At Polymail, we’re committed to protecting your privacy and storing only what’s essential to deliver a seamless experience.

Your Email Data Belongs to You

Your email content is entirely your own. Polymail does not access, read, or share your messages. To support core features such as Send Later, Read Later, and push notifications, we maintain a minimal index and cache your email content for up to 14 days after your last use of Polymail.

Drafts and Attachments

Drafts are stored temporarily on our servers to support offline draft access, efficient syncing across devices, and Send Later functionality. Drafts are automatically deleted once they are successfully sent.

Attachments you receive are routed through our servers for delivery, but we do not store them permanently.

Contacts

We sync your contacts to provide features like auto-completion and enriched contact details. This helps streamline your email experience without compromising your data ownership.

Secure Authentication

Whenever possible, we use authentication tokens (such as OAuth for Gmail, Google Workspace, Outlook.com) to access your email accounts. For email services that require password-based access (such as iCloud or generic IMAP), your credentials are stored using 256-bit AES encryption - industry-standard encryption used by banks.

Account Deletion

If you choose to delete your Polymail account, all associated data is permanently removed from our servers. Once deleted, this data cannot be recovered.