Munin ← Back to home

Legal

Privacy Policy

Last updated: January 1, 2025

Munin is built on a simple principle: your email is yours. This policy explains what data we collect, what we don't, and how we handle the information we do receive.

1. What Munin Does

Munin is a desktop application that connects to your Gmail account via Google's official OAuth 2.0 API. It reads and organizes your email locally on your device. We do not operate mail servers or relay your messages through our infrastructure.

2. Data We Do Not Collect

We never collect, transmit, or store:

  • The content of your emails
  • Your email attachments
  • Your contacts or address book
  • Your Gmail labels or filters
  • Any data from your Google account beyond what you explicitly authorize

Your email data stays between your device and Google's servers. Munin is a local client — not a middleman.

3. Google OAuth & Gmail Access

To use Munin, you authorize it to access your Gmail account through Google's OAuth 2.0. The OAuth token that grants this access is stored locally on your device (encrypted in your system keychain) and is never transmitted to our servers.

Munin's use of Gmail data is governed by the Google API Services User Data Policy, including the Limited Use requirements.

4. Information We May Collect

Waitlist signups. If you join our waitlist, we collect your email address to notify you when Munin launches. We use this address for no other purpose and will not share it with third parties.

Crash reports. The app may send anonymous crash reports to help us fix bugs. These reports contain technical information about the crash (stack traces, OS version, app version) and no personal or email data. You can opt out of crash reporting in the app's settings.

Usage analytics. We may collect anonymous, aggregated usage statistics (e.g., which features are used most) to guide product decisions. This data contains no personally identifying information. You can opt out in settings.

5. Data Storage & Security

Waitlist email addresses are stored with our email service provider and protected by industry-standard security practices. OAuth tokens are stored only on your local device using your operating system's secure credential storage. We apply encryption in transit (TLS) wherever data moves over a network.

6. Third-Party Services

Munin uses Google's Gmail API. Your use of Gmail is subject to Google's Privacy Policy. We do not sell or share your information with any other third parties.

7. Your Rights

You may at any time:

  • Revoke Munin's access to your Gmail account via your Google account settings
  • Request removal of your waitlist email address by contacting us
  • Uninstall the application, which removes all locally stored data

8. Children's Privacy

Munin is not directed at children under 13. We do not knowingly collect personal information from anyone under 13.

9. Changes to This Policy

We may update this policy as the product evolves. Material changes will be communicated via email (if you're on our waitlist) and posted on this page with a revised date.

10. Contact

Questions about this policy? Email us at privacy@mailmunin.com.