Clear My Inbox

Privacy Policy

Last updated: March 1, 2026

1. Introduction

Clear My Inbox ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web application and services (collectively, the "Service"). By using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

2.1 Account Information

When you sign in with Google, we collect:

  • Your email address
  • Your name and profile picture (as provided by Google)
  • Google OAuth tokens (encrypted at rest) to access your Gmail account

2.2 Gmail Data

To provide the Service, we access the following Gmail data through the Gmail API:

  • Email metadata (sender, subject, date, size, labels)
  • Storage usage information
  • Email message IDs for deletion operations

We do not read, store, or process the body content of your emails. We only access metadata necessary to identify emails for cleanup.

2.3 Payment Information

Payments are processed by Stripe. We do not store your credit card number, CVV, or full payment details. We retain only:

  • Stripe customer ID
  • Payment status and transaction ID
  • Date and amount of payment

2.4 Usage Data

We may collect anonymous usage data including pages visited, features used, and performance metrics to improve the Service.

3. How We Use Your Information

We use the collected information to:

  • Analyze your Gmail storage usage and identify emails for cleanup
  • Delete emails based on rules you select and approve
  • Process your one-time payment of $9.99
  • Provide customer support
  • Send transactional emails (payment confirmation, cleanup reports)
  • Improve and maintain the Service

We will never use your Gmail data for advertising, marketing to third parties, or any purpose unrelated to providing the Service.

4. Gmail API Usage & Compliance

Our use of the Gmail API complies with the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only request the minimum Gmail permissions necessary to provide the Service
  • We do not transfer Gmail data to third parties except as needed to provide the Service
  • We do not use Gmail data for advertising or marketing purposes
  • We do not allow humans to read your email content
  • All Gmail data access is logged and auditable

5. Data Storage & Security

We take the security of your data seriously:

  • OAuth tokens are encrypted at rest using industry-standard encryption
  • All data is transmitted over HTTPS/TLS
  • We use secure, managed database services with regular backups
  • Access to production systems is restricted and logged
  • Background jobs (powered by Inngest) process your data in isolated, secure environments

6. Data Sharing

We do not sell your personal information. We may share limited data with:

  • Stripe -- for payment processing (subject to Stripe's Privacy Policy)
  • Google -- via the Gmail API to perform email operations on your behalf
  • Law enforcement -- if required by law, subpoena, or court order

7. Data Retention

We retain your data only as long as necessary to provide the Service:

  • Account data is retained while your account is active
  • OAuth tokens are deleted when you revoke access or delete your account
  • Payment records are retained for 7 years for tax and legal compliance
  • Usage logs are retained for up to 90 days

8. Your Rights

You have the right to:

  • Access -- Request a copy of the personal data we hold about you
  • Correction -- Request correction of inaccurate personal data
  • Deletion -- Request deletion of your account and all associated data
  • Portability -- Request your data in a machine-readable format
  • Revoke Access -- Revoke our Gmail access at any time through your Google Account settings
  • Withdraw Consent -- Withdraw consent for data processing at any time

To exercise any of these rights, contact us at hello@clear-my-inbox.com. We will respond to requests within 30 days.

9. GDPR Compliance

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Legal Basis: We process your data based on your consent (OAuth sign-in) and the necessity of performing the contract (providing the Service)
  • Data Protection Officer: For GDPR-related inquiries, contact hello@clear-my-inbox.com
  • Right to Lodge a Complaint: You have the right to lodge a complaint with your local data protection authority
  • International Transfers: Your data may be processed in the United States. We ensure appropriate safeguards are in place for international data transfers

10. Cookies

We use essential cookies to maintain your session and authentication state. We may use analytics cookies to understand how the Service is used. You can control cookie preferences in your browser settings.

11. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by email or through the Service. Your continued use of the Service after changes are posted constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy, please contact us at: