SorteroAI Privacy Policy

Last updated: May 2026
Contact: [email protected]

Summary

SorteroAI is an Android app that organizes your Gmail using labels and filters. We do not operate servers that store your mail. Processing happens on your device; Gmail is accessed only through Google’s APIs after you sign in.

Data we access (Google Gmail API)

We do not read full message bodies (format=full), attachments, or send email on your behalf.

Category discovery (setup & re-analyze)

If you turn on Scan mail for setup, the app reads message metadata only
(From, To, Subject, and optionally a short snippet when mail is not classified
as sensitive) to suggest categories.

• Default scan window: the last 90 days of mail.
• Optional: you can extend the window to 180 or 365 days under
  Settings → Privacy & sorting → Discovery.
• Labels-only discovery: sender and subject only — no snippet API calls.
• Sensitive senders are excluded from category hit counting (see our security
  documentation).

How sorting decisions are made (M1-08 / GDPR Art. 22)

When you turn on Sort mail automatically (one-tap mode, default ON),
SorteroAI may apply Gmail labels to messages that match your category rules
without asking you on every message. This is not machine learning: each
match uses deterministic, explainable rules (sender, subject, headers) and
you can see a short reason in Sort explanations after a run.

We mitigate fully automated sorting with safeguards documented in our
algorithm spec §6.3.2:

1. Explainable rules — no opaque models; reasons are stored locally (redacted for sensitive mail).
2. 72-hour Undo — Privacy & sorting → Undo last organize reverses the last Organize run.
3. Override learning — if you remove a Sortero label from a sender in Gmail several times, we stop auto-applying that category for that sender on this device (hashed sender key only; see SECURITY.md §6.1).
4. Bulk confirmation — by default, more than 200 auto-labels in one run requires your confirmation before applying (you may choose Don't ask again after the first prompt).
5. Conditional categories — new 🟨 categories need repeated observations (≥3 hits) and skip sensitive senders; see discovery settings above.

If you prefer more control, turn Sort mail automatically off: very high-confidence matches (≥90%) can still be filed automatically; medium-confidence matches (65–89%) are suggested for your review instead.

Full technical thresholds: email-labeling-algorithm.md §6.3.1.

Google API Services User Data Policy

SorteroAI’s use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements:

• We use Gmail data only to provide user-facing mail organization features in this app.
• We do not transfer Gmail data to others except as necessary to provide the feature (Google infrastructure only).
• We do not use Gmail data for advertising.
• We do not allow humans to read Gmail data unless required for security, legal compliance, or with your explicit consent.

Local storage & security

• Categories, rules, and settings are stored in encrypted preferences on your device.
• Trial and purchase entitlement state is stored locally so the app can decide
  whether Premium features are available. We do not receive or store payment
  card details.
• You can export settings (JSON, no mail) or delete all app data from Settings → About.
• Android backup excludes encrypted preference files where configured.

Data retention

Data remains on your device until you delete it or uninstall the app. Signing out stops sync; Gmail labels you already have remain in Gmail.

Children

SorteroAI is not directed at children under 13.

Changes

We may update this policy; the in-app link will point to the current version.

Contact

Questions: [email protected]