Your Privacy Comes First
WhoHasMyEmail is built with one core principle: We only access the minimum data required โ and we never store your emails.
๐ Secure Google OAuth Only
We never ask for your password. You authenticate using Google OAuth, which is the same system used by:
- Spotify
- Slack
- Zoom
- Airbnb
OAuth ensures that:
- we cannot see or store your login credentials
- Google controls and limits our access
- you can revoke our access instantly
๐ฌ Read-Only Access
The permissions we request are strictly read-only. This means:
- we cannot delete emails
- we cannot modify your inbox
- we cannot send emails
- we cannot read full messages
Google enforces these restrictions automatically.
๐งพ We Never Read Email Body Content
Our scanning process only uses metadata headers:
- From โ who sent the email
- Subject โ what category the email belongs to (welcome, login, receipt, etc.)
- Date โ when it was sent
We never access:
- email body text
- attachments
- embedded images
- HTML content
You stay 100% in control of your private messages.
๐ซ Zero Data Storage
Your email metadata is processed in memory and deleted immediately.
We do not store:
- emails
- subjects
- service names
- personal information
- OAuth tokens
The only thing you receive is your final report.
๐ Revoke Access Anytime
You can remove our access instantly:
- Go to: Google Account โ Security โ Third-party access
- Select WhoHasMyEmail
- Click Remove access
Once revoked, we can never access your inbox again.
Ready to See Your Digital Footprint?
Secure, private, one-time scan using metadata only.
Start Your Scan