Privacy Policy
What we collect, why, and for how long.
Last updated: July 15, 2026
1. What we collect
To operate the service, Relay processes:
- Account data — your email address, company name, and billing details
- Sending configuration — verified sending domains, DNS verification state, and API key metadata (never the key itself in plaintext)
- Message metadata — sender, recipient, subject, message ID, timestamps, and delivery events (delivered, bounced, complained, opened, clicked)
- Suppression lists — recipient addresses that bounced, complained, or unsubscribed, kept so we do not mail them again
2. Message content
The body of each email is processed transiently: we hold it only as long as needed to validate, queue, and hand it to our delivery provider. Message bodies are not retained after delivery and are never used for analytics, advertising, or model training. Application logs record identifiers and metadata only — never message bodies.
3. Recipients' data
For the people your emails are sent to, Relay acts as a data processor on your behalf. You are the controller of your recipients' data and are responsible for having a lawful basis to email them. We process recipient addresses solely to deliver your mail, record delivery events, and maintain your suppression list.
4. Subprocessors
Relay runs on a small set of infrastructure providers:
- Cloudflare — edge compute, storage, and network delivery of the API and dashboards
- Amazon Web Services (SES) — the sending backbone that delivers mail to receiving servers
We will announce any new subprocessor before it begins handling customer data.
5. Retention
Message metadata and delivery events are kept for your plan's activity-history window, then deleted. Suppression lists are kept while your account is active, because they protect recipients who opted out. When you close your account, we delete account data and remaining metadata within 30 days, except records we must keep for legal or billing reasons.
6. Security
All traffic is encrypted in transit. API keys are stored hashed, and signing keys live only in dedicated secret storage. Access to production data is limited to personnel who need it to operate the service.
7. Your rights
You can access, correct, export, or delete your account data at any time from the dashboard or by contacting us. Depending on where you live, you may have additional rights under GDPR, CCPA, or similar laws — we honor requests under all of them.
8. Contact
Privacy questions or requests? Email support@relay.dev.