What Are Cookies?

Cookies are small text files stored on your device when you visit websites. They help websites remember your preferences and understand how you use the site.

Cookies We Use

• Essential Cookies: Required for basic site functionality, such as maintaining your session and remembering your theme preference.
• Analytics Cookies: Help us understand how visitors interact with our website to improve user experience (aggregated, non-personal data).
• Advertising Cookies: Used by our advertising partners to show relevant ads (free tier only).

Third-Party Advertising

We display advertisements on our free tier through third-party advertising networks. These partners may use cookies to serve ads based on your prior visits to this website or other websites on the internet.

Premium subscribers do not see advertisements and are not subject to advertising cookies from our service.

Managing Cookies

You can control cookies through your browser settings. Most browsers allow you to:

• View what cookies are stored and delete them individually
• Block third-party cookies
• Block cookies from specific sites
• Block all cookies
• Delete all cookies when you close your browser

Note: Blocking essential cookies may affect site functionality.

Your Rights

You have the following rights regarding your data:

• Access: Request a copy of your data
• Correction: Update or correct your information
• Deletion: Request deletion of your account and data
• Export: Download your data in a portable format
• Objection: Object to certain data processing

To exercise these rights, contact us at [email protected].

GDPR & CCPA Compliance

We comply with the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). If you are a resident of the European Union or California, you have additional rights under these regulations.

We do not sell personal information as defined under CCPA.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

We encourage you to review this Privacy Policy periodically for any changes.