Privacy Policy
Mailprune is a desktop application that runs entirely on your Mac. We do not operate a server that receives your data.
Information We Collect
Mailprune does not collect personal information. There is no account to create, no analytics, and no telemetry. The application does not transmit usage data, diagnostics, or crash reports to us or to any third party.
Information Stored on Your Device
To function, Mailprune stores the following locally on your Mac:
- A Gmail OAuth access token and refresh token, held in the macOS Keychain.
- A local database of message metadata (sender, subject, date, size, labels) used to compute sender statistics and support undo. Message bodies are not stored.
- Application preferences and logs, stored in your user Library folder.
This information remains on your device and is not transmitted to Mailprune.
Use of Gmail Data
Mailprune requests Gmail OAuth scopes solely to perform the actions you direct within the app — for example, listing senders, archiving messages, or moving messages to Trash. All access occurs directly between your Mac and Google's servers. Mailprune's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Data Protection
Because Mailprune runs entirely on your Mac and does not transmit your data to any Mailprune-operated server, data protection is provided by the protections already present on your device and on Google's APIs:
- OAuth tokens at rest. Gmail access and refresh tokens are stored in the macOS Keychain. The Keychain encrypts items at rest under a key derived from your login password and is gated by macOS access control lists, so other applications cannot read Mailprune's tokens without your explicit approval.
- Local database at rest. The local message-metadata database is written under your user Library folder (
~/Library/Application Support/Mailprune/). The containing directory is created with permissions restricted to your user account (mode 0700), so other non-administrator users on the same Mac cannot read the database. If you have FileVault enabled — which Mailprune recommends — the database is additionally encrypted at rest by macOS. - Data in transit. All communication with Google's Gmail and OAuth endpoints uses HTTPS (TLS 1.2 or higher), with certificate validation performed by the system trust store. Mailprune does not disable, downgrade, or pin around TLS verification.
- OAuth flow. The OAuth authorization uses the PKCE extension (RFC 7636), so the authorization code cannot be exchanged for tokens by another process that intercepts the redirect.
- Scope minimization. Mailprune requests only the Gmail scopes required to perform the actions you direct in the app. No additional Google services (Drive, Contacts, Calendar, etc.) are accessed.
- No server-side processing. There is no Mailprune-operated backend that receives, stores, or processes your Gmail data. There are correspondingly no server-side breach, retention, sub-processor, or transfer concerns on Mailprune's side.
- Local-only logs. Application logs are written under
~/Library/Logs/Mailprune/with the same user-only permissions and are never transmitted off-device. - Revocation and deletion. Clicking Sign out in the Mailprune UI wipes the local message-metadata database, removes the Gmail OAuth token from the Keychain, and truncates Mailprune's local log files in one action. To additionally revoke Mailprune's access on Google's side, visit myaccount.google.com/permissions. Deleting the application along with the
Application Support,Logs, andPreferencesfolders named "Mailprune" removes any remaining traces.
Sharing
We do not share your data. Because your data never reaches us, there is nothing for us to share.
Revoking Access
You may revoke Mailprune's access to your Gmail account at any time at myaccount.google.com/permissions. You may remove all local data by deleting the application and its support folder.
Changes to This Policy
If this policy changes, the updated version will be posted on this page with a revised "Last updated" date.
Contact
Questions about this policy may be sent to support@mailprune.com.