Privacy Policy

Overview

DropMail is a privacy-first temporary email service. We built it specifically to protect your privacy. We collect the absolute minimum data required to operate the service, and we never sell or share your data.

What we collect

• Temporary email addresses generated during your session
• Emails received to those addresses (auto-deleted after 1 hour)
• Your IP address (used only for rate limiting abuse prevention)

What we do NOT collect

• No name, phone number, or personal information
• No account registration or login required
• No tracking cookies or advertising pixels
• No third-party analytics (Google Analytics, etc.)
• No selling of data to third parties — ever

Data retention

All emails and inbox data are automatically and permanently deleted after 1 hour. We do not archive, back up, or retain email content beyond this window. IP addresses used for rate limiting are not stored permanently.

Cookies

DropMail does not use tracking cookies. We may use a minimal session identifier stored in your browser's local storage to remember your current temporary inbox. This data never leaves your device and is cleared when you close the tab.

Chrome Extension

The DropMail Chrome extension stores your theme preference (light/dark) locally using chrome.storage.local. This data is stored only on your device and is never transmitted to our servers.

Security

All connections to DropMail are encrypted via HTTPS/TLS. Email content is sanitized before display to prevent XSS attacks. We do not store passwords or sensitive credentials of any kind.

Third-party services

DropMail uses MongoDB Atlas for temporary data storage (emails auto-deleted after 1 hour). No other third-party data processors are used.

Contact

Questions about this policy? Email us at hello@dropmail.space