spindle privacy policy

Privacy Policy

Effective date: May 2026

Spindle is a self-hosted, personal email client. This policy describes what information Spindle collects, how it is stored, and how it is used when you connect email accounts through the application.

//information we collect

Spindle collects only the information required to operate as an email client:

//how we use your information

All data collected by Spindle is used exclusively to provide the core email-client functionality:

Spindle does not use your data for analytics, advertising, profiling, or any purpose beyond operating the application.

//google user data

Spindle's use of data obtained from Google APIs complies with the Google API Services User Data Policy , including the Limited Use requirements.

Specifically:

//microsoft user data

When you connect an Outlook account, Spindle uses the Microsoft Graph API to access your mail on your behalf. OAuth tokens issued by Microsoft are encrypted with AES-256-GCM and stored locally. They are never transmitted to any party other than Microsoft. Spindle requests only the permissions required to read, send, and manage your mail (Mail.ReadWrite, Mail.Send, offline_access).

//administrator access

Each Spindle instance has at least one administrator. Administrators can view the list of registered users, generate and revoke invite codes, change user roles, and permanently delete user accounts. If your account is on a shared Spindle instance, the administrator of that instance may take these actions on your account.

//data storage and security

//data sharing

Spindle does not sell, rent, or share your personal data with third parties. The only external services your data touches are the email providers you explicitly connect (e.g., Google for Gmail accounts) — and only to fulfil your requests within the application.

//data retention and deletion

Your data is retained for as long as your Spindle account exists. You can delete your account at any time from the settings panel. Deleting your account permanently removes your user record and all associated email account credentials from the database.

Revoking Spindle's access to your Google account via Google Account Permissions will invalidate the stored OAuth tokens and prevent Spindle from accessing your Gmail until you reconnect.

//contact

Spindle is a self-hosted application. If you have questions about this policy or about how your data is handled on a specific deployment, please contact the person or organisation operating that instance.