Privacy Policy
This page explains, in plain language, what generator-email.com ("we", "the Service") does — and does not do — with information when you use our free email generator. The short version is simple: the tool is built to be used without an account, without your real address, and without us learning who you are. The longer version below spells out exactly what that means, because a privacy tool only earns trust if it is honest about its limits.
Throughout this notice, "you" means anyone who opens the site and generates or visits an inbox. Using the Service means you accept the practices described here. If you do not, the right course of action is simply not to use it.
The one thing to understand first
Generated addresses are public by design. There is no password on an inbox. Anyone who knows or guesses the address can open the same mailbox and read what is in it — that is how an instant, registration-free generator can work at all. This is a deliberate trade-off in favour of zero friction, not an oversight. Treat every generated inbox as a shared, temporary surface, and never route anything private, financial, or sensitive through it. For the reasoning and a safer-use checklist, see our email generator privacy & security guide.
What we store
We keep the Service deliberately thin on data. No name, no sign-up, no profile. What does pass through our systems falls into three buckets:
- Messages received. Mail delivered to an address you generated or typed is held on our servers so you can read it, then removed automatically after a short window — see how long generated emails last.
- Operational logs. Things like IP address, the browser's User-Agent string, and request timestamps are recorded briefly. We use them only to keep the Service stable — rate-limiting, blocking abuse, and diagnosing faults — not to build a picture of you.
- State that never leaves your browser. The list of inboxes you have opened lives in your own browser's cookies and local storage. We do not receive or keep that list; clearing your browser data erases it.
What we deliberately do not do
- We do not ask you to register, and we do not collect personal identifiers, so there is no account profile to mine or leak.
- We do not sell or rent your data to third parties.
- We do not tie the inboxes you visit back to your identity — we cannot, because we never collected one.
- We do not send you marketing. You have no address with us for us to write to.
Cookies
We use cookies only where they make the Service work or remember a preference, namely:
- Functional cookies that hold your current inbox between page loads and store choices such as language and notification sound.
- A consent cookie that records whether you accepted this notice, so we do not ask on every visit.
Third-party services we use (analytics and advertising, described next) may set their own cookies once you consent. You can clear or block cookies in your browser at any time, though some conveniences — remembering your inbox or sound settings — may stop working if you do.
Analytics
We use Google Analytics 4 to understand aggregate usage — how many people visit, which pages help, and where the Service is slow. It runs under consent mode: until you agree, it behaves in a cookieless, non-identifying way, and we never send your email address or inbox contents to it. The goal is counting and improving, not profiling.
Advertising
The Service may show ads through Google AdSense to keep it free. Where ads are personalised, that depends on your consent choice; where consent is withheld, non-personalised ads are served instead. Google may set and read its own cookies for this — details are in Google's advertising privacy policy. Ads appear around the page, never inside the body of a received message.
How long we keep things
Received messages are erased automatically after a limited period, and you can clear an inbox yourself at any time with the in-page controls. Operational logs are short-lived and kept only as long as they are useful for security and reliability. Because nothing is tied to an identity, expiry is the rule rather than the exception.
Security
Traffic to and from the Service is encrypted in transit, and stored mail sits on systems that are not openly browsable. That said, security cannot undo the public-by-URL design described above: the protection we provide guards the pipe, not the contents of an inbox whose address someone else can reach. For genuinely confidential correspondence, use a real, password-protected mailbox.
Acceptable use and abuse
Privacy and misuse are two sides of the same coin, so this notice is paired with our acceptable use policy. When we act on the operational logs above, it is to enforce those rules — stopping fraud, harassment, or attempts to read inboxes that are not yours — and we cooperate with lawful requests where we are required to.
Children
The Service is not intended for children under 13, and we do not knowingly collect information from them. Because we collect no identifiers, we have no way to target anyone by age; if you believe a child has used the Service in a way that needs attention, contact us.
People outside your country
The Service can be reached worldwide, and the limited technical data described here may be processed on servers located in another country. By using the Service you accept that this processing may take place outside your own jurisdiction.
Changes to this policy
We may revise this policy as the Service evolves or as rules change. Material updates will be reflected here, so it is worth re-reading occasionally if the details matter to you. Continuing to use the Service after a change means you accept the updated version.
Contact
Questions or concerns about privacy? Reach us through the Feedback link at the foot of every page. Since there is no account, that is also the channel for anything you would like us to look into.