Privacy Policy
Last updated: July 12, 2026 · Template pending legal review
This is a structured template. It must be reviewed by qualified counsel before public launch.
Who we are
InboxDome ("we") operates inboxdome.com, a temporary receive-only email service. Controller identity: [to be completed].
What we collect
- Temporary email content — messages sent to your temporary address, processed and stored only to show them to you, and deleted when the inbox expires or you delete it.
- Technical metadata — short-lived security logs (including IP addresses, kept at most 7 days) used for rate limiting and abuse prevention.
- Content-free usage counters — aggregate event counts (e.g. "an inbox was created"). They never include addresses, subjects, senders, codes, or message content.
What we do NOT collect for the free service
- No account, name, or personal email is required.
- No advertising trackers or third-party analytics scripts.
- No permanent behavioral profiles.
Honest limits
- Emails are not end-to-end encrypted. Like almost all email services, we technically could access content and process it to provide the service.
- Anyone who has your private inbox link can read that inbox.
- Remote images in emails are blocked by default because they can reveal that you opened a message.
Retention
See the data retention summary. Consumer inboxes expire after 24 hours by default (extendable to at most 7 days) and are then permanently deleted.
Legal bases (EEA/UK users)
We process inbox content to perform the service you request, and security metadata under legitimate interest in protecting the service.
Subprocessors
Cloudflare, Inc. — hosting, storage, and email routing infrastructure.
Your rights
You can delete any message or the entire inbox at any time. Depending on where you live you may have additional rights (access, erasure, complaint to a supervisory authority). Contact us via the contact page.
Children
The service is not directed at children under 16.
Changes
We will update this page when our practices change.