Privacy Policy

Mass Unsubscribe Gmail Chrome Extension

Last Updated: November 9, 2025

Overview

Mass Unsubscribe Gmail is committed to protecting your privacy. This Privacy Policy explains how our Chrome extension accesses, uses, and protects your data.

What Data We Access

Our extension requires access to your Gmail data to provide email cleanup functionality. Specifically, we access:

  • Email Headers: We read sender addresses (From), subject lines, and List-Unsubscribe headers to identify subscription emails
  • Email Metadata: We access email IDs and labels to organize and manage your inbox
  • Your Email Address: We display your Gmail address in the extension interface for account identification

What We DO NOT Access:

  • Full email body content
  • Email attachments
  • Personal correspondence beyond subscription emails
  • Your contacts or address book
  • Other Google services (Calendar, Drive, etc.)

How We Use Your Data

We use the accessed data solely for the following purposes:

  • Inbox Scanning: Identify which senders send you the most emails
  • Email Management: Move selected emails to Gmail Trash (not permanent deletion)
  • Unsubscribe Processing: Find and process List-Unsubscribe headers to help you unsubscribe from mailing lists
  • Display Statistics: Show you email counts per sender in the extension interface

Data Storage

What We Store:

  • Your email address (for authentication purposes)
  • OAuth access tokens (encrypted and stored securely)
  • Operation logs (for displaying your unsubscribe history)

What We DO NOT Store:

  • Email content or message bodies
  • Email attachments
  • Personal correspondence
  • Any sensitive personal information beyond what's necessary for authentication

Where Data is Stored:

  • OAuth tokens are stored locally in Chrome's secure storage
  • Operation logs are stored on our secure backend server hosted on Railway
  • All data transmission uses HTTPS encryption

OAuth Scopes and Permissions

Our extension requests the following Google OAuth scopes:

  • gmail.modify: Allows reading email metadata and modifying email labels (moving to trash, marking as read). This is the minimum scope required for our functionality.
  • userinfo.email: Allows displaying your email address in the extension interface

Every action that uses these permissions requires your explicit consent - we never automatically modify your emails.

Data Sharing and Third Parties

We DO NOT:

  • Sell your data to third parties
  • Share your data with advertisers
  • Use your data for marketing purposes
  • Transfer your data to data brokers or resellers
  • Use your data for AI training or machine learning

Limited Data Sharing:

We only share your data in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations
  • For security purposes (investigating abuse or bugs)

Data Security

We implement industry-standard security measures to protect your data:

  • All data transmission uses HTTPS/TLS encryption
  • OAuth tokens are stored securely using Chrome's identity API
  • Backend server uses secure authentication and rate limiting
  • Regular security audits and updates

Your Rights and Control

You have complete control over your data:

  • Revoke Access: You can revoke our extension's access at any time via Google Account Permissions
  • Uninstall: Uninstalling the extension immediately stops all data access
  • Data Deletion: Contact us to request deletion of your stored data
  • Data Access: Request a copy of your stored data by contacting us

GDPR Compliance

For users in the European Union, we comply with GDPR requirements:

  • Data Minimization: We only collect the minimum data necessary
  • Purpose Limitation: Data is only used for stated purposes
  • Transparency: Clear explanation of data usage (this policy)
  • User Rights: Right to access, rectification, erasure, and data portability

Children's Privacy

Our extension is not intended for children under 13 years of age. We do not knowingly collect data from children.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of significant changes by:

  • Updating the "Last Updated" date at the top of this policy
  • Displaying a notice in the extension interface

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

  • Email: extensionmassunsubscribe@gmail.com

Google API Services User Data Policy Compliance

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We only use data to provide user-facing features in our extension
  • We do not transfer data to third parties except as required by law
  • Humans cannot read your data except for security purposes or with your explicit consent
  • We do not use your data for advertising, credit-worthiness, or lending purposes