MailGreet Logo

    Privacy Policy

    At Mailgreet, your privacy is our priority. We are committed to transparency, secure email delivery, and protecting your personal data. This Privacy Policy explains what data we collect, how we use it, when we share it, and your rights regarding your data. This policy applies to all interactions with Mailgreet, including website visitors, account users, trial users, customers, prospects, and support contacts.

    1. Scope of This Privacy Policy

    This Privacy Policy applies to:

    • Visitors to the Mailgreet website
    • Mailgreet account owners and users
    • Leads, newsletter subscribers, and demo/book-a-call submissions
    • Support and sales contacts
    • Data processed within customer accounts where Mailgreet acts as a data controller
    Important Note:When Mailgreet processes customer-uploaded data (e.g., subscriber lists, campaign content), the customer is the data controller, and Mailgreet acts as the data processor. This distinction ensures compliance with global privacy standards and clarifies responsibilities.

    2. Who We Are

    Mailgreet is a trusted provider of email marketing, automation, and analytics solutions. Here’s who we are:

    If applicable, we also provide details of our Data Protection Officer (DPO) or regional privacy representatives to ensure compliance with local regulations.

    Why This Matters: Identifying the legal entity responsible for processing your data ensures transparency and builds trust, especially for enterprise customers.

    3. Mailgreet’s Role: Controller vs Processor

    A. When Mailgreet is a Data Controller

    Mailgreet acts as a data controller when processing data for:

    • Account registration and management
    • Billing and contact information
    • Website analytics and performance tracking
    • Sales/demo/contact form submissions
    • Newsletter subscriptions
    • Customer support communications
    • Fraud prevention and security logs

    B. When Mailgreet is a Data Processor

    Mailgreet processes data on behalf of customers, including:

    • Subscriber/contact lists uploaded by customers
    • Campaign content and audience segmentation fields
    • Automation workflow data
    • Analytics for customer campaigns
    • API/webhook payloads tied to customer activity
    • Imported CRM, eCommerce, or integration data

    C. Customer Responsibility

    Customers are responsible for:

    • Lawful collection of subscriber data
    • Providing notices and obtaining consent from their subscribers
    • Handling data subject rights requests

    Mailgreet processes such data under customer instructions as outlined in our Data Processing Agreement.

    4. Categories of Personal Data We Collect

    We collect and process the following categories of personal data:

    A. Information You Provide Directly

    • Name, email address, company name, phone number
    • Billing information (e.g., credit card details)
    • Support messages and inquiries
    • Submitted forms, such as demo requests or contact forms

    B. Account and Workspace Data

    • User profiles, including names and roles
    • Workspace/organization data
    • Sender identities and authentication settings
    • Role/seat information for account users

    C. Customer Campaign and Subscriber Data

    • Subscriber email addresses and custom fields
    • List and segment data for campaigns
    • Campaign content, including email templates and attachments
    • Unsubscribe and suppression data
    • Consent-related records where applicable

    D. Usage and Technical Data

    • IP address, browser and device data, operating system
    • Pages viewed, event logs, and log files
    • Cookie identifiers and tracking data

    E. Integration and Developer Data

    • API keys and token metadata
    • Webhook endpoints and delivery logs
    • Integration metadata and sync/import activity

    F. Payment and Transaction Data

    • Billing records, invoices, and payment history
    • Fraud/risk signals for secure transactions

    5. Sources of Personal Data

    We collect personal data from the following sources:

    • Directly from users: Information provided during account creation, form submissions, or customer support interactions.
    • Automatically from devices and browsers: Data collected through cookies, analytics tools, and event logs.
    • From connected integrations: Data synced from CRM, eCommerce, or other platforms.
    • From customer imports and API submissions: Subscriber lists, campaign data, and other uploaded content.
    • From payment processors and anti-fraud providers: Transactional data and fraud prevention signals.
    • From support or communication platforms: Data from emails, chats, or calls with our support team.

    6. How We Use Personal Data

    We use personal data for the following purposes:

    • Platform Operations: To provide and operate the Mailgreet platform.
    • Account Management: To create and manage user accounts.
    • Payment Processing: To process payments and manage subscriptions.
    • Email Delivery: To deliver campaigns and transactional emails.
    • Verification: To verify recipient email addresses and improve deliverability.
    • Automation and Personalization: To support workflows, segmentation, and personalization.
    • Analytics and Reporting: To provide insights into campaign performance and user behavior.
    • Integrations and APIs: To enable integrations, APIs, and webhooks.
    • Fraud Prevention: To detect and prevent abuse, spam, and security incidents.
    • Legal Compliance: To comply with applicable laws and regulations.
    • Service Communications: To send important updates about your account or the platform.
    • Marketing Communications: To send promotional content where permitted.

    7. Legal Basis for Processing

    Where required under applicable privacy laws, Mailgreet processes personal data only when we have a valid legal basis to do so. The legal basis we rely on depends on the type of data involved and the purpose of processing.

    We may process personal data where it is necessary to perform a contract, comply with a legal obligation, pursue our legitimate interests, or where you have provided consent. These legal bases help us operate the platform lawfully and responsibly.

