Privacy Policy

Your privacy is our highest priority. Learn how we protect your data and ensure your temporary email usage remains completely anonymous.

Last updated: January 2024

Privacy at a Glance

  • No personal data collection - We don't ask for or store personal information
  • No tracking - We don't use cookies, analytics, or tracking pixels
  • No data sales - We never sell, share, or monetize user data
  • Auto-deletion - All emails are automatically deleted after expiration
  • Open source approach - Transparent about our practices

Information We Do NOT Collect

OneTimeEmail is designed with privacy by default. Here's what we specifically do NOT collect:

Personal Information

  • • Names, addresses, or phone numbers
  • • Email addresses (your real ones)
  • • Payment information
  • • Social media profiles
  • • Government-issued IDs

Technical Information

  • • IP addresses (beyond temporary processing)
  • • Device fingerprints
  • • Browser histories
  • • Location data
  • • Usage analytics or tracking

Temporary Data We Process

To provide our temporary email service, we must temporarily process minimal data:

Temporary Email Addresses

What: The randomly generated email addresses (e.g., abc123@onetimeemail.net)

Why: To route incoming emails to the correct temporary inbox

How long: Automatically deleted after 10 minutes

Storage: Encrypted in our secure database

Email Content

What: Emails sent to temporary addresses (subject, body, attachments)

Why: To display emails in your temporary inbox

How long: Automatically deleted with the email address (10 minutes)

Storage: Encrypted and isolated per temporary inbox

Technical Logs

What: Basic server logs for security and error monitoring

Why: To prevent abuse and maintain service stability

How long: 24 hours maximum

Content: No personal data, only technical error information

Data Security

🔒 Encryption

  • • HTTPS/TLS 1.3 for all connections
  • • Database encryption at rest
  • • Encrypted email storage
  • • Secure key management

🛡️ Infrastructure

  • • Secure cloud hosting (Vercel)
  • • Regular security updates
  • • DDoS protection
  • • Automated vulnerability scanning

Automatic Deletion

  • • 10-minute email expiration
  • • Immediate data purging
  • • No backup retention
  • • Secure deletion protocols

🔍 Access Control

  • • No admin access to email content
  • • Minimal access logging
  • • Automated systems only
  • • Zero-knowledge architecture

Third-Party Services

We use minimal third-party services, all chosen for their privacy-focused approach:

Mailgun (Email Processing)

Purpose: Receiving and routing emails to temporary addresses

Data shared: Only email content sent to temporary addresses

Privacy: Subject to Mailgun's privacy policy and GDPR compliance

Supabase (Database)

Purpose: Temporary storage of email addresses and content

Data shared: Encrypted temporary email data only

Privacy: GDPR compliant with EU data residency options

Vercel (Hosting)

Purpose: Website hosting and edge computing

Data shared: Only technical logs (no personal data)

Privacy: Minimal logging with automatic log rotation

Your Rights

Since we don't collect personal data, most traditional data rights don't apply. However:

Right to Deletion

Your temporary emails are automatically deleted after 10 minutes. No action needed from you.

Right to Information

This privacy policy describes all data we process. No personal profiles exist to access.

Right to Portability

Since emails expire in 10 minutes, you can copy any content you need before expiration.

Right to Object

Simply stop using the service. No account deletion needed since no accounts exist.

Legal Compliance

GDPR Compliance (EU)

OneTimeEmail is designed to be GDPR compliant by default through our privacy-by-design approach. Since we don't process personal data, most GDPR obligations don't apply.

CCPA Compliance (California)

We don't sell personal information because we don't collect it. Our service naturally complies with CCPA requirements.

COPPA Compliance

Since we don't collect personal information from anyone, including children under 13, our service is COPPA compliant.

Contact & Updates

Questions or Concerns

If you have questions about this privacy policy or our practices:

Policy Updates

We may update this privacy policy to reflect:

  • • Legal requirement changes
  • • Service improvements
  • • Enhanced privacy protections

Material changes will be posted prominently on our website.