Privacy Policy

Last updated: December 2025

Overview

NitroInbox is built with privacy as a core principle. We believe your email is your business, and we've designed our application to keep it that way. This policy explains how we handle your information.

Email Privacy - Local Processing

Your emails stay on your device. NitroInbox processes all email data locally:

  • Local AI: All AI categorization, summarization, and analysis runs on your device using local models. Your email content is never sent to external AI services.
  • Direct Connection: NitroInbox connects directly to Gmail and Microsoft 365 servers. Your emails flow from the email provider to your device - we never see or store your email content.
  • Local Storage: Email cache, settings, and AI models are stored locally on your device.
  • No Cloud Sync: We do not sync your email data to any cloud servers.

Email Service Authentication

When you connect Gmail or Microsoft 365 accounts:

  • OAuth 2.0: We use industry-standard OAuth authentication. You authenticate directly with Google or Microsoft - we never see your password.
  • Access Tokens: OAuth tokens are stored locally on your device, encrypted at rest.
  • Minimal Permissions: We request only the permissions necessary to read and send email on your behalf.
  • Revocable Access: You can revoke NitroInbox's access at any time through your Google or Microsoft account settings.

Desktop Application

The NitroInbox desktop app is designed for privacy:

  • No Telemetry: We do not collect usage analytics, crash reports, or telemetry data.
  • No Tracking: We do not track which emails you read, how you categorize them, or any usage patterns.
  • Offline Capable: Core features work offline. Internet is only needed to sync with email providers.

Website and Optional Account

If you create an optional NitroInbox account or use our website:

  • Account Data: Email address and name (if provided) for account management.
  • Preferences: Optional preference sync if you choose to enable it.
  • Website Analytics: Privacy-focused, aggregated analytics on our website (no personal tracking).

What We Do NOT Collect

  • Email content, attachments, or metadata
  • Contact lists or address books
  • Email passwords or credentials
  • Usage patterns or behavioral data
  • Device identifiers or fingerprints
  • Location data

Data Security

We implement appropriate security measures:

  • OAuth tokens encrypted at rest on your device
  • HTTPS for all network communications
  • No sensitive data transmitted to our servers
  • Regular security updates for the application

Third-Party Services

NitroInbox integrates with:

  • Gmail (Google): Subject to Google's Privacy Policy when you connect your Gmail account.
  • Microsoft 365: Subject to Microsoft's Privacy Statement when you connect your Outlook account.

We encourage you to review the privacy policies of these services.

Your Rights

You have the right to:

  • Disconnect your email accounts at any time
  • Delete all local data by uninstalling the application
  • Request deletion of any account data we hold
  • Revoke OAuth access through your email provider

Children's Privacy

NitroInbox is not directed to children under 13. We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes by posting the new policy on this page with an updated date.

Contact

For questions about this Privacy Policy, please contact us at hello@nitroinbox.com

Terms of Service · Documentation · Home