Tailmailer の個人情報保護方針
Tailmailer 作成者: Tailmailer
Tailmailer Privacy Policy
Last updated: July 8, 2026
Tailmailer LLC ("Tailmailer," "we," "us") provides an email alias service: you create disposable addresses ending in @tailmailer.com, and mail sent to those addresses is forwarded to your real email address. This policy explains what we collect, why, and what control you have. It applies to the Tailmailer apps (iOS, macOS), the Safari extension, the web portal at account.tailmailer.com, and the tailmailer.com service itself.
The short version: we collect what the service needs to forward your mail and run your account — nothing more. We do not sell data, we do not show ads, we do not track you across other apps or websites, and the content of your forwarded email is processed in transit but not stored.
- Information we collect
Account information. Your real email address (the forwarding destination), a password (stored only as a salted bcrypt hash — we cannot read it), your plan, and account settings such as whether two-factor authentication is enabled. If you enable authenticator-based two-factor authentication, we store the shared secret needed to verify your codes. If you use email codes, we store only a hashed copy of each short-lived code.
Aliases. Each alias you create, the website it is associated with (if any), any notes you attach, and whether it is on or off.
Relay activity. When a message passes through the relay we log the sender's address, the message subject, the alias involved, the time, and the outcome (delivered, dropped, or error). We keep this log to provide alias activity history, troubleshoot delivery, and fight abuse. We do not store the body or attachments of forwarded email. Message content is processed in memory only for as long as it takes to forward it.
Sessions and devices. When you sign in we record the app used (for example "iOS App" or "Web Portal"), your device's user-agent string, your IP address, and sign-in/last-active timestamps. This powers the Devices page, where you can see and revoke access for each signed-in device.
Billing. Paid plans are processed by Stripe. We store your Stripe customer and subscription identifiers and subscription status. We never see or store your full card number.
Server logs. Our infrastructure keeps routine technical logs (IP addresses, request timestamps, error traces) for security and reliability.
- What the apps and extensions do NOT collect
The Safari extension examines web pages locally on your device to find email fields. Page contents never leave your device. The only thing the extension transmits is the domain of the site you are on (for example example.com) — and only when you tap the button asking for an alias, so the alias can be tagged to that site. We do not collect browsing history, we do not use analytics SDKs or advertising SDKs, we do not fingerprint devices, and we do not use tracking as defined by Apple's App Tracking Transparency framework.
- How we use information
To create and forward your aliases; to authenticate you and secure your account (including two-factor codes and device sessions); to send service email such as verification links and sign-in codes; to enforce plan limits and prevent abuse (spam relaying, bulk signup); to process payments; and to comply with legal obligations. We do not use your information for advertising, and we do not sell or rent it to anyone.
- Legal bases (EEA/UK users)
We process account and relay data because it is necessary to perform our contract with you. We process security logs, session records, and anti-abuse data under our legitimate interest in keeping the service secure. Where consent is required we ask for it and you may withdraw it at any time.
- Who we share information with
We use a small number of service providers to run Tailmailer: DigitalOcean (servers and managed database, United States), Cloudflare (network and DNS security), Stripe (payments), and our own mail infrastructure for sending and receiving email. These providers process data only on our instructions. Beyond that, we disclose information only if required by law or valid legal process, to protect the rights and safety of users and the service, or as part of a merger or acquisition (in which case this policy continues to apply to your data). There are no other third parties, no data brokers, and no advertisers.
- Retention
Account, alias, and session data are kept while your account exists. Relay log entries and expired two-factor codes are periodically purged. Revoked sessions are unusable immediately. When you delete your account, your aliases, sessions, codes, and account record are deleted at once; relay log entries lose their link to any account. Routine backups age out on a fixed schedule. Some minimal records may be retained where the law requires (for example, payment records for tax purposes).
- Deleting your account
You can permanently delete your account at any time, directly inside the iOS/macOS app (Account → Delete Account) or on the web portal. Deletion requires your password, takes effect immediately, and cannot be undone. All of your aliases stop receiving mail permanently.
- Security
All connections to the service use TLS. Passwords and two-factor codes are stored only as bcrypt hashes. Access tokens are scoped to a revocable device session, and changing your password signs out all other devices. In the apps, credentials are stored in the operating system's secure keychain, and the Safari extension is designed so that your access token is never exposed to web page scripts. No system is perfectly secure; if we learn of a breach affecting your personal data we will notify you as required by law.
- Your rights
Depending on where you live (including the EEA, UK, and California), you may have rights to access, correct, export, restrict, object to the processing of, or delete your personal data. Most of these you can exercise yourself in the app or portal (view and edit account data, delete the account). For anything else, contact us at the address below; we will respond within the time the law requires. We do not discriminate against you for exercising your rights. California residents: we do not sell or share personal information as defined by the CCPA/CPRA, and we honor the rights to know, delete, and correct.
- International transfers
Our servers are in the United States. If you use Tailmailer from elsewhere, your data is processed in the US. For EEA/UK users we rely on appropriate safeguards, such as standard contractual clauses with our providers.
- Children
Tailmailer is not directed at children and may not be used by anyone under 13 (or the higher minimum age in your jurisdiction, such as 16 in parts of the EEA). We do not knowingly collect data from children; if you believe a child has created an account, contact us and we will delete it.
- Changes
We may update this policy as the service evolves. Material changes will be announced by email or in the apps before they take effect, and the date at the top always reflects the current version.
- Contact
Tailmailer LLC Email: privacy@tailmailer.com Support: support@tailmailer.com