MailBrief← Home

Last updated 15 May 2026

Privacy Policy

What we collect

  • Account info: your first name, last name, email address, password (hashed — bcrypt), timezone, and your brief schedule preferences.
  • Email content: the metadata and body text of messages in your connected inbox, fetched at the times you scheduled. We use this to generate your brief.
  • Billing info: Stripe processes your card on our behalf. We see only your Stripe customer/subscription IDs and the last 4 digits of your card.

How we use it

Only to run the service: generate your brief, send it to you, answer your support questions, and bill your subscription. We don't sell your data. We don't train AI models on your data.

Subprocessors

We use a small number of trusted third-party services to run MailBrief:

  • Aurinko (Cleveland, OH, USA) — secure OAuth connection to Gmail and Outlook; fetches email content on our behalf.
  • OpenRouter (USA) with the gpt-oss-120b model — generates the brief from your email content. We use OpenRouter's Zero Data Retention (ZDR) endpoints — content sent for inference is not stored by the model provider.
  • Resend (San Francisco, CA, USA) — delivers the brief email to your inbox.
  • Stripe (San Francisco, CA, USA) — processes subscription payments.
  • Supabase (USA) and Vercel (USA) — host our database and application servers.

How long we keep it

  • Generated briefs: the structured brief data is kept for 30 days for the in-app dashboard, then nulled. The row stays for analytics.
  • Email content: we don't store your raw email content. It's fetched at brief time, used to generate the brief, and discarded.
  • Account data: kept while your account is active. Deleted within 30 days of you deleting your account.

Security

Your Aurinko access tokens are encrypted at rest (AES-256-GCM) with a key that's separate from the database. All connections (browser to our servers, our servers to subprocessors) are over TLS.

Your rights

You can delete your account at any time from your dashboard — this disconnects your inbox and removes your data within 30 days. To request a copy of your data, or to ask us a privacy-related question, email hello@mailbrief.ai.

Marketing email

At signup, you can opt in to product updates from MailBrief. Transactional email (the brief itself, billing receipts, account notifications) is sent regardless. You can unsubscribe from product updates at any time using the link in those emails.

Children

MailBrief is not intended for users under 16.

Contact

Jonathan van der Griend (operator) · hello@mailbrief.ai