mailzy.us

Legal

Privacy Policy

Last updated: May 11, 2026

This policy explains what data mailzy.us collects, why, and how we protect it.

What we collect

  • Account info (email, password hash).
  • Organization & contact details from onboarding.
  • Domain credentials and outreach-tool credentials, encrypted at rest.
  • Payment metadata (Stripe customer ID; bKash transaction ID).
  • Support ticket content and attachments.
  • Standard log data (IP, user agent, request times).

How we use it

  • Provisioning and managing your Workspace mailboxes.
  • Billing and renewal notifications.
  • Security monitoring and fraud prevention.
  • Responding to support requests.

Encryption & retention

Sensitive credentials submitted during onboarding are AES-256-GCM encrypted with a server-only master key. They are auto-purged 30 days after your order is marked active.

Sharing

We do not sell your data. We share only with sub-processors required to run the service (e.g. Google Workspace, Stripe, our cloud infrastructure). See our DPA.

Your rights

You may request a JSON export of your data or full account deletion from your dashboard's Privacy section, or by emailing support@mailzy.us.

Cookies

We use only essential cookies for authentication and basic preferences. See our Cookie Policy.

Contact

Privacy questions: support@mailzy.us