Inboxo
Log in Start free

Privacy Policy

Last updated: March 21, 2026

This Privacy Policy explains how Inboxo for Gmail ("Inboxo", "we", "us") collects, uses, stores, and shares information when you use our website, Chrome extension, and related services (the "Service").

Google API User Data Policy: Inboxo's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

1. Information we collect

  • Inboxo account information: such as your email address, name, and account preferences.
  • Google account email (userinfo.email): when you connect Gmail, we retrieve your Google account email address to identify the connected inbox.
  • Gmail data you authorize us to access: depending on your usage, this can include Gmail thread/message IDs, headers (e.g., From/To/Cc/Subject), timestamps, labels, snippets, and message body text needed to show threads and power features like drafting and classification.
  • Service-generated data: things the Service creates or stores for you, such as reply drafts, classification results (intent/confidence/summary), follow-up schedules, board/stage settings, and processed/closed thread state.
  • Usage and diagnostics: basic operational logs and diagnostics needed to operate, secure, and debug the Service.
  • Subscription and billing data: if you purchase a plan, our billing provider processes payment and subscription information.

2. How we access and use Google user data

Inboxo connects to Gmail through Google OAuth and uses Gmail API access to provide user-facing features. For example, we may access and use Google user data to:

  • Display your unified reply queue: list relevant inbox threads and show key thread details (subject, sender, snippet, timestamps, labels).
  • Draft replies and follow-ups: fetch the message content needed to build thread context and generate draft reply suggestions.
  • Classify replies into boards/stages: analyze recent thread context to suggest an intent/stage and summary.
  • Perform Gmail actions you request: send replies, start new messages (e.g., referrals), archive threads, mark threads unread, and move threads to trash.
  • Automation you enable: if you enable scheduled/auto follow-ups, we may send a follow-up email at the time you set, using the draft you selected.

We use Google user data only to provide or improve the Service's user-facing functionality, to maintain security, and to provide support. We do not sell Google user data, use it for targeted advertising, or use it to build user profiles for advertising. We do not use Google user data to train generalized AI models.

3. AI-assisted features

If you use AI-assisted features, we may send limited thread context (for example, a small number of recent messages) to an AI service provider (currently OpenAI) to generate classifications or draft suggestions. You should review AI output before sending.

4. Sharing and disclosure

We may share information in the following ways:

  • Service providers: vendors that help us operate the Service (for example, hosting/infrastructure, AI processing, and billing). They process data on our behalf under contractual obligations.
  • Third-party platforms you connect: Google/Gmail, as required to provide the Service and perform actions you request.
  • Legal and safety: if required by law, or to protect the rights, safety, and security of Inboxo, our users, or others.

We do not sell your personal information.

5. Data storage, retention, and deletion

  • OAuth tokens: we store Google OAuth tokens for connected accounts so we can access Gmail on your behalf. Tokens are updated/rotated as needed and are removed when you disconnect an account or delete your Inboxo account.
  • Email content: we generally do not store your full mailbox or full message bodies on our servers. We fetch email content from Gmail when needed to display a thread or generate drafts/classifications, and we store only limited service-generated outputs (such as drafts and summaries).
  • Service-generated data: we retain drafts, classifications, and workflow state for as long as your account is active, unless you delete them or request deletion.

You can request deletion by contacting us, and you can delete your Inboxo account from within the Service (where available). When you delete your account, we delete associated stored Service data in our systems.

6. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information. We use HTTPS/TLS for data in transit. No system is 100% secure.

7. Your choices and controls

  • Disconnect Gmail: you can disconnect a connected inbox from the Service, and you can revoke OAuth access from your Google account settings.
  • Automation controls: auto follow-ups only run if you enable them and select a draft.
  • Access/correction/deletion: you can request access, correction, or deletion by contacting us.

8. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. If we make material changes, we will take reasonable steps to notify you (for example, via the Service or email).

9. Contact

Questions about this Privacy Policy? Contact us at hello@inboxo.app.