Connect your inbox with an app password, not a risky login.
You generate an app password inside your own email settings and paste it to us once, over standard IMAP and SMTP. That is the whole connection. There is no Google OAuth consent screen and no third-party login that asks for sweeping account access, and you never share your real account password.
- An app password is a narrow, single-purpose key your provider issues for one connection. It reads the threads we work and sends the messages you approve, and nothing more.
- No account-wide grant. It does not unlock your wider Google or Microsoft account, your files, or your other apps.
- You can revoke it anytime. Delete the app password in your own settings and our connection stops working immediately. You never need our permission to cut it off.
- Setup takes about ten minutes, and you stay inside your own email settings the whole time.
Want the full detail on isolation, US data handling, and what the operator will and will not do? Read the security page.