Here at Shortwave we understand your email can contain a lot of important and potentially sensitive information. It's not something we take lightly. Our team is passionate about security and privacy, and will do everything we can to be transparent with how your data is handled.
Shortwave has gone through extra measures to follow Google's verification process.
One of the additional requirements Shortwave takes to meet Google's conditions for specific scopes is doing an annual security audit. This means Shortwave has been thoroughly assessed by a Google-designated third-party security auditor. The security audit makes sure your data is safe by verifying that:
If you ever want us to delete your account and all associated data, you can do so from settings at any time.
All data that Shortwave stores is AES256 encrypted at rest. We also TLS encrypt all network traffic between our application and servers, as well as within our internal networks.
Yes. Shortwave syncs your mail to our servers so we can provide many of our features — such as threading, real-time email & collaboration, and more.
Yes. We automatically detect and remove the majority of tracking pixels from emails. We also proxy all images through our servers as to not leak your IP or browser info.
Our engineering team is made up of ex-Google / ex-Firebase engineers with lots of experience building high security, high reliability data systems at Google. Our founding team worked tirelessly at Firebase to get people to trust us as their app's database. We know we have to work similarly hard here at Shortwave to get you to trust us with your email. We've done this before, and we are confident we can do it again. If you have any specific questions or concerns, feel free to email firstname.lastname@example.org.