Privacy Policy

Last updated: February 28, 2026

What Sieve Does

Sieve is an email classification tool that connects to your Gmail account and automatically categorizes incoming emails into five categories: Important, Transactional, Promotional, Newsletter, and Notification.

Data We Access

We request read-only access to your Gmail inbox via Google OAuth. Specifically, we use the gmail.readonly scope. We cannot send, modify, or delete your emails.

For each email, we access only:

  • Sender name and email address
  • Subject line
  • A short text snippet (first ~200 characters)
  • Email headers (for classification signals)
  • Date received

We never access or store the full email body, attachments, or any email content beyond the metadata listed above.

How We Use Your Data

Email metadata is used solely to:

  • Classify emails into categories using our rule-based engine
  • Provide AI-powered classification for Pro users (via OpenAI's GPT API)
  • Send daily digest emails summarizing your important messages (if enabled)
  • Detect subscriptions and recurring senders

AI Classification

Pro users may have emails classified by OpenAI's GPT-4o-mini when our rule engine is not confident enough. In these cases, we send the sender name, subject line, and snippet to OpenAI's API. OpenAI does not use API data for model training. See OpenAI's Privacy Policy for details.

Data Storage

Email metadata (sender, subject, snippet, classification result) is stored in our database to display your classified inbox. We use Turso (libSQL) for data storage, hosted in the US.

Your Google OAuth tokens are stored securely to maintain your Gmail connection. We do not store your Google password.

Data Sharing

We do not sell, rent, or share your personal data with third parties, except:

  • OpenAI — email metadata (sender, subject, snippet) for AI classification (Pro users only)
  • Stripe — email address for payment processing
  • Resend — email address for sending digest emails

Data Retention

Your email metadata and account data are retained as long as your account is active. You can request deletion of your account and all associated data by contacting us.

Revoking Access

You can revoke Sieve's access to your Gmail at any time through your Google Account permissions. Revoking access will stop email syncing but will not delete previously classified emails from our database.

Security

All data is transmitted over HTTPS. OAuth tokens are stored encrypted at rest. We follow industry-standard security practices to protect your data.

Contact

For questions about this privacy policy or to request data deletion, contact us at [email protected].