Last updated: 7 July 2026 · DRAFT TEMPLATE — have a lawyer review before launch.

Privacy Policy

Movepost (“we”, “us”) helps you update your mailing address across your accounts when you move. This policy explains what we collect, what we deliberately do not collect, and your rights.

The short version: We never ask for, receive, or store your account passwords or banking credentials. We do not sell your data or your move to advertisers. You sign into each account yourself, on the institution’s own website — Movepost fills in your new address once you’re in and tracks your progress. If you connect your email, access is headers-only: the permission we request cannot read your message bodies.

1. What we collect

  • Account you create with us: your email address and an authentication token. If you pay, our payment processor (Stripe) handles your card — we never see or store card numbers.
  • Your account list: the names of the services Movepost discovers or you add (e.g. “Chase”, “PG&E”), plus each one’s status (pending / done / skipped). This is stored so your list is there when you come back.
  • Your old and new address — the thing we exist to update. Your new address is what the Movepost extension fills into each site’s form for you.
  • If you connect your email: an encrypted access token (stored server-side only, revocable anytime) and the account list derived from your message headers. See section 3 — we never store or read message contents.
  • Basic usage/diagnostic data (e.g. pages viewed, errors) to keep the service working.

2. What we do NOT collect

  • Your banking, credit card, utility, or any other account passwords or logins. We never ask for them.
  • Your account numbers or card numbers.
  • We do not log into your accounts, and we do not submit changes on your behalf.

3. Email account discovery (optional, headers-only)

If you explicitly choose to connect your email, Movepost requests a metadata-only (headers) permission — for Gmail, the gmail.metadata scope. This permissioncannot read the bodies of your messages; it lets us see who emails you (sender, subject line headers) so we can spot accounts: a Chase email means a Chase account.

  • We process sender headers transiently to derive your account list; we store the derived list (service names), never your messages.
  • The email token is stored encrypted, server-side only — your browser relays it once when you connect and keeps no copy, and the extension never sees it. You can disconnect at any time, which deletes the token.
  • You can use all of Movepost without ever connecting an inbox — add accounts manually or from the free checklist instead.

Movepost’s use of information received from Google APIs adheres to theGoogle API Services User Data Policy, including the Limited Use requirements.

4. How we use your data

  • To build, save, and track your change-of-address checklist.
  • To send you service messages (e.g. reminders you asked for, receipts, early-access updates).
  • To operate, secure, and improve the service.

We do not sell your personal information, and we do not share it with advertisers or data brokers.

5. Who we share it with

Only the service providers needed to run Movepost — for example our hosting provider (Cloudflare), our payment processor (Stripe), and our email provider — each acting on our instructions under their own security obligations. We may disclose data if required by law.

6. Data security & isolation

Each user’s data is isolated so that one account cannot access another’s: per-user data is protected with database row-level security, encrypted in transit, and we store only the minimal data described above. Email tokens are encrypted at rest and never leave our servers.

7. Your rights

Depending on where you live (including under CCPA/CPRA and similar laws), you may have the right to access, correct, export, or delete your data, and to opt out of any sale or sharing of personal information. We honor these requests — and since we don’t sell data, there’s nothing to opt out of. To exercise any right, email hello@movepost.app.

8. Data retention

We keep your checklist while your account is active and delete it on request or a reasonable time after account closure.

9. Children

Movepost is not directed to children under 16 and we do not knowingly collect their data.

10. Changes & contact

We’ll post any changes here and update the date above. Questions:hello@movepost.app.