Privacy Policy

At Glidefeed, privacy is not a checkbox — it's a design principle. This policy explains what information we collect (very little), what we never collect, and how we handle your data. If you have questions, email us at privacy@glidefeed.com.

1. The Short Version

Glidefeed is a local-first email client. Your emails are fetched directly from your email provider (e.g., Gmail, iCloud) using standard protocols and stored in an encrypted database on your device. We do not have access to your emails. We do not store them on our servers. We do not sell your data.

2. Information We Collect

We collect minimal information strictly necessary to operate the service:

• Account credentials: Gmail accounts use OAuth tokens issued by Google. Other providers may use IMAP/SMTP credentials or app passwords. These credentials are stored securely on your device using platform-secure storage such as Android Keystore and iOS Keychain, and are not sent to Glidefeed servers.
• Local diagnostics: If diagnostics are enabled, Glidefeed may store limited crash details on your device so bugs can be investigated. These diagnostics are controlled in Settings → Privacy.
• Optional support information: If you contact us for support, you may choose to share diagnostic details with us. Do not include email content unless you intentionally want us to review it.

3. What We Never Collect

We are explicit about what we will never do:

• We never read, scan, index, or store your emails on our servers.
• We do not collect contacts or calendars, and we do not store your email address on our servers.
• We never sell, rent, or share your personal data with third parties.
• We never use your data to train AI or machine learning models.
• We never track your location.
• We never use advertising identifiers.

4. Local Data Storage

All email content is stored locally in an encrypted SQLite database on your device. This database is:

• Encrypted at rest using SQLCipher, with the database key stored in platform-secure storage such as Android Keystore and iOS Keychain.
• Excluded from Android app backup where supported. On Apple platforms, local app data may be included in device backups depending on your iCloud or computer backup settings.
• Deleted entirely when you remove the app from your device.

5. Email Provider Authentication

Glidefeed connects to your email provider (e.g., Google, Apple, Microsoft) using industry-standard OAuth 2.0 and IMAP/SMTP protocols. When you sign in:

• You authenticate directly with your email provider — not with us.
• For Gmail, Google issues a token granting Glidefeed access to your mailbox. For other providers, you may enter an app password or IMAP/SMTP password.
• Credentials are stored only in platform-secure storage on your device, not transmitted to our servers.
• You can revoke this access at any time via your email provider's security settings.

Google API Limited Use Disclosure: Glidefeed's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Google user data is used only to provide user-facing email features such as reading, searching, syncing, composing, and sending mail.

6. Third-Party Services

Glidefeed uses a minimal set of third-party services:

• Google Sign-In and Gmail APIs: Google handles the OAuth consent flow for Gmail accounts. Glidefeed uses the resulting access token to connect to your mailbox from the app.
• App stores: Google Play and the Apple App Store handle app distribution and any store-level transactions. Their privacy policies govern those processes.
• Optional AI features: If you choose to use AI features, your prompt, current draft text, or limited inbox metadata needed for that feature may be sent to the configured AI provider. Glidefeed does not send full email bodies as background inbox context.

We do not embed any advertising SDKs, social media SDKs, or data broker services.

7. Children's Privacy

Glidefeed is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal information, please contact us at privacy@glidefeed.com and we will delete it promptly.

8. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of any support information you intentionally shared with us.
• Deletion: Request deletion of any data we hold. Uninstalling the app deletes all local data immediately.
• Opt-out: Disable local diagnostics at any time in Settings → Privacy & Security within the app.
• Correction: If we have inaccurate information, contact us to correct it.

To exercise any of these rights, email privacy@glidefeed.com. We will respond within 30 days.

9. Data Security

We take the security of your data seriously. Because email data lives only on your device, your primary protection comes from operating-system security features such as device passcode, biometric unlock, and hardware-backed encryption where available. We encourage you to keep your device and operating system up to date.

For any support information you choose to send us, we use encrypted connections (TLS) and industry-standard access controls.

10. Changes to This Policy

We may update this privacy policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page and notify you via an in-app notice. Your continued use of Glidefeed after changes take effect means you accept the updated policy.

11. Contact Us

If you have questions, concerns, or requests regarding this privacy policy or your personal data, please contact us:

• Email: privacy@glidefeed.com
• General inquiries: hello@glidefeed.com