Legal

Privacy Policy

Last updated: April 13, 2026

We take your privacy seriously. This is the plain-English truth about what SendLock does — and does not — do with your data. No legalese. No surprises.

1. What We Collect

SendLock stores only the bare minimum required to work:

Your chosen delay duration and trial or license status
A count of how many times SendLock has helped you — how many emails you stopped, edited, or canceled. This number contains no email content whatsoever.

That is it. Nothing else.

2. What We Never Collect

SendLock never reads, collects, or stores the content of your emails — including email bodies, subject lines, attachments, recipient addresses, or any other Gmail content of any kind. Your messages never leave your browser.

We also never collect:

Your contacts' names or email addresses
Inbox metadata of any kind
Personally identifiable information beyond basic account and license details

3. Where Your Data Lives

All settings are stored locally using chrome.storage.sync so your preferences follow you across Chrome profiles. There are no third-party data lakes. No mysterious servers. Just your browser.

4. Why We Need Permissions

Some Chrome permissions sound alarming. Here is exactly why we use each one:

Storage — so your delay setting and license status persist when you close Chrome.
Identity (if used) — only for secure sign-in and license verification.
Host permission (https://mail.google.com/*) — so we can step between you and the Send button, give you the customizable delay safety net, and show you the cancel or confirm banner.

We do not request any permission we do not need.

5. What We Share

Nothing. We do not sell, rent, trade, or share your information with anyone. The only exception is if a court order legally requires us to — in which case we would have almost nothing to provide anyway, since we do not store your email content.

Coming Soon — Opt-In Feature

6. SendLock AI (Optional Feature)

SendLock is developing an optional SendLock AI feature that analyzes email tone, emotion, and potential mistakes before sending. This feature is opt-in only and is not yet active. When it launches, here is exactly how it will work:

You choose to enable it. It will never be on by default. You can turn it off at any time.
Your email is encrypted before it leaves your browser. The content is transmitted securely to Anthropic's API for analysis.
Analysis takes approximately one second. The AI evaluates tone, emotional signals, and potential mistakes.
Only the warning returns. The API returns a signal — for example, "this email reads as frustrated" — and nothing else. Your full email content is never stored or retained.
Nothing is stored by SendLock. We retain zero email content from AI analysis. Not a word.

About Anthropic's API: SendLock uses Anthropic's commercial Claude API — not the consumer Claude.ai product. Under Anthropic's commercial API terms, your data is never used to train AI models, and API logs are retained by Anthropic for a maximum of 7 days before being permanently deleted. You can review Anthropic's API data policy at anthropic.com/legal/privacy.

Enabling SendLock AI will require separate explicit consent and agreement to additional terms specific to this feature.

7. Security

SendLock has passed Google's Computed Attack Surface Analysis (CASA) security assessment on the first attempt with zero vulnerabilities. All settings are encrypted at rest using AES-256 and in transit using TLS 1.2+. Our full codebase was audited by an enterprise-grade security firm personally recommended by Google.

8. Data Retention and Deletion

SendLock does not store Gmail message content or Google user data on its servers. All email processing occurs locally within your browser.

If you uninstall SendLock or revoke access, all OAuth tokens and locally stored extension data are immediately removed. Because we do not store your email content anywhere, there is nothing to delete.

You can revoke SendLock's access at any time at: myaccount.google.com/permissions

9. Changes to This Policy

If we change what we collect or how we handle your data, we will update this page and the "Last updated" date at the top. No hidden changes. Ever.

Questions about this policy? Email us at support@sendlock.com. We are based in Milwaukee, WI, USA.