Privacy Policy

Last updated · May 21, 2026

TL;DR

Mail Digest is a desktop application that runs on your computer. We do not operate a server that stores your emails, your AI prompts, your API keys, or any analytics about you. The application talks directly to the providers you configure (Google for Gmail, optionally Anthropic, OpenAI, Google AI Studio, or your local Ollama server). The default AI model runs locally on your machine via WebGPU and does not contact any third party after the initial model download.

1. Who is responsible

Mail Digest is an open-source software project distributed under the MIT license. The maintainers publish the source code on GitHub. There is no commercial company collecting your data behind the scenes. Where this policy uses "we" it refers to the open-source maintainers.

2. The data the application accesses

When you connect your Gmail account, Mail Digest requests two OAuth scopes from Google:

gmail.readonly — to read messages from your inbox.
userinfo.email — to associate the OAuth token with your account.

The application reads only messages from the last 24 hours of your inbox, excludes categories such as Promotions, Social and Forums by default, and processes a maximum of 60 messages per refresh. Message bodies are truncated to about 4,000 characters before being passed to the chosen AI model.

3. Where the data is stored

Gmail OAuth tokens are stored in your operating system's secure keychain (Keychain on macOS, Credential Manager on Windows, Secret Service on Linux). They never leave your machine.
Your settings and the most recent digest are stored in a local file managed by electron-store, inside the application's user-data directory on your machine.
The local AI model weights (~2-3 GB) are cached in your browser's IndexedDB, downloaded once from Hugging Face on first use.
Your Google OAuth Client ID and Client Secret, and any third-party API keys you choose to enter (Anthropic, OpenAI, Google AI Studio), are stored locally alongside settings. They are not encrypted at rest at this time — encryption is on the roadmap. Treat the application as you would any local password manager and protect your user account accordingly.

4. What is sent to third parties

Always

Google: the application calls the Gmail API using your OAuth credentials to read your messages. This is unavoidable — that is how Gmail works.

Only when configured by you

Anthropic, OpenAI, or Google AI Studio: if you choose one of these providers, the text of the emails Mail Digest just read is sent to that provider's API for analysis. Each provider has its own privacy policy and data-retention rules. We recommend reviewing them before enabling the corresponding provider.
A local Ollama server, if you choose to use it: the emails are sent to http://127.0.0.1 on your machine.
Hugging Face: the first time you use the default local model, the application downloads the model weights from huggingface.co. After that, no further calls to Hugging Face are made.

Never sent anywhere by us

We do not operate a server that receives your emails, your API keys, your usage data, or any analytics from the application.
The application does not include third-party analytics, crash reporting, or telemetry SDKs.
This website (maildigest.app) is a static site hosted on Cloudflare Pages. Cloudflare may collect aggregate traffic logs as part of its standard operation; we do not place additional tracking on top.

5. The website you are reading

The maildigest.app website is a static informational site. It loads fonts from Google Fonts and uses Cloudflare as its hosting provider. Both may collect standard request logs (IP address, user agent, requested URL) to deliver the site. No cookies are set by us, and no profiling is performed.

6. Your choices

Disconnect Gmail at any time from the application's Settings panel. The OAuth tokens are deleted from your keychain.
Revoke the OAuth grant at myaccount.google.com/permissions.
Clear local data by deleting the application's user-data directory. Paths: ~/Library/Application Support/gmail-daily-digest on macOS, %APPDATA%\gmail-daily-digest on Windows, ~/.config/gmail-daily-digest on Linux.
Switch providers at any time without re-authenticating Gmail.

7. Children

Mail Digest is not directed at children under 13 (or the equivalent minimum age in your jurisdiction). Do not use it if you are below that age.

8. Changes to this policy

If the application changes how data is handled in a way that affects this policy, we will update this page and bump the "Last updated" date above. The Git history of this site preserves prior versions.

9. Contact

Questions about this policy: hello@maildigest.app. Or open an issue on the project's GitHub repository.

This document is provided for transparency and is not legal advice. If you require legally binding terms for an organisation, please have it reviewed by qualified counsel in your jurisdiction.