Legal
Privacy Policy
Effective date: July 7, 2026
POP3 for Gmail is a Chrome extension and managed sync service that lets you bring external POP3 mail back into your own Gmail account. This Privacy Policy explains what data we collect, how we use it, how long we keep it, and the choices you have.
If you do not agree with this Privacy Policy, please do not use POP3 for Gmail.
Who we are
POP3 for Gmail is operated by Amin Tahtahtoumi. For privacy requests, security questions, or deletion requests, contact [email protected].
What the service does
The service connects to POP3 mailboxes that you configure, imports new messages into your Gmail account through the Gmail API, and optionally helps you configure outgoing mail. It is designed for one purpose: restoring POP3-style mail collection inside Gmail.
Information we collect
Depending on how you use the service, we may process the following categories of information:
- Google sign-in data, including your Google account identifier, email address, display name, and profile image.
- Google OAuth tokens needed to keep the Gmail connection working after you sign in.
- POP3 account settings you provide, including mailbox email address, server hostname, port, security mode, username, encrypted password, label preferences, sync interval, and whether to leave mail on the original server.
- Optional outgoing mail settings, including SMTP hostname, port, security mode, username, encrypted password, sender email address, and sender display name when you choose the Bridge SMTP option.
- Email message content and attachments while the service imports messages from your POP3 mailbox into Gmail or sends a message through a configured SMTP server.
- Operational metadata, including sync status, timestamps, message identifiers used for deduplication, account status, delivery errors, and security logs.
- Basic technical data such as IP address, request timestamps, browser/extension requests, and server logs used to operate, secure, and troubleshoot the service.
How we use information
We use the information above only to provide and protect POP3 for Gmail. This includes:
- Authenticating you with Google OAuth.
- Connecting to the POP3 and SMTP servers you configure.
- Importing POP3 messages into your Gmail account.
- Creating and applying Gmail labels for imported mail.
- Preventing duplicate imports using POP3 message identifiers.
- Showing account status, sync history, and error logs.
- Detecting abuse, rate-limit violations, unauthorized access, and service misuse.
- Responding to support, privacy, security, and deletion requests.
Google API data and Limited Use
POP3 for Gmail uses Google OAuth and Gmail API permissions to insert imported messages into your Gmail mailbox and manage labels used to organize those imported messages. The extension is designed not to request permission to read, delete, or modify your existing Gmail messages.
Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. We do not use Gmail API data for advertising, retargeting, market research, selling data, credit decisions, profiling unrelated to the service, or training generalized AI or machine learning models.
Email content
Email content is processed for the limited purpose of moving messages from your configured POP3 mailbox into your Gmail account, or sending messages through your configured SMTP server when that option is enabled. We do not manually review email content except when necessary to investigate abuse, security incidents, technical failures, or legal obligations.
Credentials and tokens
POP3 passwords, optional SMTP passwords, and Google refresh tokens are encrypted at rest. They are used only to perform the mail sync and sending actions you configure. You should still treat connected mailboxes as sensitive and use strong, unique passwords or provider-specific app passwords whenever available.
Data retention
We keep data only for as long as reasonably needed to provide and secure the service:
- Account settings and encrypted credentials are kept while the configured account remains active.
- Deduplication records are kept so the same POP3 message is not imported repeatedly.
- Operational logs and sync history are kept for troubleshooting, abuse prevention, reliability, and security.
- When you delete a configured account, we remove its stored credentials and sync state from the service. Messages already imported into Gmail remain in your Gmail account unless you delete them from Gmail.
- Backups may retain deleted data for a limited period until backup rotation replaces them.
Sharing and processors
We do not sell your personal information, email content, Gmail API data, POP3 credentials, SMTP credentials, or account data. We may use infrastructure, hosting, security, logging, payment, and email providers to operate the service. These providers process data only as needed to provide services to us. We may also disclose information if required by law, to protect users, to prevent abuse, or to defend the service.
Security
We use technical and organizational safeguards designed to protect the service, including encryption at rest for sensitive credentials, HTTPS transport, access controls, rate limits, container isolation, operational logging, and restricted administrative access. No system is perfectly secure, so please contact us immediately if you believe your account or data has been compromised.
Your choices and rights
You can:
- Disconnect your Google account by revoking POP3 for Gmail access from your Google Account permissions page.
- Delete POP3 or SMTP accounts from the extension.
- Pause or disable sync for configured accounts.
- Request deletion of service data associated with your account.
- Request access, correction, or deletion where required by applicable law.
Children
POP3 for Gmail is not intended for children under 13, and we do not knowingly collect personal information from children under 13.
International processing
Your information may be processed in countries other than where you live. Where required, we rely on appropriate safeguards for international transfers.
Changes to this policy
We may update this Privacy Policy as the product changes or legal requirements evolve. When changes are material, we will make reasonable efforts to notify users through the website, extension, or service interface.
Contact
For privacy questions, deletion requests, or security concerns, contact [email protected].