Privacy Policy

Effective date: July 3, 2026

Keymail ("the app") is a native macOS email client developed by Chris Maury ("we", "us"). This policy explains what data Keymail accesses, how it is used, where it is stored, and the choices you have. The short version: Keymail runs entirely on your Mac. We operate no servers, and we never receive, collect, sell, or share your data.

1. Information Keymail accesses

When you connect a Google account, Keymail asks for your consent — via Google's OAuth 2.0 sign-in — to access the following Google user data:

Keymail does not access any Google data beyond these scopes, and does not collect analytics, telemetry, usage data, or advertising identifiers.

2. How Keymail uses this data

All processing happens locally on your Mac. Keymail does not use your data for advertising, does not build profiles, and no human ever reads your data (we couldn't — it never leaves your device).

Limited Use disclosure. Keymail's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

3. Where your data is stored

4. Sharing of data

We do not sell, rent, transfer, or share your Google user data with anyone. Because Keymail has no servers, we have no copy of your data to share, and we have no access to it ourselves.

A planned "bring-your-own-AI" feature may let you optionally connect an AI service of your choosing for assistive features. If and when that feature ships, data will be sent to your chosen provider only with your explicit configuration and consent, will be limited to what the feature requires, and this policy will be updated to describe it before the feature is enabled.

5. Data retention and deletion

6. Security

Keymail uses Google's official OAuth 2.0 flow with PKCE — the app never sees or stores your Google password. Tokens are kept in the macOS Keychain, all network communication with Google uses TLS, and all mail data at rest is protected by macOS user-account security (and FileVault disk encryption, if enabled).

7. Children's privacy

Keymail is not directed at children under 13 and does not knowingly collect personal information from children.

8. Changes to this policy

If we change this policy, we will update this page and the effective date above. Material changes affecting how Google user data is handled will be prominently disclosed before they take effect.

9. Contact

Questions about this policy or your data? Email help@chrismaury.com.