Privacy Policy
This Privacy Policy describes how TempoMail.id ("we", "our", "the Service") collects, uses, and protects information when you use our disposable email service. We are committed to transparency and to protecting your privacy.
1. Information We Collect
TempoMail is designed to minimize data collection. We do not require registration, login, or any personal information to use the service. When you create a temporary inbox, we store: - The inbox name (chosen by you or randomly generated) - A hashed version of your access code (we never store the code itself) - The creation date and expiration date - The email domain selected When you receive emails, we store: - The encrypted email content (sender, subject, body, attachments) - The reception timestamp When you use the contact form, we store: - Your name, email address, and message - Your IP address (for anti-spam purposes) We do not collect or store: - Your real email address (unless you provide it via the contact form) - Your browsing history on other sites - Any personally identifiable information beyond what is listed above
2. How We Use Your Information
The information we collect is used exclusively to provide and maintain the Service: - Inbox data is used to deliver and display your temporary emails - Hashed access codes are used to authenticate you when accessing your inbox - Contact form data is used solely to respond to your inquiries - Aggregate, anonymized statistics (total emails received, connections) are used to monitor service health We do not sell, rent, share, or trade any user data with third parties. We do not use your data for advertising, profiling, or marketing purposes.
3. Data Encryption & Security
All emails stored on TempoMail are encrypted using AES-256-GCM, an industry-standard authenticated encryption algorithm. Emails are encrypted immediately upon arrival, before being written to disk. They are only decrypted when accessed through the web interface or API with a valid access code. All connections to TempoMail use TLS (HTTPS) encryption in transit. We enforce HSTS and use secure, HttpOnly, SameSite cookies for session management. Dangerous email content is filtered: executable attachments (.exe, .bat, .js, etc.) are blocked, tracking pixels are removed, and HTML content is sanitized to prevent cross-site scripting (XSS) attacks.
4. Data Retention & Deletion
Temporary inboxes and their emails are automatically and permanently deleted when the retention period you chose expires. Retention options are 1 hour, 24 hours, 7 days, or 30 days. Deletion is irreversible — we do not keep backups of expired email data. You may also manually delete individual emails or purge all emails in your inbox at any time using the web interface. Contact form messages are stored until reviewed by our team and may be deleted after resolution. Anonymized aggregate statistics (email counts per hour/day, no individual data) are retained indefinitely to monitor service health.
5. Cookies & Local Storage
TempoMail uses the following cookies and browser storage: - Session cookie (HttpOnly, Secure): maintains your authenticated session and CSRF protection. Expires when you close your browser. - Theme cookie: remembers your light/dark mode preference. Lasts 1 year. - Language cookie: remembers your language preference. Lasts 1 year. - localStorage: stores your inbox history (names and access codes) locally in your browser. This data never leaves your device and is not transmitted to our servers. We use Google Analytics (GA4) for basic traffic statistics. Google may set its own cookies subject to Google's Privacy Policy. We do not use advertising cookies or retargeting pixels.
6. Third-Party Services
TempoMail integrates the following third-party services: - Google Analytics (GA4): for anonymous traffic statistics. Subject to Google's Privacy Policy. - jQuery and Clipboard.js: loaded from CDN for frontend functionality. No data is shared with these services. We do not use any other third-party tracking, analytics, or advertising services.
7. Your Rights
Since TempoMail does not collect personal data or require accounts, traditional data subject rights (access, rectification, portability) do not apply in the usual sense. However: - You can delete your emails at any time through the web interface - You can purge all emails in your inbox with one click - Your inbox and all associated data are automatically deleted upon expiration - If you contacted us via the contact form, you may request deletion of your message by emailing us For any privacy-related questions or concerns, please use our contact form.
8. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. Continued use of the Service after changes constitutes acceptance of the updated policy.
Last updated: April 2026