Version 1.4 · Last updated: May 8, 2026
Sortail is a macOS application developed and distributed by Infonet AS (Tallinn, Estonia). This policy explains what data the app handles, what permissions it asks for, and your rights as a user under the General Data Protection Regulation (GDPR).
Sortail does not transmit data to any server operated by Sortail or Infonet AS — we run no backend, no telemetry, no analytics, and no advertising. There are no user accounts, no profiles, no third-party trackers.
The only outgoing network traffic from the app itself is:
— Google APIs — only if you connect a Gmail account, and only to perform actions you trigger in the app (described in "Gmail API access" below).
— Apple StoreKit — receipt validation for Sortail Pro purchases, handled by Apple's frameworks on your Mac (no data leaves your device by Sortail's request).
— Web links you click — Privacy Policy, Terms, Manual, and Help links open https://sortail.com in your default browser. Sortail does not push any data when you do this; it's a normal page navigation.
Sortail stores the following data locally in your macOS user library, never on remote servers:
— App preferences — panel style, default scope (current folder vs all folders), confirmation dialog settings, language.
— Filing history (Smart Suggestions) — sender email addresses paired with the mailboxes you have moved their mail into. Used solely to suggest a mailbox the next time you select a message from the same sender. This data never leaves your device.
— Gmail OAuth tokens — if you connect a Gmail account, the access token and refresh token are stored in the macOS Keychain, encrypted by macOS, scoped to your user account, and never transmitted to Sortail.
You can clear all locally stored data by deleting the app and the Sortail container under ~/Library/Containers/com.infonet.sortail/.
When you first launch Sortail, macOS will prompt you to grant the following permissions. You can revoke each one at any time in System Settings → Privacy & Security.
— Mail Library access (read-only) — Sortail needs to read Apple Mail's local index (~/Library/Mail) to discover your mailbox structure and message metadata. macOS asks you to grant this with an open panel; Sortail saves a security-scoped bookmark so it doesn't have to re-ask on every launch. The bookmark grants read-only access only to that one folder.
— Apple Events / Mail Automation — Sortail uses AppleScript / Apple Events to automate Apple Mail when you click a panel button. This is how Sortail performs the actual move, archive, and delete actions, since Apple Mail is the only application that can mutate mail on your account. macOS asks for this permission the first time Sortail tries to communicate with Mail; you only need to grant it once.
— Notifications (optional) — to display a notification banner after each completed action ("Moved 7 messages to Costa Rica"). You can opt out in Settings.
Sortail does not request access to your Camera, Microphone, Contacts, Calendar, Photos, Reminders, or any other system resource.
Sortail reads your mailbox list and message metadata from two sources:
— Mail's local SQLite index (Envelope Index) — read-only, via the security-scoped bookmark you grant once. Sortail queries the index for mailbox URLs, conversation IDs, sender addresses, subjects, and message ROWIDs. It does not read message bodies or attachments.
— Apple Mail itself, via AppleScript / Apple Events — to read the currently selected message and to perform move / archive / delete actions you trigger. Sortail reads the selected message's headers (subject, sender, message ID) and asks Mail to perform the action.
No Apple Mail data is ever transmitted to Sortail's infrastructure (we have none).
For Gmail accounts, Sortail can optionally use the Gmail API (OAuth 2.0) to perform archive, move, and delete operations that match Gmail's native behavior. Connecting a Gmail account is entirely optional — Sortail works with any Apple Mail account without it.
OAuth scope. When you connect a Gmail account, Sortail requests a single scope: https://www.googleapis.com/auth/gmail.modify. This scope is required because Apple Mail's IMAP-based archive does not actually archive messages on Gmail (it leaves the INBOX label intact). The Gmail API allows Sortail to perform a true archive (remove the INBOX label) and the equivalent label changes for Move and Delete on Gmail accounts.
What Sortail does with Gmail data. Sortail uses the Gmail API solely to perform the actions you explicitly trigger in the app: searching for messages from a sender, listing message IDs that match your filter, and modifying labels (adding or removing INBOX, Trash, custom labels). All Gmail API requests originate from your Mac and go directly to Google's servers — Sortail has no servers of its own.
What Sortail does not access. Sortail does not read message bodies, attachments, drafts, contacts, or settings. Header data is read only as needed to identify a message for an action you initiated (sender, subject, message ID).
What Sortail does not do with Gmail data.
— We do not transfer Gmail data to any third party other than Google itself.
— We do not store Gmail message data on any infrastructure operated by Sortail or Infonet AS. Sortail is a desktop application; we operate no cloud services that handle your mail.
— We do not use Gmail data for advertising, including retargeting or interest-based advertisements.
— We do not use Gmail data to develop, train, or improve any artificial intelligence, machine learning, or generalized models.
— We do not allow human access to Gmail data, except (a) with your specific permission, (b) for security purposes such as investigating abuse, (c) to comply with applicable law, or (d) for internal operations purposes only when the data has been aggregated and de-identified.
