Last updated: January 27, 2024
When you add an account into Sugar Mail, including but not limited to your Primary Account, the app will upload the account's information to its servers, for the sole purpose of receiving and sending email messages on your behalf in this account, which is the core feature of the app.
This information is not shared with any third party and is not used for targeted advertising.
You can remove an email account's information (data) from the app and its servers by opening the app's Settings, tapping the account, and then Remove. The data will be completely removed immediately.
Connections to mail servers are encrypted using TLS, the industry standard for network traffic encryption. TLS 1.3 is supported if available.
For these mail services, Sugar Mail utilizes an advanced authentication method called OAUTH2 which lets the app access your email and only your email (and nothing else in your account), without knowing or storing the account's password.
This is the method strongly preferred by Google, Yahoo, Hotmail, and other large email providers.
When setting up an account in Sugar Mail, you grant the app the permission to access your emails in a special window that's presented by Gmail / Yahoo / Hotmail / Yandex, not the app.
The permission(s) can be revoked without changing the account's password.
For Gmail (Google) accounts this can be done on Google account management page under apps with access to your account.
For Outlook.com / Hotmail, it's in account settings.
For Yahoo, it's in account settings under recent activity.
For Yandex, it's in Yandex Passport settings.
The app by default collects anonymous statistical data such as the number of installs per country. This can be turned off in the app's Settings under About.
The app does not use ads, and therefore does not contain any trackers that are often used by ad networks.
Sometimes spammers use linked images to know if you've opened a message. By default, Sugar Mail blocks externally linked content including such images and only trusts senders in your contacts. For others, you need to tap a button to show linked content.
Sugar Mail is one of a few email apps that passes the email app privacy test on Email Privacy Tester.
The use of information received from Google APIs adheres to Google API Services User Data Policy, including the Limited Use requirements.
Data collection disclosures
When you add a Gmail account into Sugar Mail, the app obtains the following information about you:
Data protection disclosures
Sugar Mail uses encryption to protect the confidentiality of your Google data collected. We utilize accepted industry standards and practices.
Data sharing disclosures
Sugar Mail does not transfer or disclose your Google information to third parties.
Data use disclosures
Sugar Mail uses your Google data to send and receieve email on your behalf which is this app's sole purpose.
The OAUTH2 token is used to log into the Gmail account as you, as required by Google.
The profile picture is used to personalize the account's presentation in the app.
Received messages are presented in the Android app so you can read them.
The name is used when sending email messages, if you do.
You can contact support for technical help or for DPO or GDPR inquiries at support@sugarmail.app