Join the waitlist

← Back to Mailotte

Privacy Policy

Last updated: 9 June 2026

At Mailotte, privacy is not a feature — it is the foundation of everything we build. This Privacy Policy explains what information we collect, why we collect it, how we use it, and the choices you have to control your data. Mailotte is operated by MAILOTTE LTD, a company incorporated in England and Wales, and we comply with the UK General Data Protection Regulation (UK GDPR), the EU General Data Protection Regulation (EU GDPR), and the Data Protection Act 2018. Although our company is registered in the United Kingdom, your mailboxes, attachments, and account data are stored exclusively on servers located in the European Union (Germany and France).

Who We Are (Data Controller)

The data controller responsible for your personal data is:

  • MAILOTTE LTD
  • Registered in England and Wales, company number 17119010
  • Registered office: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom
  • Data protection contact: privacy@mailotte.com

1. Information We Collect

We collect the minimum amount of information necessary to provide and secure our email service.

Information you provide to us

  • Account information: a username (which becomes your email address), your name, and a password.
  • Email content: messages you send and receive, including attachments, stored on our servers to deliver the service.
  • Payment information: if you subscribe to a paid plan, your payment details are processed by our third-party payment provider. We do not store your full card number on our servers.
  • Support requests: information you provide when you contact our support team.

Information collected automatically

  • Log data: IP address, browser type, access times — retained for security and automatically deleted after 90 days.
  • Device information: operating system, device type, and language settings.
  • Usage data (opt-in): pseudonymised counts of in-app actions, collected only if you turn analytics on (off by default). Identifiers are SHA-256-hashed in your browser; we never receive your email content, recipients, or IP address. Manage under Settings → Privacy & data.

2. How We Use Your Information

  • To provide, maintain, and improve Mailotte's email services
  • To send and receive email on your behalf
  • To protect your account and prevent abuse, fraud, and spam
  • To communicate with you about your account, service updates, and security alerts
  • To comply with legal obligations under UK and EU law
  • To provide customer support when you contact us

We do NOT scan your emails for advertising, build advertising profiles, sell your data, train machine-learning models on your private email content, or track you across other websites.

3. How We Protect Your Information

  • All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
  • All data is stored exclusively on EU-based servers in GDPR-compliant data centres
  • Ongoing security testing, with independent third-party audits introduced as our security programme matures
  • Strict access controls — only authorised personnel can access infrastructure
  • Email tracking pixels and external content are blocked by default
  • Two-factor authentication (2FA) available for all accounts

4. Sharing Your Information

We do not sell, rent, or trade your personal information. We share limited data only with trusted service providers (subprocessors) bound by data processing agreements, or where required by law. Our current subprocessors include:

  • Hetzner Online GmbH (Germany) — server & storage hosting
  • Clever Cloud SAS (France, EU) — managed PostgreSQL database hosting
  • Paddle (Paddle.com Market Limited) — our Merchant of Record for paid plans. Paddle is the seller of record for your subscription and handles payment processing and the collection and remittance of applicable VAT. Depending on your location, your payment data may be handled by Paddle entities in the United Kingdom and the United States; these transfers are covered by Standard Contractual Clauses and the UK International Data Transfer Addendum.
  • Error & performance monitoring is now first-party: it runs on Mailotte's own self-hosted Grafana stack (Tempo for traces, Loki for logs) on our Hetzner servers in Germany — no third-party processor receives it. (This first-party stack replaced our former provider, Sentry, which was decommissioned in June 2026.)
  • Cloudflare, Inc. (United States) — bot and abuse protection (Turnstile) on our sign-up and waitlist forms only. Processes your IP address and browser signals to confirm you are a human and not an automated bot; it never receives your email content. Where this data is processed in the United States, the transfer is covered by Standard Contractual Clauses and the UK International Data Transfer Addendum.
  • Mistral AI SAS (Paris, France) — EU-resident AI provider used only as a fallback when our local model is unavailable; contractually prohibited from using your content to train its models
  • Web push gateways (Google, Apple, Mozilla) — only if you opt in to browser notifications; payloads are end-to-end encrypted

Your stored email content remains in the European Union (Germany and France) and is not transferred outside the EEA except as expressly described in this policy (for example, end-to-end encrypted push notifications and payment processing). Because MAILOTTE LTD is a UK company that administers EU-hosted infrastructure, limited personal data (such as account and billing identifiers) may be accessed from the United Kingdom, and any administrative access from outside the EEA is limited to authorised personnel, logged, and subject to strict access controls. UK–EU transfers are covered by the mutual adequacy decisions in force between the UK and the EU. Where a subprocessor processes data outside the UK and EEA (for example, Paddle and Cloudflare via their US operations), the transfer is covered by Standard Contractual Clauses and the UK International Data Transfer Addendum under GDPR Art. 46.

