Mailavo Logo
Start Mailing Login

Privacy Policy

Last updated: April 26, 2026

This Privacy Policy describes how Mailavo ("we," "us," or "our") collects, uses, and protects information when you use our direct mail platform at mailavo.com. We've written this in plain language — not legalese — because we think you deserve to understand it.

1. What We Collect

Account Information

When you create a Mailavo account, we collect your name, email address, and password (stored as a hashed value — never plain text). For print partner accounts, we also collect company name, press capabilities, and bank account details (via Stripe — see below).

Payment Information

Credit card and bank account details are collected and stored by Stripe, our payment processor. Mailavo never stores raw card numbers or full bank account numbers on our servers. We store only a Stripe customer ID and payment method tokens.

Address Data From Uploaded PDFs

When you upload a PDF to Mailavo, we extract mailing address data from each page to perform CASS/NCOA address validation and postal presorting. This address data belongs to your mailing recipients. We use it solely to process your mailing job and do not sell, license, or share it with any party other than your selected print partner and our address processing vendor (AccuZip/AccuTrace).

Print-Ready File Transfer (SFTP)

Once a mailing job is confirmed and production files are generated, Mailavo transfers the print-ready files (imposition-ready PDFs and job specification sheets) to the fulfilling print partner via SFTP (Secure File Transfer Protocol). SFTP connections are authenticated with key-based credentials and encrypted in transit. Only the files necessary to fulfill your specific job are transferred — no account credentials, payment information, or unrelated job data are included in the transfer. Print partners are contractually required to delete transferred files after job fulfillment and may not use them for any purpose other than producing your mailing.

Job and Usage Data

We record information about each mailing job — piece counts, cost breakdowns, job status, and fulfillment confirmations — to provide your billing history and support audit trails. We also collect standard server logs (IP addresses, browser type, pages visited) for security and performance monitoring.

2. How We Use Your Information

  • To process your mailing jobs (CASS/NCOA, presort, print partner routing, fulfillment)
  • To bill your account and record your billing history
  • To send transactional emails (account verification, job status notifications, payout confirmations for print partners)
  • To troubleshoot issues and provide customer support
  • To maintain the security and integrity of the platform
  • To comply with legal obligations

We do not sell your personal information. We do not use your data for advertising or share it with data brokers.

3. Data Retention

You control how long your uploaded files (PDFs, processed documents) are stored on Mailavo's servers. You can set a custom data retention period in your account settings. By default, files are retained for 90 days after job completion.

Account information (name, email, billing history) is retained as long as your account is active, and for a reasonable period afterward to support billing records and legal obligations. You may request deletion of your account at any time through your account settings.

4. Third-Party Processors

We share data with a small set of service providers who help us operate the platform:

  • Stripe — payment processing and, for print partners, payout disbursement via Stripe Connect. Stripe Privacy Policy
  • AccuZip / AccuTrace — CASS/NCOA-certified address processing and move update services. Address data submitted for validation is used solely for address correction and is not retained by AccuZip for their own use.
  • Brevo (Sendinblue) — transactional email delivery (verification codes, job notifications). Only email addresses and message content are shared.
  • Print Partners — when a job is accepted by a print partner, they receive the production-ready print files and job specifications needed to fulfill the mailing. They do not receive your account credentials, billing information, or any data beyond what's needed to print and mail your job.
  • Ghostscript — open-source PDF rendering and processing library used server-side to extract page content and generate print-ready output files from your uploaded PDFs. Processing occurs entirely within Mailavo's infrastructure; no PDF data is transmitted to a third-party Ghostscript service.

5. Data Security

All data transmitted to and from Mailavo is encrypted in transit via TLS. Each Mailavo customer account lives in its own isolated database schema — your data is never commingled with another customer's data. Access to production systems is restricted to authorized personnel.

No system is perfectly secure. If we become aware of a security breach that affects your data, we will notify you as required by applicable law.

6. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data in your account
  • Request deletion of your account and associated data
  • Export your billing history and job records
  • Opt out of non-transactional emails (we send very few)

To exercise any of these rights, contact us at privacy@mailavo.com.

7. Cookies

Mailavo uses session cookies to keep you logged in and to maintain temporary state during the signup and mailing workflow. We do not use third-party tracking cookies or advertising pixels. You can disable cookies in your browser, but this will prevent you from logging into the platform.

8. Changes to This Policy

If we make material changes to this policy, we'll notify you by email and update the "Last updated" date at the top of this page. Continued use of Mailavo after a policy update constitutes acceptance of the revised terms.

9. Contact Us

Questions or concerns about this policy? Contact us at privacy@mailavo.com or write to us at Mailavo, Inc.

© Mailavo. Powered by Applied Business Systems, Inc.