Limited Use compliance. Sortail's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
Data retention. Sortail does not retain Gmail message data (subjects, senders, message IDs, bodies) beyond the lifetime of the in-progress operation that needed it. OAuth tokens (access and refresh) are stored locally in the macOS Keychain on your device, encrypted by macOS, and never transmitted to Sortail's infrastructure.
Revoking access. To revoke Sortail's access to a Gmail account, go to myaccount.google.com/permissions, find Sortail in the list of connected apps, and click Remove access. The next time Sortail tries an action on that account, it detects the revocation and automatically clears the local OAuth tokens.
Sortail Pro is sold through the Mac App Store. All payment processing, billing, and subscription management are handled entirely by Apple under your Apple ID. Sortail does not receive, see, or store your payment method, billing address, or any other personal financial information.
Through Apple's StoreKit framework, Sortail receives only the minimum data needed to gate Pro features locally: whether your Apple ID has an active Sortail Pro subscription and, if so, its renewal status. This data is processed on your Mac and is never transmitted to Sortail or Infonet AS infrastructure. Refund requests are handled by Apple via reportaproblem.apple.com.
Sortail can generate a diagnostic log file to help troubleshoot issues. This log is only sent when you explicitly tap Send Log in Settings → Advanced. The log is attached to an email draft that you review and send manually — nothing is transmitted automatically.
The website itself is hosted by Infonet AS on infrastructure in Estonia. We use the following third-party services to serve it:
— Cloudflare — DNS resolution for sortail.com and its language subpaths. Cloudflare may receive your IP address as part of normal DNS resolution.
— Let's Encrypt — TLS certificate provider. Issues the certificate that secures HTTPS for sortail.com.
— Google Fonts — the website loads the "Syne" web font from fonts.googleapis.com and fonts.gstatic.com. Google may receive your IP address as part of the font request.
The website does not use cookies, analytics, advertising, or any other tracker.
Infonet AS is the data controller for any personal data processed by Sortail. Because Sortail does not transmit data to our infrastructure, there is in practice very little personal data we hold — but the following rights apply by law to any data we may process:
— Right of access — you can ask us what personal data we hold about you.
— Right to rectification — you can ask us to correct inaccurate data.
— Right to erasure — you can ask us to delete your data ("right to be forgotten"). For Sortail, this is effectively the same as deleting the app and clearing the container at ~/Library/Containers/com.infonet.sortail/.
— Right to restrict processing — you can ask us to pause processing in specific cases.
— Right to data portability — you can ask for the data you provided in a structured, machine-readable format.
— Right to object — you can object to certain types of processing.
— Right to withdraw consent — for Gmail OAuth, revoking access at myaccount.google.com/permissions immediately disconnects Sortail's ability to act on your Gmail account.
— Right to lodge a complaint — with the Estonian Data Protection Inspectorate (aki.ee) or your local supervisory authority.
Lawful basis for processing. For app functionality (mailbox queries, action execution, Smart Suggestions cache), Sortail's lawful basis is performance of contract — you install and use the app, the app processes your data on-device to deliver the functionality you requested. For optional Gmail OAuth, the lawful basis is explicit consent — you grant access knowingly via Google's consent screen and can withdraw it at any time.
Data Controller
Infonet AS
Suurtüki 8, 10133 Tallinn, Estonia
Registry code: 10096260
Email for privacy / GDPR requests: support@sortail.com
Sortail does not knowingly collect any data from anyone, including children under the age of 13.
If this policy changes materially, we will update the version number and date above. Continued use of the app after changes constitutes acceptance of the revised policy.
Version 1.4 — May 8, 2026
Reworded the "no data collection" claim to remove a self-contradiction with the Gmail API section. Added explicit disclosures for AppleScript / Apple Events use and the security-scoped bookmark mechanism for Mail Library access. Added a new Permissions section listing every macOS permission Sortail asks for. Added a new Website section listing third parties involved in serving sortail.com. Added a new GDPR rights section covering data subject rights, lawful basis for processing, and Data Controller identification.
Version 1.3 — April 25, 2026
Expanded the In-app purchases section: explicit StoreKit data flow (Apple ID, subscription status, renewal status only) and clarification that nothing about purchases is transmitted to Sortail or Infonet AS infrastructure.
Version 1.2 — April 25, 2026
Expanded Gmail API access section to comply with Google's Limited Use requirements: explicit scope justification, list of accessed and not-accessed data, prohibitions on AI training, advertising, third-party transfer, and human access; added retention details; linked to Google API Services User Data Policy.
Version 1.1 — April 11, 2026
Added Gmail API access section.
Version 1.0 — April 5, 2026
Initial release.
Questions about privacy? Reach us at support@sortail.com.
Infonet AS · Tallinn, Estonia · EU