← Home

Privacy Policy / 隱私權政策

Last updated: 2026-05-07

English summary: InboxTidy reads only the metadata of your Gmail messages (sender address, subject line, date) to suggest categories and apply Gmail labels you confirm. We never read message bodies or attachments. We never sell your data.

中文摘要:InboxTidy 只讀取 Gmail 訊息的中繼資料(寄件人、主旨、日期)以建議分類,並在你確認後寫入 Gmail 標籤。我們不讀取信件內文或附件,也不販售你的資料。

1. Who we are / 我們是誰

InboxTidy is operated as a sole proprietorship by SHIA KE TAI, based in Taiwan. Contact: support@sonini.app.

InboxTidy 由 SHIA KE TAI(個人營運,所在地:台灣)提供。聯絡方式:support@sonini.app

2. What we access / 我們存取什麼

When you authenticate via Google OAuth, we request the minimum scopes needed:

  • gmail.metadata — read message headers (From, Subject, Date) only. No body or snippet is ever fetched.
  • gmail.labels — list, create, and rename labels under IS/.
  • gmail.modify — apply (and only apply) the labels you confirm to the messages you selected. We do not delete, archive, or move messages out of your inbox.

當你以 Google OAuth 授權,我們只請求必要的最小權限:讀取信件標頭(不含內文)、管理 IS/ 標籤、以及在你確認後對選定信件套用標籤。我們不會刪除、封存或搬移你的信件。

3. What we store / 我們儲存什麼

On your account

  • An OAuth access token (short-lived) used during the active session only.
  • The most recent scan result is held in server memory for up to 30 minutes so you can apply labels without rescanning, then automatically discarded.
  • We do not store your email content, sender list, or attachments anywhere.

Aggregated, anonymous signals

When you manually correct a category in the result page and click Apply, we record a vote of the form { sender_domain, target_category } in our shared database (Upstash Redis). These votes are aggregated across all users and used to improve classification for everyone. They contain no personal information, no sender name, no subject line, and no message ID after the apply step.

當你在結果頁手動更正分類並按「套用」,我們會記錄一筆「寄件網域 → 目標類別」的匿名投票, 用於跨使用者改善分類準確度。投票不包含任何個人資訊、寄件人姓名、主旨或郵件 ID。

4. What we do NOT do / 我們不做的事

  • We do not read message bodies, snippets, or attachments.
  • We do not delete or archive your emails.
  • We do not sell, rent, or share your data with advertisers.
  • We do not train machine learning models on your personal email content.
  • We do not send you marketing email without your explicit opt-in.

5. Third parties / 第三方

  • Google — OAuth login and Gmail API access, governed by Google's own policies.
  • Vercel — application hosting in the United States / EU regions.
  • Upstash — anonymous vote aggregation only (no personal data).
  • Stripe — payment processing for paid scans. Stripe stores billing information; we never see full card numbers.

6. Data retention / 保存期限

  • OAuth session: cleared when you close the browser tab or after 30 minutes idle.
  • Scan results in memory: ≤ 30 minutes after your last activity.
  • Aggregated votes: kept indefinitely as anonymous counts; per-message dedup keys for 90 days.
  • Stripe transaction records: kept as required by Taiwan tax law (typically 5 years).

7. Your rights / 你的權利

You can revoke access at any time via Google Account → Security → Third-party access. You may also request deletion of any Stripe-related personal data by contacting support@sonini.app. See our Data Deletion page for details.

8. Changes / 更新

We will update this page when our practices change and revise the "Last updated" date above. Material changes will be announced on the homepage.

9. Limited Use disclosure (Google API)

InboxTidy's use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.