We built Matome to make your inbox easier to manage. This policy explains what data we collect, how we use it, and the choices you have. We've kept it as clear as we can while covering everything that matters.
Account Information. When you sign up, we collect your name and email address through Google OAuth. If you subscribe to a paid membership, Stripe processes your payment information on our behalf. We do not store your credit card number, CVC, or full card details on our servers.
Email Data. To provide our filtering service, Matome accesses and processes the content of your incoming emails through the Gmail API. This includes sender information, subject lines, message bodies, headers, and metadata. This access is necessary to accurately identify and filter unwanted sales and marketing messages and to generate your daily Matome brief.
Usage Data. We collect information about how you interact with Matome, including filtering preferences, feature usage, and session activity. We use essential cookies for authentication and session management, and analytics cookies to understand how the service is used.
To Provide the Service. We use your email data and account information to deliver Matome's core filtering functionality, generate your daily brief, and manage your account. This is the primary and essential use of your data.
To Personalize Your Experience. Matome uses machine learning to improve the accuracy of email filtering for your account specifically. Any machine learning models trained on your email data are personalized to you alone. Your email data is not combined with other users' data to train generalized or non-personalized AI or machine learning models. Your email data obtained through the Gmail API is not used to develop, improve, or train any generalized, foundational, or frontier AI or ML models.
To Communicate with You. We may use your email address to send service-related communications, such as your daily Matome brief, account updates, and responses to support requests. We do not send promotional emails to you on behalf of third parties.
We want to be explicit about what Matome will never do with your information:
No Advertising. We do not use your email data or personal information for advertising purposes, including serving ads, retargeting, personalized advertising, or interest-based advertising.
No Data Sales. We do not sell, rent, license, or trade your personal information or email data to any third party, including advertisers, data brokers, or information resellers.
No Unauthorized Human Access. Matome employees and contractors do not read your emails unless (a) you have given specific, affirmative consent to view a particular message (for example, as part of a support request you initiated), (b) it is necessary for security purposes such as investigating abuse or a security incident, (c) it is required to comply with applicable law, or (d) the data has been aggregated and anonymized such that it is no longer personally identifiable and is used only for internal operational purposes.
No Creditworthiness or Surveillance. Your data is never used to determine creditworthiness or for lending purposes, and is never provided to any entity for the purpose of conducting surveillance.
Your data is stored on US-based cloud infrastructure using industry-standard encryption in transit (TLS 1.2+) and at rest (AES-256). We implement reasonable administrative, technical, and physical safeguards designed to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include access controls, audit logging, and regular security reviews.
We retain your email data only for as long as necessary to provide the Service. We do not create permanent copies or databases of your email content beyond what is required for active filtering and brief generation. No method of electronic storage is 100% secure, and we cannot guarantee absolute security.
We work with a limited number of third-party service providers to operate Matome:
Google — for OAuth authentication and Gmail API access to your email account.
Stripe — for processing membership payments. Stripe receives only the payment information necessary to complete transactions and is subject to its own privacy policy.
Analytics Providers — to help us understand how the service is used. Analytics data is aggregated and does not include your email content.
These providers are contractually bound to use your data only as necessary to perform services on our behalf and in accordance with this policy. We do not transfer your email data obtained through the Gmail API to any third party except as described above, or as necessary to comply with applicable law, as part of a merger, acquisition, or sale of assets (with prior explicit notice and consent), or to protect against security threats or abuse.
Access & Portability. You may request a copy of the personal data we hold about you at any time by emailing hello@matome.ai.
Correction. You may request correction of any inaccurate personal data we hold about you.
Deletion. You may request deletion of your account and all associated personal data at any time by emailing hello@matome.ai or replying to any Matome email. Upon receiving a verified deletion request, we will remove your personal information from our active systems within 90 days. Some data may be retained in encrypted backups for a limited period as required for legal or operational purposes, after which it will be permanently deleted.
Revoke Access. You may revoke Matome's access to your Google account at any time through your Google Account permissions. Revoking access will immediately stop Matome from accessing your email data.
Unsubscribe. You can stop receiving Matome emails at any time by clicking the unsubscribe link in any email or by contacting us directly.
Cookies. Most browsers allow you to manage cookie preferences through their settings. Disabling essential cookies may affect your ability to use Matome. You may disable analytics cookies without affecting core functionality.
If you are a California resident, you have the right to know what personal information we collect, the purposes for which it is used, and whether it is sold or disclosed. You have the right to request deletion of your personal data and to opt out of the sale of your personal information. Matome does not sell your personal information. To exercise your rights, contact us at hello@matome.ai. We will not discriminate against you for exercising any of your CCPA rights.
If you are located in the European Economic Area, you have additional rights under the General Data Protection Regulation, including the right to access, rectify, port, and erase your data, as well as the right to restrict or object to certain processing. Our legal bases for processing your data are: (a) your explicit consent, provided when you connect your email account and authorize Gmail API access; (b) performance of a contract, as processing is necessary to deliver the Service you have requested; and (c) our legitimate interest in maintaining the security and integrity of the Service. You may withdraw your consent at any time by revoking Matome's access through your Google Account settings or by contacting us. To exercise any of these rights, contact us at hello@matome.ai.
Matome is not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that a child has provided us with personal data, we will take steps to delete that information promptly. If you believe a child under 16 has provided us with personal information, please contact us at hello@matome.ai.
In the event of a data breach that affects your personal information, we will notify affected users by email and, where required by applicable law, notify the relevant supervisory authorities within the timeframes required by law. Our notification will describe the nature of the breach, the data affected, and the steps we are taking in response.
Matome's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically, Matome:
(a) Only uses access to Google user data to provide and improve user-facing features that are prominent in Matome's user interface, namely email filtering, classification, and daily brief generation.
(b) Does not transfer Google user data to third parties except as necessary to provide or improve user-facing features (with user consent), to comply with applicable law, or as part of a merger or acquisition (with explicit prior consent). Matome does not transfer Google user data to any advertising platform, data broker, or information reseller.
(c) Does not use Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising.
(d) Does not allow humans to read Google user data unless the user has provided affirmative consent to view specific messages, it is necessary for security purposes, it is required by applicable law, or the data is aggregated and anonymized for internal operations.
(e) Does not use Google user data to develop, improve, or train non-personalized AI or machine learning models. Any machine learning applied to your email data is personalized to your account only and is not co-mingled with other users' data for generalized model training.
We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date below. If we make material changes — particularly changes to how we access, use, or share your Google user data — we will notify you by email before the changes take effect and will request your consent before accessing any types of data not previously disclosed. Your continued use of Matome after any non-material changes constitutes acceptance of the revised policy.
If you have questions about this Privacy Policy, your data, or your rights, contact us at hello@matome.ai.
Last updated: April 2026