Privacy Policy

Last updated: December 15, 2024

1. Introduction

MaskMailer ("we," "our," or "us"), a product of IT Dukes, operates the email deliverability testing platform at maskmailer.io. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

• Email address and name when you create an account
• Authentication credentials (securely hashed)
• Profile information you choose to provide

Service Data

• Email addresses of mailboxes you connect for testing
• OAuth tokens for connected email accounts (encrypted at rest)
• Email deliverability test results and analytics
• Usage logs and platform interaction data

3. How We Use Your Information

• To provide and maintain our email deliverability testing service
• To send test emails to seed inboxes and measure placement results
• To authenticate your connected email accounts via OAuth
• To communicate with you about service updates and support
• To improve our platform and develop new features
• To detect and prevent fraudulent or unauthorized usage

4. Data Security

We implement industry-standard security measures to protect your data:

• All data is encrypted in transit using TLS/SSL
• OAuth tokens and sensitive credentials are encrypted at rest
• Access to production systems is restricted and monitored
• Regular security audits and vulnerability assessments

5. Third-Party Services

We integrate with the following third-party services:

• Google OAuth: For Gmail account authentication. We request access to read, compose, and send emails, as well as modify email labels, solely for the purpose of email deliverability testing.
• Microsoft OAuth: For Outlook account authentication
• OpenAI: For AI-generated email content (when you provide your API key)

These services have their own privacy policies governing how they handle your data.

6. Google API Services User Data Policy

MaskMailer's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• We only access Gmail data necessary to perform email deliverability testing
• We do not use Gmail data for serving advertisements
• We do not allow humans to read user emails except where required for security purposes, to comply with applicable law, or with user consent
• We do not transfer Gmail data to third parties except as necessary to provide the service

7. Data Retention

We retain your data for as long as your account is active or as needed to provide services. Test results and analytics are retained for 12 months. You may request deletion of your account and associated data at any time by contacting us.

8. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Disconnect linked email accounts at any time
• Export your test results and data
• Revoke OAuth access through your Google or Microsoft account settings

9. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

Email: privacy@itdukes.com

Website: https://maskmailer.io

MaskMailer is a product of IT Dukes.