Privacy Policy

Last Updated: January 27, 2026

NextEmail.ai ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered email intelligence service.

Our Privacy Commitment

Your emails are processed locally on our secure infrastructure. Unlike cloud AI services, your email content is never sent to third-party AI providers like OpenAI, Google AI, or Microsoft Copilot. All AI processing happens on our private servers, ensuring your sensitive communications remain confidential.

1. Information We Collect

1.1 Account Information

When you create an account, we collect:

Email address (used as your account identifier)
Name (optional)
Password (stored using industry-standard encryption)
Billing information (if you subscribe to a paid plan)

1.2 Email Data

When you connect your email accounts (Gmail, Microsoft 365), we access:

Email messages (subject, sender, recipients, body content, timestamps)
Email metadata (folders, labels, read/unread status)
Attachment names and types (attachment content is not stored)

1.3 OAuth Tokens

We store encrypted OAuth tokens to maintain your email connections. These tokens are:

Encrypted using AES-256 encryption at rest
Never shared with third parties
Revocable by you at any time through your email provider's settings

2. How We Use Your Information

2.1 Email Processing

We use your email data to:

AI Classification: Automatically organize emails by sender, topic, and priority
Security Scanning: Detect phishing attempts, spam, and suspicious content
Smart Search: Enable natural language search across your email archive
Folder Management: Create organized folder structures based on AI analysis

2.2 Service Improvement

We may use aggregated, anonymized data to:

Improve our AI classification accuracy
Enhance spam and phishing detection
Develop new features

We never use your individual email content to train AI models or share it with third parties.

3. Data Storage and Security

3.1 Where Your Data is Stored

All data is stored on secure servers located in the United States
Each user's email data is isolated in separate encrypted databases
Backups are encrypted and stored in geographically separate locations

3.2 Security Measures

We implement comprehensive security measures including:

TLS 1.3 encryption for all data in transit
AES-256 encryption for data at rest
Multi-tenant data isolation
Regular security audits and penetration testing
24/7 infrastructure monitoring
Strict access controls and audit logging

4. Data Sharing and Disclosure

We do not sell, rent, or share your personal information or email content with third parties except in the following limited circumstances:

Service Providers: We may share limited data with service providers who assist in operating our service (e.g., payment processors), under strict confidentiality agreements
Legal Requirements: We may disclose information if required by law, court order, or government request
Business Transfers: In the event of a merger or acquisition, your data may be transferred as part of business assets

5. Your Rights and Choices

5.1 Access and Portability

You can:

Access your account data at any time through the Settings page
Request a copy of your data in a portable format
View which email accounts are connected and their sync status

5.2 Deletion

You can:

Disconnect email accounts (preserves your data but stops syncing)
Delete email accounts (permanently removes all associated data)
Delete your entire account (removes all data within 30 days)

5.3 Revoke Access

You can revoke our access to your email accounts at any time:

Gmail: Visit Google Account Permissions
Microsoft 365: Visit Microsoft Privacy Dashboard

6. Gmail and Google API Services

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

We only request the minimum scopes necessary to provide our service
We do not use Gmail data for advertising purposes
We do not allow humans to read your emails unless required for security purposes, you provide consent, or we are required by law
We do not share Gmail data with third parties except as described in this policy

7. Children's Privacy

NextEmail.ai is not intended for use by children under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn we have collected such information, we will delete it promptly.

8. International Users

If you are accessing our service from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States. By using our service, you consent to this transfer.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the new policy on this page with an updated "Last Updated" date
Sending you an email notification (for significant changes)

10. Contact Us

Questions or Concerns?

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@nextemail.ai
Website: https://nextemail.ai