    Examples of Legal Bases We Rely On:

    Account creation and management

    • Data Used: Name, email address, billing details
    • Legal Basis: Contractual necessity
    • Retention: While the account is active and for a limited period afterward

    Marketing communications

    • Data Used: Email address, subscription preferences
    • Legal Basis: Consent or legitimate interests, where permitted
    • Retention: Until you unsubscribe or become inactive

    Fraud prevention and security

    • Data Used: IP address, device data, event logs
    • Legal Basis: Legitimate interests and legal obligation, where applicable
    • Retention: For defined security and compliance periods

    8. Product-Specific Privacy Disclosures

    • 8.1 Email VerificationWe process recipient email addresses to verify quality, reduce bounces, and improve deliverability.
    • 8.2 Campaigns and AutomationWe process campaign content, audience segmentation, and interaction events to optimize email performance.
    • 8.3 Analytics and Funnel TrackingWe track opens, clicks, bounces, and other events to generate actionable insights.
    • 8.4 APIs, SDKs, and WebhooksWe process API requests, authentication data, and webhook payloads for developer features.
    • 8.5 IntegrationsWhen users connect platforms (e.g., CRM, eCommerce), we sync relevant data under user instructions.
    • 8.6 Security and Compliance FeaturesWe support abuse prevention, sender authentication, and consent/unsubscribe management.

    9. How We Share Personal Data

    We share data with:

    • Hosting/infrastructure providers
    • Payment processors
    • Analytics providers
    • Customer support tools
    • Fraud prevention services
    • Integration partners (at user direction)
    • Law enforcement (when legally required)

    Note: Mailgreet does not sell personal data.

    10. International Data Transfers

    Your data may be processed globally. We use safeguards like:

    • Standard contractual clauses
    • Supplementary measures where required

    11. Data Retention

    Mailgreet retains personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy. We may also retain certain information to comply with legal, operational, security, or financial obligations.

    • Account data: Retained while your account is active and for a limited period after closure
    • Billing and payment records: Retained as required by tax, accounting, and financial laws
    • Support tickets and communications: Retained for operational, quality, and legal purposes
    • Security logs and technical records: Retained for defined security, compliance, and troubleshooting periods

    Where Mailgreet acts as a data processor, retention may also depend on customer instructions, contract terms, and applicable legal requirements.

    12. Data Security

    We implement:

    • Encryption and secure transport
    • Access controls and monitoring
    • Multi-tenant isolation
    • Incident response protocols

    13. Your Privacy Rights

    Depending on your location and the laws that apply to you, you may have certain rights regarding your personal data. These may include the right to access, correct, delete, restrict, or object to the processing of your data.

    You may also have the right to withdraw consent, request data portability, or file a complaint with a relevant regulatory authority. To exercise any of these rights, please contact us at support@mailgreet.com.

    Where Mailgreet processes data on behalf of a customer, we may direct you to that customer, as they are typically the data controller responsible for handling such requests.

    14. Region-Specific Privacy Notices

    14.1 EEA, UK, and Switzerland

    If you are located in the EEA, UK, or Switzerland, you may have rights under applicable privacy laws, including the right to access, correct, erase, restrict, object, and request portability of your personal data.

    You may also have the right to withdraw consent and to lodge a complaint with your local supervisory authority. Mailgreet will respond to qualifying requests in accordance with applicable law.

    14.2 California and Other U.S. State Privacy Rights

    If you are a resident of California or another U.S. state with privacy laws, you may have rights related to access, correction, deletion, and portability of certain personal data. You may also have rights relating to certain disclosures and forms of data sharing, where applicable.

    Mailgreet does not sell personal data. We will not discriminate against users for exercising privacy rights granted under applicable law.

    14.3 Other Regions

    If the laws in your country or region provide additional privacy rights, Mailgreet will handle personal data in accordance with those laws where they apply. You may contact us for more information about your specific privacy rights.

    15. Cookies and Similar Technologies

    Mailgreet may use cookies, pixels, local storage, and similar technologies to operate the website and platform, improve user experience, remember preferences, maintain security, and measure performance.

    Some of these technologies are necessary for core functionality, while others support analytics, features, or communications. Where required, we will request consent before using non-essential cookies.

    You can manage cookie preferences through your browser settings or any cookie controls made available on our website. For more details, please review our Policy.

    16. Third-Party Services and Linked Sites

    Mailgreet’s website and platform may include links to third-party websites, applications, or services. This Privacy Policy does not apply to the practices of those third parties.

    If you choose to access or enable a third-party service, your interaction with that service will be governed by its own terms and privacy policy. We encourage you to review those policies before sharing personal data.

    17. Children’s Privacy

    Mailgreet is not directed to children and is not intended for use by individuals below the age permitted under applicable law. We do not knowingly collect personal data from children in violation of legal requirements.

    If we become aware that such data has been collected without proper authorization, we will take reasonable steps to delete it or otherwise handle it as required by law. If you believe a child has submitted personal data to Mailgreet, please contact us at support@mailgreet.com.

    18. Changes to This Privacy Policy

    We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or privacy practices. When we do, we will revise the “Last Updated” date shown at the top of this page.

    If we make material changes, we may provide additional notice through the platform, email, or our website, where required by law. Continued use of Mailgreet after such updates may constitute acceptance of the revised policy, where permitted.

    19. Contact Us

    If you have any questions, concerns, or requests related to this Privacy Policy or how Mailgreet processes personal data, you may contact us using the details below:

    You may contact us to exercise your privacy rights, request information about our data practices, or raise a privacy-related concern.

    Last updated: March 11, 2026