Security
Credential handling, account boundaries, retention controls, and auditability for Inbox Manager.
Data handling summary
| Aspect | Handling |
|---|---|
| Credential storage | Envelope encryption with per-account keys |
| Credential decryption | In memory during task run only |
| Email content retention | Minimal and configurable by plan |
| Log contents | Metadata and message IDs; no email body |
| AI provider data | Task-scoped payload only |
Threat model
| Risk | Mitigation |
|---|---|
| Credential theft from database | Envelope encryption and key separation |
| Unauthorized inbox access | Account scoping and tool permissions |
| Over-sharing to AI provider | Task-scoped payload and provider selection |
| Log leakage | Redaction rules and secret exclusion |
What we do not do
- No background automation without explicit schedules.
- No write actions without explicit permission.
- No email body logs by default.