Privacy Policy
1. Controller
The data controller for account data is peers network s.r.o. (IČO 23186372), Brno, Czech Republic. For the personal data of your email recipients, you are the controller and we act as your processor (see §8).
2. What we process
- Account data — your email, display name, and (for company accounts) legal name, IČO, DIČ and billing address for invoicing.
- Sending metadata — for each message: envelope from/to, timestamps, size, delivery status, SMTP code and bounce reason. We do not retain message bodies beyond what is needed to transmit and queue them.
- Operational data — client IP of submissions, SMTP credential usage, and server logs.
3. Purpose and legal basis
- Providing the Service and delivering your mail — performance of contract.
- Abuse prevention, deliverability and security — legitimate interest.
- Invoicing and tax records — legal obligation.
4. Message content
Messages you submit are held transiently on the sending nodes only for the time needed to sign (DKIM), queue, and deliver them, plus the retry window for deferrals. We do not read or mine message content.
5. Retention
Sending metadata / logs are retained per your plan's log-retention window and then pruned. Suppression-list entries (bounced/complained addresses) are kept as long as needed for compliance and deliverability. Account and invoicing records are kept as required by law.
6. Processors
We use a small number of subprocessors: infrastructure hosting (EU) and a card payment processor for paid plans. We do not sell personal data.
7. Your rights
Under the GDPR you may access, rectify, export or erase your personal data, and object to or restrict processing. The portal provides self-service data export and account deletion; account deletion removes your tenant data (sending domains, credentials, suppression, stats, message logs).
8. Recipient data (you as controller)
The recipient addresses and message content you send through maildome are your responsibility as controller. We process them solely to deliver your mail on your instructions and to maintain your suppression list. You must have a lawful basis to send to your recipients.
9. Security
Submission is over TLS; credential secrets are stored only as hashes; DKIM private keys and webhook secrets are encrypted at rest; access is restricted to operators.
10. International transfers
Processing takes place on EU-hosted infrastructure.
11. Contact
Privacy requests: via the support form in the portal, or the operator contact on record for peers network s.r.o.