Security & Data Protection

At Mailmap, operated by ABCARE LLC, we design our infrastructure and product with security and data protection as core principles. This page summarizes the technical and organizational measures we take to protect your workspaces and campaign data.

1. Infrastructure

Mailmap is hosted on reputable cloud infrastructure providers that offer robust physical and network security controls, redundancy and monitoring. Production systems are segregated from development environments and access is restricted to authorized personnel only.

2. Encryption

We use industry-standard encryption to protect your data:

• In transit: all connections to Mailmap use HTTPS (TLS) to encrypt data between your browser and our servers.
• At rest: data stored in our databases and backups is encrypted using strong encryption algorithms.

3. Workspace isolation & access control

Each workspace is logically isolated so that data from one workspace cannot be accessed by another. Access to your workspace data is governed by authentication and authorization layers that ensure only permitted users can view or manage campaigns and analyses.

4. ESP permissions

When you connect an ESP integration (such as Klaviyo), Mailmap uses read-only access to retrieve campaigns, HTML content and performance metrics required to provide predictions and diagnostics. Mailmap does not send emails or modify campaigns on your behalf inside your ESP.

5. AI & model safety

The Golden Rule Engine processes the structure and content of your emails to generate scores and recommendations. We do not use your campaigns to build a public dataset or to train generalized models that would expose your specific strategies. Processing is limited to what is necessary to deliver the Service.

6. Monitoring & logging

We maintain application and infrastructure logs to help detect anomalies, debug issues and monitor for suspicious activity. Access to logs is restricted and retained for a limited period consistent with operational and legal requirements.

7. Data retention & deletion

We retain analysis data and campaign content for as long as you maintain an active account, unless you request deletion earlier. Within a reasonable timeframe after you close your account, we delete or anonymize associated data, subject to any legal obligations to retain certain records.

8. Responsible disclosure

If you believe you have found a security vulnerability or issue, please notify us promptly at security@mailmap.app so we can investigate and address it. We ask that you do not publicly disclose potential issues before we have had an opportunity to review and remediate them.

9. Relationship to Privacy Policy

For more details on how we collect and use personal data, please refer to our Privacy Policy, which should be read together with this Security & Data Protection page.

10. Contact

For security-related questions, you can contact us at: security@mailmap.app.