Privacy Policy

Last Updated: March 2026

1. Introduction

STTech LLC ("we", "us", or "our") operates Render-Mail (render-mail.com), an AI-powered email client. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service. This policy applies whether you connect a Google email account (Gmail or Google Workspace) or Microsoft email account (Microsoft 365, Outlook.com, or Exchange).

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and profile information provided through your Google or Microsoft OAuth sign-in.

Email Data

With your authorization, we access your email content through Gmail or Outlook OAuth connections. This includes email subjects, bodies, sender and recipient information, timestamps, folder/label information, and attachment metadata. This data is used to power AI-assisted features such as draft generation, triage, categorization, and email management.

OAuth Tokens

We store encrypted OAuth access and refresh tokens to maintain your connection to Gmail and Outlook. These tokens are encrypted at rest using AES-256-GCM.

Usage Data

We collect standard usage data including pages visited, features used, and interaction patterns to improve our service.

Technical Data

We collect technical data such as IP address, browser type, time zone, operating system, and device information when you access our service.

3. Google API Services User Data Policy

Render-Mail's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we:

• Only request access to the data necessary to provide and improve the features you use.
• Do not use Google user data for serving advertisements.
• Do not sell Google user data to third parties.
• Do not use Google user data for purposes unrelated to providing or improving our email client service.
• Allow users to revoke access at any time through their Google Account settings or within Render-Mail.

4. Microsoft Graph API Services

Render-Mail's use of information received from Microsoft Graph API adheres to Microsoft's data handling requirements and the Microsoft API Terms of Use.

We only use access to your Microsoft email account to:

• Read emails for AI processing and automation.
• Send emails on your behalf as directed.
• Manage email folders, categories, and organization.
• Access email metadata for automation rules.

5. How We Use Your Information

• Provide and maintain the Render-Mail service, including AI-powered email management features.
• Process your email content through AI models to generate draft replies, categorize emails, and provide intelligent assistance.
• Authenticate your identity and manage your account.
• Communicate with you about service updates, security alerts, and support.
• Improve and optimize our service.

6. Third-Party Services (AI Providers)

We use third-party AI providers to power our email assistance features such as draft generation, triage, and categorization. Email content sent to these providers is used solely for generating responses and is not stored or retained by the AI providers beyond the duration of the request. Our AI service providers are contractually prohibited from using your data to train their models.

We do not sell, rent, or share your personal data or email content with third parties for their own marketing or advertising purposes.

7. Data Storage and Security

We take data security seriously. Your data is protected using industry-standard measures including:

• AES-256-GCM encryption for sensitive data at rest, including OAuth tokens and draft content.
• Encrypted connections (HTTPS) for all data in transit.
• HMAC-SHA256 signed OAuth states and AES-256-GCM encrypted custom state parameters.
• Regular security reviews and updates to our infrastructure.

8. Data Retention and Deletion

We retain your data for as long as your account is active or as needed to provide our services. Email content is processed for AI features but is not permanently stored beyond what is necessary to deliver the requested functionality.

You may request deletion of your account and associated data at any time by contacting us. Upon account deletion, we will remove your personal data, email content, and OAuth tokens from our systems within 30 days, except where retention is required by law.

9. International Transfers

If you are located outside the United States, your personal data may be transferred to and processed in the United States where our servers are located. We ensure appropriate safeguards are in place for any such transfers.

10. Your Rights

You have the right to:

• Access the personal data we hold about you.
• Correct inaccurate personal data.
• Delete your account and all associated data.
• Export your data in a portable format.
• Revoke OAuth access to your email accounts at any time.
• Opt out of non-essential communications.

To exercise any of these rights, contact us at support@render-mail.com.

11. Children's Privacy

Render-Mail is not intended for use by individuals under the age of 13. We do not knowingly collect personal information from children under 13.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us at:

STTech LLC Email: support@render-mail.com Website: render-mail.com