AI processing. Mailotte's AI features run primarily on a local model hosted on our own servers in Germany, with an EU-resident fallback (Mistral AI) that is contractually prohibited from using your content to train its models. We do not send your email content to OpenAI, Anthropic, Google, or any other US-based AI provider, and we do not train models on your private content.

Push notifications. If you enable browser push, alerts are reached through your browser vendor's push service (Google, Apple, or Mozilla), which may route through the United States. Each notification is encrypted end-to-end under the Web Push standard (RFC 8291) before it leaves our servers, so the gateway can only relay an opaque message — it cannot read the sender, subject, or content. You can disable push at any time in Settings → Notifications.

5. Your Privacy Rights

Under the UK GDPR and EU GDPR you have the rights of access, rectification, erasure, restriction, data portability, objection, and withdrawal of consent. To exercise any of these, visit your Account Settings or contact privacy@mailotte.com. We respond within one month as required by law.

6. Data Export and Deletion

You can export all of your data at any time from your Account Settings in standard, portable formats (e.g. .eml for emails, vCard for contacts). You can also delete your account at any time, which permanently removes your personal data, emails, and associated content from our servers after a short grace period.

7. Data Retention

We retain personal data only as long as necessary. Account data is kept for the life of your account; security logs and login history for 90 days; mail delivery events for 30 days; items in Trash for 30 days; billing records as required by UK tax and accounting law. Diagnostic telemetry is short-lived: distributed traces are retained for up to 7 days and application logs for up to 14 days, after which they are automatically deleted.

8. Cookies and Tracking

Mailotte uses only essential cookies (authentication, security, and preferences). We do not use advertising cookies, third-party advertising trackers, cross-site tracking, or browser fingerprinting. See our Cookie Policy for full detail.

To diagnose errors and keep Mailotte reliable, we use first-party diagnostics that run on our own self-hosted Grafana stack (Tempo and Loki) on our Hetzner servers in the EU — no third-party monitoring service receives this data (this replaced our former provider, Sentry, decommissioned June 2026). This covers three things: (1) error reports from your browser and our servers (the exception type and a stack trace, with any email addresses, tokens, and similar values stripped out before they leave your browser or our backend); (2) performance signals such as Core Web Vitals, the page route, the app version, and your browser/operating-system type; and (3) a privacy-first product-analytics event stream that records only the in-app actions you take while signed in. None of this sets advertising or tracking cookies, and the browser diagnostics do not store or read any information on your device beyond the essential cookies (no session identifier is written) — which is why no cookie-consent banner is required. Email content, message contents, recipient addresses, and IP addresses are never sent to or retained by these pipelines. Personal identifiers in analytics event payloads are one-way SHA-256 hashed in your browser before transmission. Diagnostic traces are kept for up to 7 days and logs for up to 14 days. The product-analytics stream is opt-in: off by default and never collected unless you turn it on. We ask once at first login, and you can enable or disable it at any time under Settings → Privacy & data.

9. Children's Privacy

Mailotte is not directed at children under 16 (or the minimum age required in your country to consent to the processing of personal data). We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you by email or through a prominent notice within the service at least 30 days before the changes take effect.

11. Supervisory Authority

If you believe our processing infringes data protection law, you may lodge a complaint with a supervisory authority. As MAILOTTE LTD is established in the United Kingdom, our lead authority is the UK Information Commissioner's Office (ICO), Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF, United Kingdom (ico.org.uk). If you are in the EEA, you may instead complain to the supervisory authority of your country of residence. Please contact us first so we can try to resolve your concern directly.

12. Contact Us

Questions about this Privacy Policy or your personal data can be sent to our data protection contact at privacy@mailotte.com.

Take your inbox back.

Private, smart, and finally yours.

Join the waitlist