Privacy Policy

MailBroom is designed with privacy as a first principle. Your emails are processed entirely on your device and are never transmitted to any server operated by AIERT Ltd or any third party. There is no MailBroom backend.

• ✓Email content, subject lines or sender addresses
• ✓Your IMAP credentials (stored only in the iOS Keychain on your device)
• ✓Usage analytics or behavioural data
• ✓Advertising identifiers or tracking data
• ✓Device identifiers beyond what Apple provides to the App Store

• ✓IMAP connection — MailBroom connects directly from your device to your own mail server (Gmail, Outlook, iCloud, or any IMAP server) over an encrypted TLS connection. No email data passes through our servers.
• ✓AI classification — Email classification uses a 5-layer on-device pipeline: (1) sender memory for instant recognition, (2) a Naive Bayes model, (3) local rules based on sender address and subject patterns, (4) a personalised on-device model trained on your own inbox using Apple's CreateML framework (iOS 16+), and (5) Apple Intelligence (iOS 26+) for ambiguous cases. Every layer runs entirely on your device. Training data and model weights are stored locally and never uploaded or shared.
• ✓Personalised learning — The CreateML model continuously improves from your corrections. When you reclassify an email, the example is added to your on-device training set and the model retrains silently in the background. No labelled data leaves your device.
• ✓Credentials — Your email password and OAuth tokens are stored exclusively in the iOS Keychain using Apple's secure storage APIs, protected by hardware encryption and inaccessible while the device is locked. They are never stored in plain text or transmitted to any party other than your own mail server.
• ✓Unsubscribe requests — When you use Smart Unsubscribe, MailBroom sends an opt-out request directly from your device to the mailing list's unsubscribe URL (as specified in the email's List-Unsubscribe header) over HTTPS only. No data passes through our servers.
• ✓Unsubscribe log — A record of each unsubscribe attempt (sender address, method used, and outcome) is stored locally on your device with full file-system encryption. It is never transmitted anywhere and can be cleared at any time from Settings → Unsubscribe Log.

MailBroom includes an on-device AI model that learns from your inbox over time. It trains entirely on your device using your own email data — no email content, training data, or model weights are ever sent to any server. The model is stored in your app's private local storage and is permanently deleted if you reset scan history or uninstall the app.

MailBroom Pro is an auto-renewable subscription managed entirely by Apple through the App Store. AIERT Ltd does not receive or store any payment card details. All billing queries should be directed to Apple Support.

MailBroom may send local notifications (scan complete summary, daily digest at 9am). These are generated on your device and do not involve any external service.

MailBroom is rated 4+ on the App Store. We do not knowingly collect any data from any user, including children under 13.

If we make material changes to this policy we will update the date at the top of this page and, where appropriate, notify users via an in-app notice.

For privacy-related questions, contact AIERT Ltd at enquiries@aiert.co.uk