Privacy

Mailuno (“we”) is an AI-assisted cold outreach tool for B2B operators. This policy explains what data we collect, what we do with it, and what rights you have. It applies to anyone using mailuno.io or signing in to the Mailuno workspace.

Account information: your email address, a securely hashed password (we never store the plaintext), and a display name if you provide one.

Workspace data: your business profile (the description of your offer that Mailuno uses to draft emails) and the credentials you use to connect your own Gmail, Outlook, or SMTP mailbox. Mailbox passwords are encrypted at rest.

Lead lists: the prospect contact files you upload (CSV, TXT, JSON, XLSX). We store the parsed contacts so you can dispatch and track sends; we do not redistribute them.

Generated emails: the drafts Mailuno produces for each prospect, plus send status, opens, replies, and unsubscribes.

Usage telemetry: standard logs (IP, user agent, request paths) for security and service reliability. We do not run third-party advertising trackers on the marketing site.

We use the data above to provide the service: generate emails, send them on your behalf, track outcomes, bill you, and maintain your workspace. We use telemetry to detect abuse and keep the service healthy.

We do not sell your data. We do not use the contents of your lead lists or your generated emails to train third-party models.

When Mailuno drafts an email, it fetches the prospect's public website once, summarizes what it found, and discards the raw page content. The summary is retained as part of the generated email record.

We do not aggregate, resell, or share prospect data across workspaces. Your lead list is yours: you can export or delete it at any time from the Mailuno dashboard.

We rely on the following providers to operate Mailuno. Each processes only the data needed for its role:

• Anthropic, OpenAI — large-language-model APIs that draft email content and summarize prospect websites.
• Stripe — subscription billing and payment processing. Card details are stored with Stripe, not with us.
• Neon — managed Postgres host where the application database lives.
• Vercel — hosting and edge-network for the Mailuno application.
• Auth.js + Google OAuth — sign-in. If you choose Google sign-in, your email and profile name are shared with Mailuno from Google.
• Your own mail provider — Gmail, Outlook, or any SMTP server you connect. Mailuno sends via your own credentials; we do not pool inboxes or operate shared sending infrastructure.

You can access, export, and delete your account data from the dashboard at any time. If you would like a copy of everything we hold about you, or you want your account fully deleted, email hello@mailuno.io.

Account, workspace, lead, and email-history records are retained while your subscription is active and for 90 days after cancellation, after which they are deleted. Stripe billing records are retained per Stripe's policy and applicable tax law.

All traffic is served over TLS. Passwords are hashed with bcrypt. Mailbox credentials are encrypted at rest. We do not claim a SOC 2 attestation yet; that is on the roadmap.

When we change this policy materially, we will update the “Last updated” date at the top and notify workspace owners by email.

Email hello@mailuno.io with any questions.