Privacy Policy
Last updated: April 2026
1. What We Collect
MailVault collects the documents you upload (images and PDFs), the text extracted from those documents, and AI-generated summaries. We also store your account credentials (email and password hash) via Amazon Cognito, and basic usage data.
2. How We Use Your Data
Your documents are stored securely in Amazon S3 and indexed in DynamoDB solely to provide the MailVault service — document organisation, search, AI summaries, and reminders. We do not sell, rent, or share your data with third parties for marketing purposes.
3. AI Processing
Document text is sent to the Groq API (running Llama 3.3) to generate summaries, key information, and action items. Groq processes your data under their own privacy terms. We send only the text content — not the original image files — for AI analysis.
4. Data Storage & Security
All files are stored in AWS S3 with private access controls. Document metadata is stored in AWS DynamoDB. Authentication is managed by Amazon Cognito. Data is encrypted at rest and in transit. Access to your documents is scoped strictly to your account.
5. Data Retention
Your documents remain stored until you delete them. Deleting a document removes both the file from S3 and its metadata from DynamoDB. You can delete your account and all associated data by contacting us.
6. Sharing
Document share links are time-limited (7 days) and cryptographically signed. Anyone with the link can view the document summary during that window. Share links cannot be used to access your account or other documents.
7. Your Rights
You can view, edit, or delete any document at any time through the app. If you wish to export or permanently delete all your data, contact us and we will process your request within 30 days.
8. Contact
For privacy questions or data requests, reach out through the Settings page or email us directly. We take data privacy seriously and will respond promptly.