Last updated: 13 July 2026
Tavomail ("we", "us") provides custom-domain email hosting at tavomail.com and mail.tavomail.com, including webmail and mobile applications (together, the "Service"). This policy explains what we collect, why, and the choices you have. The short version: your mail is yours. We don't sell data, we don't show ads, and we don't profile you.
The Service runs on dedicated servers located in the European Union (Germany). Mail is encrypted in transit (TLS) and stored on encrypted infrastructure with encrypted off-site backups. Backups exist to protect you against data loss and are retained on a rolling schedule.
Each provider processes only what is necessary to perform its function.
Your mail stays until you delete it or close your account. When an account is deleted, its data is removed from active systems promptly and ages out of backups on the backup rotation schedule. You can export your mail at any time using standard protocols (IMAP) or by asking us.
We use TLS for all connections, support two-factor authentication and app passwords, run inbound virus scanning, sign our DNS with DNSSEC, and keep systems patched and firewalled. No system is perfectly secure, but security is a first-class design goal of the Service — not an afterthought.
We disclose data only when legally compelled by a valid order applicable to us, and we limit any disclosure to what is specifically required.
You may access, correct, export, or delete your personal data. Contact us and we'll help — usually the same day.
If we change this policy, we'll update the date above and, for material changes, notify you by email.
Questions or requests: hello@tavomail.com