Last updated: January 2, 2026
Essential Cookies: We use essential cookies that are strictly necessary for the operation of our service. These cannot be disabled:
Analytics Cookies (Optional): We use Vercel Analytics to understand how users interact with our service. This helps us improve performance and user experience. You can decline analytics cookies through our cookie banner.
Your Choices: You can accept or decline optional analytics cookies through the cookie consent banner. Essential cookies cannot be declined as they are required for the service to function.
CallMail ("we", "our", or "the App") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your information when you use our email-to-call notification service.
Google Account Information: When you sign in with Google, we receive your email address and basic profile information to identify your account.
Gmail Data (Read-Only Access): We access your Gmail inbox in read-only mode to check for new unread emails. We specifically check:
User-Provided Information:
We use your information solely to provide the CallMail service:
Database Storage: Your VIP contacts, keywords, phone number, and preferences are stored securely in our Supabase database with encryption at rest.
Data Residency: User data is stored in Supabase (PostgreSQL) hosted in AWS US-East region.
OAuth Tokens: Your Google authentication tokens are stored securely in our database and are used only to access your Gmail on your behalf.
Email Data Retention: Processed email IDs are retained for 30 days for deduplication purposes. User data is retained until account deletion.
Security Measures: We use industry-standard encryption (HTTPS/TLS) for all data transmission and encryption at rest for stored data.
We do not sell, trade, or transfer your personal information to third parties. We share data only with the following service providers (subprocessors):
We will never:
CallMail's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
Access and Control: You can view and modify your VIP contacts, keywords, and phone number at any time within the app.
Data Export: You can export all your data directly from the app Settings page at any time. No need to contact us.
Revoke Access: You can revoke CallMail's access to your Google account at any time through your Google Account permissions.
Delete Data: You can request deletion of all your data by contacting us. We will delete your data within 30 days of request.
Stop Monitoring: You can pause or stop email monitoring at any time using the controls in the app.
In the event of a data breach affecting your personal information, we will notify affected users within 72 hours via email. We maintain security incident response procedures to quickly identify, contain, and remediate any security issues.
CallMail is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. Continued use of the app after changes constitutes acceptance of the updated policy.
If you have any questions about this Privacy Policy or our data practices, please contact us at:
Email: burke@omnisound.xyz