Privacy Policy

What Mailstrom accesses

Mailstrom connects to your Gmail account through Google OAuth 2.0. It requests read-only access to your email message headers (sender, subject, date) and the ability to move messages to trash when you choose to delete them.

Mailstrom never sees your Google password. OAuth gives the app a revocable token — you stay in control.

Your data stays on your Mac

All email data is processed and stored locally on your device in a SQLite database. Nothing is sent to any external server. There is no backend, no cloud sync, no remote database. Your email never leaves your machine.

No analytics, no tracking

Mailstrom does not include any analytics, telemetry, or tracking of any kind. No usage data is collected. No cookies are set. No third-party scripts are loaded by the app.

Revoking access

You can revoke Mailstrom's access to your Gmail account at any time through your Google account permissions page.

Once revoked, Mailstrom can no longer access your email. The local database on your Mac remains until you delete the app.

Open source

Mailstrom is fully open-source. You can review the entire codebase on GitHub to verify these claims for yourself.