Banger is an email client. You can connect a mailbox you already have, such as Gmail, or host a mailbox with Banger on your own domain. This page describes what Banger stores, where it lives, who can read it, and what leaves Banger's systems.
Two ways to use Banger
When you connect an existing mailbox, your provider stays the source of truth and keeps your mail; Banger holds an encrypted copy so the app stays fast. When you host a mailbox with Banger, your mail lives in Banger's infrastructure and nowhere else.
Encryption and access
Your mail is encrypted at rest with a per-message key and stored as ciphertext. After a message is received or sent, it is decrypted only on your device. Banger's servers do not decrypt stored mail to store it, index it, or search it.
Banger is not end-to-end encrypted. Because Banger manages your encryption keys, it is technically able to decrypt stored mail. To prevent that in practice, key storage and management run on separate, dedicated infrastructure with strict access controls and full audit logging: every key operation is recorded, and your stored mail is not decrypted on Banger's servers in normal operation. Self-managed keys, where Banger cannot decrypt your mail at all, are in development.
What Banger asks Google for
When you connect a Gmail account, Banger requests two permissions: read your mail and send on your behalf. Banger does not request permission to modify or delete your mail, or to access your account beyond these scopes.
Independent security assessment
Banger Mail has completed a CASA Tier 2 assessment. CASA, the Cloud Application
Security Assessment run under Google's App Defense Alliance, is the security review
Google requires for applications that access restricted Gmail data. Tier 2 is an
independent verification performed by an authorized third-party assessor against the
OWASP Application Security Verification Standard, covering how an application protects
credentials, user data, and access. Because Banger reads your mail under Google's
restricted scopes, it is assessed to this standard.
Search
Search runs entirely on your device, against a local index. Banger does not run search queries over your mail on its servers.
AI features
AI features are off until you turn them on, and apply per feature. When you use one, your device sends the relevant content to Banger's servers, which pass it to the AI provider (Anthropic or OpenAI) to produce the result. That content is discarded within one hour and is not stored. Some message categorization runs on a model on your device and sends nothing out.
Banger does not sell your data, and does not use your mail to train AI models. Banger's AI providers are contractually barred from training on it.
Analytics and crash reports
Banger's product analytics and crash reporting never receive your mail content or email address. Sensitive fields are removed before any event leaves your device or Banger's servers.
Transport
Mail and app traffic move over TLS 1.2 or higher. Outbound mail from hosted mailboxes is DKIM-signed.
Deleting your data
Disconnect or delete a mailbox and Banger erases its copy and revokes its access. Deleting your account starts a seven-day window during which you can cancel; after it, your data is removed. Banger retains only minimal records of when actions occurred, never mail content. To also revoke Banger's access to a connected Google account, remove Banger at myaccount.google.com/permissions.
Subprocessors
Banger uses the following providers to operate the service:
- Cloudflare: application hosting and storage, encrypted at rest
- Backblaze B2: encrypted mail and attachment storage, ciphertext only
- Amazon Web Services: encrypted secrets and wrapped key storage
- Hetzner: encrypted logs and mail transport infrastructure
- OpenAI and Anthropic: AI features you turn on
- Stripe: billing
- Sentry: desktop crash reporting, no mail content
- PostHog: product analytics, no mail content or email addresses
More detail
For the full terms, see our Privacy Policy. To report a security issue, see our Vulnerability Disclosure Policy.