Effective date: March 25, 2026
When you use Maillayer, we collect the following types of information:
Account information — your name, email address, and password when you sign up.
Email metadata — recipient addresses, subject lines, timestamps, and delivery status for emails sent through the API. We do not store the full body content of your emails after delivery.
Usage data — API call volume, error rates, and general usage patterns to maintain and improve the service.
We use your data to operate and improve Maillayer, process and deliver your emails, manage your account and billing, provide customer support, monitor for abuse, and send you service-related communications (such as billing receipts or downtime notifications).
We rely on a small number of trusted third-party services to operate Maillayer:
AWS SES — for email delivery infrastructure. Email metadata is shared with AWS as part of the sending process.
Stripe — for payment processing. Your payment information is handled directly by Stripe and never stored on our servers.
Firebase — for authentication. Your login credentials are managed through Firebase Authentication.
We do not sell your data to third parties or use it for advertising.
Email logs and metadata are retained for 30 days. Account information is retained for as long as your account is active. If you delete your account, we will remove your data within 30 days, except where we are required by law to retain it.
We take reasonable measures to protect your data, including encryption in transit (TLS) and at rest, secure API key management, and access controls on our infrastructure. However, no system is perfectly secure, and we cannot guarantee absolute security.
Maillayer uses minimal cookies, limited to authentication and session management. We do not use tracking cookies, analytics cookies, or third-party advertising cookies.
You can access, update, or delete your account information at any time from your account settings. You can request a copy of your data or ask us to delete it entirely by contacting us. If you are in the EU, you have additional rights under GDPR, including the right to data portability and the right to lodge a complaint with a supervisory authority.
We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or through the service. Continued use of Maillayer after changes take effect constitutes acceptance of the updated policy.
If you have questions about this policy or your data, contact us at [email protected].