Privacy Policy

Last Updated: May 27, 2026

MailBox: Email App ("we," "our," or "the app") is developed by Capital Active. This Privacy Policy explains how we handle information when you use our Android app, MailBox: Email App, which helps you manage Gmail, Yahoo Mail, and other email accounts with easy email management features.

We are committed to protecting your privacy. This policy follows Google Play policies, GDPR (for EU users), CCPA/CPRA (for California users), and CalOPPA.

1. Introduction and Scope

This Privacy Policy describes the information we collect, how we use it, and your rights regarding your data. The app does not require you to create an account or provide personal information to use basic features. Email management and data recovery operations are performed locally on your device.

By using the app, you agree to the practices described in this policy.

2. Information We Collect

We design the app to minimize data collection.

We do not collect personal information such as your name, email address, email content, or login credentials through the app itself.

We may collect anonymized, non-personal usage data through third-party services to improve the app. This includes:

• App feature usage statistics

• Crash reports (to fix stability issues)

• Device information like OS version and device model (anonymized)

All email-related data (such as your emails, templates, or attachments) stays on your device and is not sent to us.

3. Legal Bases for Processing (GDPR)

For users in the European Economic Area, we rely on these legal bases:

• Legitimate interests: To improve app performance, fix crashes, and provide notifications using anonymized analytics.

• Consent: For non-essential features like certain notifications or analytics (you can withdraw consent anytime via device settings).

• Contractual necessity: To provide the core email management functionality you request.

4. Permissions We Use in Our App and Why

The app requests the following Android permissions only when needed:

Notifications

• POST_NOTIFICATIONS: Allows the app to show you new email alerts and important updates via Firebase Cloud Messaging.

System & Device Access

• ACCESS_NETWORK_STATE and INTERNET: Required to check internet connection so the app can sync emails, deliver push notifications, and load content efficiently.

• WAKE_LOCK and DISABLE_KEYGUARD: Used temporarily to ensure important notifications can wake the device when the screen is off or locked.

You can manage or revoke these permissions anytime in your device Settings → Apps → MailBox: Email App.

5. Data Storage and Security

Most data (including custom email templates) is stored locally on your device using secure local databases. We do not transmit your personal email data to our servers.

We implement reasonable security measures to protect the limited anonymized data we process. However, no system is completely risk-free.

6. Third-Party Libraries & SDKs Used in Our App

We use the following libraries and SDKs:

Firebase Services (by Google)

• Firebase Analytics: Collects anonymized usage data and feature engagement to help us improve the app.

• Firebase Crashlytics: Sends anonymized crash reports so we can quickly fix bugs.

• Firebase Cloud Messaging (FCM): Powers push notifications.

• Firebase Bill of Materials: Ensures consistent and secure dependency versions.

Read more: Firebase Privacy Policy

Other Libraries

• EventBus: Helps different parts of the app communicate efficiently (local only, no data sharing).

• Lottie: Used to display smooth animations in the user interface.

• Room Database: Stores your custom templates and app preferences locally on your device. This data never leaves your device.

Advertising SDKs: We use Google AdMob, AdX, and Meta Audience Network to show ads. These may collect anonymized advertising identifiers for personalized ads.

Read more:

• Google Ad Policies

• Meta (Facebook) Privacy Policy

7. Advertising, Analytics, and Tracking Technologies

The app displays third-party ads through AdMob, AdX, and Meta. These services may use your device’s advertising ID (which you can reset in device settings) to show relevant ads.

Firebase Analytics helps us understand how users interact with the app. All data is anonymized and does not identify you personally.

8. Cookies and Similar Technologies

The app does not use traditional web cookies. However, third-party SDKs (Firebase, advertising networks) may use similar technologies like device identifiers or advertising IDs for analytics and ad personalization.

9. Detailed Information on the Processing of Your Personal Data

We process very limited anonymized data. Your actual email accounts are accessed directly through your email providers’ systems (Gmail, Yahoo, etc.) using standard protocols. We do not store or have access to your email passwords or content.

10. Data Retention and Deletion

Anonymized analytics data is kept only as long as necessary for the purposes described. Local data on your device is deleted when you uninstall the app.

11. Payment Terms and In-App Purchases

The app offers paid subscriptions and in-app purchases.

• All payments are handled securely by Google Play Billing.

• We do not collect, store, or see your payment details (such as card information or passwords).

• Subscriptions renew automatically unless canceled before the next billing date.

• You can manage or cancel subscriptions anytime in your Google Play account settings.

• You will continue to enjoy premium features until the end of the current billing period after cancellation.

• Google may share limited non-personal information (such as subscription status) with us so we can enable premium features.

• All refunds and cancellations are handled through Google Play according to their rules.

• We do not share your purchase information with any third parties except as required by Google for payment processing.

Read more: Google Play Terms of Service and Google Privacy Policy

12. User Rights Under GDPR

You have the right to:

• Access the personal data we hold about you

• Request correction or deletion

• Object to or restrict processing

• Withdraw consent

To exercise these rights, contact us at activeccapita@gmail.com.

13. User Rights Under CCPA/CPRA

California residents have rights to:

• Know what personal information is collected

• Request deletion of personal information

• Opt-out of the sale of personal information (we do not sell your data)

• Non-discrimination for exercising these rights

Contact us at activeccapita@gmail.com to exercise these rights.

14. “Do Not Track” (CalOPPA)

Our app does not respond to “Do Not Track” signals from browsers as it is a native Android application. You can manage tracking preferences through your device advertising settings.

15. International Data Transfers

Anonymized data processed by Firebase and advertising partners may be transferred to and stored in the United States and other countries. We rely on standard contractual clauses and adequacy decisions where required.

16. Protection from Malware and Network Misuse

We do not engage in any malware distribution or network misuse. The app only uses network access for legitimate email syncing, notifications, and analytics.

17. Links to Other Websites and Apps

The app may contain links to third-party websites or services. We are not responsible for their privacy practices. Please review their policies separately.

18. Children’s Privacy

This app is not targeted at or intended for children under 13. We do not knowingly collect data from children under 13.

19. Compliance with Legal Obligations and Law Enforcement

We may disclose anonymized or limited data if required by law, court order, or government request.

20. Changes to This Privacy Policy

We may update this Privacy Policy occasionally. We will notify you of significant changes by updating the “Last Updated” date and, when possible, through an in-app notice.

21. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

activeccapita@gmail.com

Developer: Capital Active

Address: Gujarat, India