Privacy Policy
Last updated: 10/19/2025
Overview
FuturePostman lets you compose letters (including optional audio/video and attachments) and schedule delivery in the future. This policy explains what we collect, how we use it, and your choices.
Information We Collect
- Account data: email, name, and authentication information (via Clerk).
- Subscription and billing data processed by Stripe (we do not store card numbers).
- Letter content you provide: recipients, subject, body, schedule time, attachments.
- Optional media you record or upload (audio/video/files) to include with your letters.
- Public letters data when you opt to publish (alias, anonymization preferences, views/likes/comments).
- Operational logs for reliability and security (IP address for abuse prevention, error logs, rate limits).
- AI prompts/content you choose to send to our AI composer to generate message drafts.
How We Use Information
- Provide and improve the service, including scheduling and delivering your letters.
- Process payments and manage subscriptions with Stripe.
- Operate authentication and account features with Clerk.
- Moderate public content and handle user reports to keep the platform safe.
- Generate optional AI-assisted drafts when requested by you.
- Prevent abuse, enforce our Terms, and comply with legal obligations.
Data Processing & Storage
Email content is stored in our database and, when enabled by the system administrator, encrypted at rest using strong encryption (AES-256). Attachments and media are stored on our servers and linked to your scheduled letters. Emails are delivered via the configured SMTP provider (set by the system admin).
We use third-party processors to operate core features: Clerk (authentication), Stripe (billing), and an AI model provider for AI compose. When you use AI compose, your prompt and relevant context may be sent to the AI provider solely to generate the requested output.
Public Letters
If you opt to publish a letter publicly, its content (and your chosen alias or anonymity setting) becomes visible to anyone. You can report public content for review, and we may moderate or remove content that violates our Terms.
Your Rights & Data Protection
Your Rights: Depending on your location (particularly EU/EEA residents under GDPR), you may have rights to access, rectify, delete, port, or restrict processing of your personal data, and to object to certain processing.
Legal Basis: We process your data based on: (a) contractual necessity to provide the service; (b) legitimate interests in operating and improving our platform; (c) your consent for optional features like AI compose; (d) legal obligations.
Data Transfers: Your data may be transferred to and processed in countries outside your jurisdiction, including the United States. We implement appropriate safeguards for international transfers.
Exercising Rights: To exercise your rights, contact us using the details below. We may need to verify your identity and will respond within applicable timeframes. Some rights may be limited during business closure or bankruptcy proceedings.
Security
We employ industry-standard security measures, including optional encryption at rest for email content, role-based access controls, and audit logging. No system can be 100% secure; please keep credentials safe and use a strong, unique password.
Data Retention
We retain account and letter data as needed to provide the service. Scheduled letters are retained until delivered and for a reasonable period thereafter for troubleshooting and audit. You can delete your account at any time from Settings; this will permanently remove your data subject to legal obligations.
Data Handling During Service Discontinuation
In the event of service discontinuation, business closure, bankruptcy, or insolvency, the following data handling procedures may apply:
Data Deletion: We reserve the right to delete all user data immediately upon service discontinuation if continuing to store or process data becomes technically, financially, or legally unfeasible. This includes scheduled messages that have not yet been delivered.
- Best-Effort Data Export: Where technically and financially feasible, we may provide a limited-time opportunity (typically 7-30 days) for users to export their data before final deletion.
- Scheduled Messages: Undelivered scheduled messages may be lost permanently if our systems are shut down before their scheduled delivery date.
- Third-Party Data: Data processed by third-party services (Clerk, Stripe, AI providers) will be subject to their respective data retention and deletion policies.
- Legal Compliance: Some data may be retained longer if required by law, court order, or for bankruptcy/insolvency proceedings.
You are solely responsible for backing up and preserving any data important to you. We strongly recommend regularly exporting your letters and account data. We cannot guarantee data preservation or recovery during business closure, bankruptcy, or emergency shutdown situations.
Children
FuturePostman is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children.
Service Discontinuation Notices
In case of planned service discontinuation, we will attempt to notify users through available communication channels (email, in-app notifications, website notices). However, in emergency situations, bankruptcy, or sudden business closure, immediate notification may not be possible. We recommend staying informed by checking our website and following any official communications.
Policy Updates & Business Changes
This Privacy Policy may be updated to reflect changes in our business operations, legal requirements, or in the event of business restructuring, sale, merger, or bankruptcy. Material changes will be communicated where feasible, but continued use of the service constitutes acceptance of updated terms.
Contact
Questions or requests? Email us at support@futurepostman.com. Note that our ability to respond to requests may be limited during business closure or bankruptcy proceedings.