Last updated July 11, 2026
This policy explains how SimpleFlare handles personal data when you use SimpleFlare at https://simpleflare.app. We act as a controller for your account data and as a processor for the email content you send and receive through us (see the Data Processing Addendum).
To provide and secure the service, deliver and receive your email, protect sender reputation (bounce and suppression handling), bill you, provide support, and comply with law. Our legal bases are contract, legitimate interests, and consent where required.
We share data only with subprocessors that help us run the service (for example Cloudflare for email delivery, our hosting provider, and our payment provider), each under a data-protection agreement. We do not sell personal data.
Data is stored on servers in the EU. Transactional send logs are kept for a limited rolling window; inbox mail is kept while your subscription is active. On cancellation you have a 30-day window to export, after which data is deleted. Attachments are stored in object storage and removed on the same schedule.
Depending on your location (including under GDPR) you may access, correct, delete, or export your data, and object to or restrict processing. Email [email protected] to exercise these rights. You may also complain to your local data-protection authority.
We use encryption in transit, access controls, and a dangerous-file-type block on attachments. No system is perfectly secure; we will notify you of a breach affecting your data as required by law.
See our Cookie Policy. We use only essential cookies for login and security.
We may update this policy; material changes will be notified. Controller and contact: SimpleFlare, [email protected].