1. Scope

This Privacy Policy is intended to apply globally, subject to mandatory local laws that may grant additional rights or impose additional obligations in particular countries, states, provinces, or regions. Where local law provides stronger protections than this Privacy Policy, we will comply with applicable law to the extent required.

2. Information We Collect

We may collect and process the following categories of information:

• Account identifiers: including your mobile phone number, which may also be used as or incorporated into your Webium Mail email address or account identifier.
• Contact information: including any recovery contact details, support correspondence, and other information you provide when communicating with us.
• Technical and device information: including IP address, approximate geolocation inferred from IP, browser type, operating system, device identifiers, language settings, referring URLs, access times, and similar diagnostic data.
• Authentication and security information: including one-time codes, login events, timestamps, failed login attempts, session identifiers, anti-abuse signals, and security logs.
• Communications data: including email metadata and, where necessary for providing the service, the content of emails, attachments, drafts, message routing information, mailbox structure, and related records.
• Usage information: including interactions with features, settings, pages viewed, actions taken within the Services, storage usage, and performance data.
• Payment and transaction information: if paid services are offered, we may collect billing-related information, transaction history, and limited payment details through payment processors. We do not necessarily store full payment card numbers ourselves.
• Support and legal information: including records necessary to respond to customer support requests, investigate abuse, enforce our terms, and comply with legal obligations.

3. Information You Provide Through the Service

The Services may allow you to send, receive, store, upload, and manage emails, attachments, contact details, and other content. You are responsible for ensuring that you have the necessary rights and lawful basis to provide personal information relating to other individuals.

4. How We Collect Information

We collect information in several ways, including:

• directly from you when you register, log in, contact support, configure settings, or otherwise use the Services;
• automatically through your use of the Services, including logs, cookies, local storage, server records, and security monitoring tools;
• from service providers, telecom providers, analytics tools, payment processors, and security vendors that help us operate the Services; and
• from legal, regulatory, or public sources where permitted by law.

5. How We Use Information

We may use personal information for the following purposes:

• to create, operate, maintain, secure, and improve the Services;
• to authenticate users and deliver login or verification codes to mobile phone numbers;
• to generate and manage account identifiers and email addresses associated with the Services;
• to transmit, receive, store, index, organize, and display emails and attachments;
• to monitor usage, troubleshoot errors, prevent fraud, spam, abuse, unauthorized access, and other harmful activity;
• to communicate with you about service-related matters, security alerts, policy updates, and support requests;
• to comply with legal obligations, law enforcement requests, court orders, and regulatory requirements;
• to enforce our terms, policies, and other contractual rights; and
• to conduct internal analytics, audits, backups, disaster recovery, and business operations.

6. Legal Bases for Processing

Where required by applicable law, we process personal information on one or more of the following bases: performance of a contract; compliance with legal obligations; legitimate interests such as security, fraud prevention, service administration, and product improvement; and consent, where consent is legally required.

7. Mobile Phone Numbers and Account Identity

Because Webium Mail may use a user’s mobile phone number as a core account identifier and/or as part of the user’s email address, storage and processing of the mobile phone number is fundamental to operation of the Services. Without that information, certain or all parts of the Services may not function.

8. IP Addresses, Logs, and Security Monitoring

We keep records of IP addresses and related access logs for operational, diagnostic, anti-fraud, anti-spam, anti-abuse, account protection, legal compliance, and security purposes. These logs may be associated with account activity, login attempts, messages, device sessions, and other service events.

9. Cookies and Similar Technologies

We may use cookies, local storage, session storage, security tokens, and similar technologies to keep you signed in, remember preferences, maintain sessions, protect against abuse, measure performance, and improve user experience. Depending on your jurisdiction, you may have the right to manage certain cookie preferences through your browser or device settings.

10. Disclosure of Information

We do not sell user data. We may disclose information only in the following circumstances:

• to vendors, contractors, hosting providers, cloud providers, telecommunications providers, analytics providers, customer support tools, and other service providers acting on our behalf;
• to comply with applicable law, regulation, legal process, subpoena, court order, or lawful governmental request;
• to investigate, prevent, or respond to fraud, abuse, spam, security incidents, or violations of our terms or policies;
• to protect the rights, property, safety, users, Webium, or the public;
• in connection with a merger, acquisition, financing, reorganization, asset sale, bankruptcy, or similar corporate transaction, subject to applicable confidentiality and legal requirements; and
• with your direction or consent, where applicable.

11. International Data Transfers

Because Webium serves users internationally, personal information may be transferred to, stored in, or processed in the United States or other countries where we or our service providers operate. Data protection laws in those jurisdictions may differ from those in your place of residence. Where required by law, we will implement appropriate safeguards for cross-border data transfers.

12. Data Retention

We retain information for as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide the Services, maintain user accounts, comply with legal obligations, resolve disputes, enforce agreements, perform backups, and protect the security and integrity of the Services. Retention periods may vary depending on the type of data, the sensitivity of the information, legal requirements, and operational needs.

13. Data Security

We use reasonable administrative, technical, and organizational measures designed to protect personal information against unauthorized access, alteration, disclosure, loss, misuse, or destruction. However, no method of transmission, storage, or security control is completely secure, and we cannot guarantee absolute security.

14. User Rights

Depending on your location and applicable law, you may have rights relating to your personal information, including the right to request access, correction, deletion, portability, restriction, objection, or withdrawal of consent, where such rights apply. You may also have the right to lodge a complaint with a competent supervisory authority.

We may need to verify your identity before acting on a request, and some rights may be limited where exceptions apply, including where retention is required for legal, security, fraud-prevention, or operational reasons.

15. Children’s Privacy

The Services are not directed to children where prohibited by law, and we do not knowingly collect personal information from children in violation of applicable law. If you believe a child has provided personal information unlawfully, please contact us so we can take appropriate action.

16. Third-Party Services

The Services may interact with third-party infrastructure, communications providers, websites, tools, or integrations. We are not responsible for the privacy practices of third parties except as required by law. Their collection and use of information is governed by their own terms and privacy policies.

17. Service Communications

We may send service-related messages, authentication codes, security alerts, legal notices, and administrative communications to your mobile phone number, email address, or account interface when necessary to provide or secure the Services. These communications may be essential and not promotional in nature.

18. Sensitive Information

You should avoid using the Services to transmit or store sensitive personal information unless doing so is necessary and lawful. Email systems may naturally contain sensitive content, and by using the Services, you acknowledge that such information may be processed and stored as part of normal operation of the platform.

19. Changes to This Privacy Policy

We may revise this Privacy Policy from time to time. The updated version will be posted with a revised effective date. Your continued use of the Services after changes become effective constitutes acceptance of the updated Privacy Policy, to the extent permitted by law.

20. Contact Information

If you have questions, requests, or concerns regarding this Privacy Policy or our privacy practices, please contact:

Webium LLC, Seattle, WA, USA
Phone: 1-800-909-4218