How do I bulk download Gmail attachments?

Install the GMAAX Chrome extension, sign in with Google, set your filters (date, sender, file type), and click Download. All attachments matching your criteria will be downloaded automatically.

Is GMAAX safe to use with my Gmail account?

Yes! GMAAX only requests read-only access to Gmail. We cannot modify or delete emails. All processing happens locally in your browser. We never store your emails or attachments.

How much does GMAAX cost?

GMAAX offers a free 10-download trial. After that, it's $4.99/month or $49/year (save 18%) for unlimited downloads.

Privacy Policy for GMAAX - Gmail Attachment Extractor

Last Updated: November 1, 2025

INTRODUCTION

GMAAX - Gmail Attachment Extractor ("we," "our," or "the Extension") is committed to protecting your privacy. This Privacy Policy explains how we handle your data when you use our Chrome extension.

DATA COLLECTION AND USE

What Data We Access

Gmail Attachment Extractor requires access to your Gmail account to function. Specifically, we access:

Email Messages: To search for emails matching your criteria (date range, sender, subject, keywords)
Email Metadata: Message IDs, timestamps, sender/recipient information, and subject lines
Attachments: File names, file sizes, MIME types, and attachment content for download purposes

How We Use Your Data

We use the accessed data solely to provide the core functionality of the Extension:

Search emails based on your specified criteria
Identify attachments within those emails
Download attachments directly to your computer
Create local download logs for your records

Important: All data processing happens locally on your device. We do NOT:

❌ Store your emails on our servers

❌ Store your attachments on our servers

❌ Read the content of your emails

❌ Access emails you do NOT explicitly search for

❌ Upload your download logs to any servers

❌ Share your data with third parties

❌ Use your data for advertising or marketing

LOCAL DOWNLOAD LOGGING

Automatic Download Tracking

Gmail Attachment Extractor automatically creates local log files that track your attachment downloads. This feature:

What Information is Logged:

Downloaded filename
Email sender (name and email address)
Email subject line
Date the email was received
Date and time the attachment was downloaded

Where Logs Are Stored:

Saved ONLY on your local device in your Downloads folder
Format: "GMAAX-LOG-[YYYY-MMM-DD_HH-MM-SS].txt"
Human-readable plain text format
Easily searchable and archivable

Privacy Guarantees:

✓ Logs are stored EXCLUSIVELY on your computer

✓ NEVER uploaded to cloud or any servers

✓ NEVER shared with GMAAX or third parties

✓ You have complete control over retention and deletion

✓ No external transmission of log data occurs

Why We Create Logs:

Provide audit trail for compliance requirements (GDPR, HIPAA, SOX)
Enable record-keeping for business and professional use
Help you track what was downloaded and when
Support accountability and transparency

Your Control:

You can delete log files at any time from your Downloads folder
Logs are plain text files you can open with any text editor
You control how long to keep logs (we don't access or delete them)
No functionality is lost if you delete logs

TECHNICAL IMPLEMENTATION

How the Extension Works

Authentication: Uses Google OAuth 2.0 (industry standard)
Local Processing: All search and filtering happens in your browser
Direct Download: Attachments download from Gmail directly to your device
Local Logging: Log entries are written only to your local Downloads folder
No Server Communication: Your Gmail data never touches our servers

Permissions We Request

Gmail API (Read-only): Search emails and download attachments
Downloads: Save files to your computer
Storage: Remember your settings and preferences
Tabs: Detect Gmail tabs for seamless user experience

Why We Need These Permissions:

Gmail Read-Only: Required to search your emails and access attachments
Downloads: Required to save attachments and logs to your Downloads folder
Storage: Saves your preferences (folder names, filter settings)
Tabs: Improves user experience by detecting if Gmail is already open

DATA STORAGE AND RETENTION

What We Store Locally (On Your Device)

Extension Settings: Your preferences for folder names, default filters
OAuth Token: Securely stored to maintain your connection to Gmail

What We Do NOT Store (Anywhere)

Your emails
Your attachments
Your download logs (these are stored by YOU on YOUR device)
Your search history
Your contact information
Any personal data beyond OAuth credentials

THIRD-PARTY SERVICES

Google API Services

We use Google's Gmail API to access your Gmail data. This interaction is governed by:

Google API Services User Data Policy
Google OAuth 2.0 Security Guidelines

Important: When you authenticate, you're granting GMAAX permission to access your Gmail. We use this access ONLY for the Extension's functionality.

ExtensionPay (Payment Processing)

For premium subscriptions, we use ExtensionPay to process payments securely. ExtensionPay:

Handles all payment information
We do NOT see or store your credit card details
Complies with PCI-DSS security standards

ExtensionPay Privacy Policy: https://extensionpay.com/privacy

DATA SECURITY

How We Protect Your Data

OAuth 2.0 Authentication: Industry-standard secure authentication
HTTPS Encryption: All communication with Gmail API is encrypted
No Server Storage: Since we don't store your data, it can't be breached
Read-Only Access: We can't modify or delete your emails
Local Processing: Your data never leaves Google's servers or your device

Security Best Practices

We regularly update the Extension for security patches
We follow Google's security guidelines for Chrome extensions
We use minimal permissions (only what's necessary)
We don't inject code into Gmail's interface

YOUR RIGHTS

Data Access and Control

You have complete control over:

Revoking Extension access (via Google Account settings)
Deleting local settings (clear browser extension data)
Deleting download logs (delete files from Downloads folder)
Uninstalling the Extension at any time

GDPR Rights (For EU Users)

Right to Access: You can access all data we have (which is none on servers)
Right to Deletion: You can delete the Extension and all local data
Right to Portability: Your data is already on your device
Right to Rectification: Not applicable (we don't store personal data)
Right to Object: You can stop using the Extension at any time

CCPA Rights (For California Users)

Right to Know: We've disclosed what data we access in this policy
Right to Delete: Uninstall the Extension to remove all local data
Right to Opt-Out of Sale: We do NOT sell personal information
Right to Non-Discrimination: All features are available to all users

HOW TO REVOKE ACCESS

If you want to stop GMAAX from accessing your Gmail:

Option 1: Revoke Permission

Visit https://myaccount.google.com/permissions
Find "GMAAX - Gmail Attachment Extractor"
Click "Remove Access"

Option 2: Uninstall Extension

Go to chrome://extensions/
Find "GMAAX - Gmail Attachment Extractor"
Click "Remove"

After revocation or uninstall:

We immediately lose access to your Gmail
Your download logs remain on your device (you can delete them)
Your settings are cleared from the browser
No data about you exists on our servers

DATA SHARING AND TRANSFER

We Do NOT:

❌ Sell your data to anyone

❌ Share your data with advertisers

❌ Transfer your data to third parties

❌ Use your data for analytics or tracking

❌ Upload your download logs anywhere

❌ Access your data for any purpose except Extension functionality

Exceptions:

We would only share data if legally required to comply with:

Valid court orders
Government investigations
Legal obligations

Note: Since we don't store your data on our servers, there's nothing to share in most legal scenarios.

COOKIES AND TRACKING

We Do NOT Use:

Cookies
Analytics trackers
Advertising pixels
Session tracking
User behavior monitoring
Any form of tracking technology

The Extension:

Does not set cookies
Does not collect usage statistics
Does not track your behavior
Does not send telemetry data

INTERNATIONAL DATA TRANSFERS

Since we process all data locally on your device:

No international data transfers occur
Your data stays in your location
No cross-border data movement
Compliant with data sovereignty requirements

Your data only moves between:

Your device ↔ Google's Gmail servers (via Google's infrastructure)
Nowhere else

CHILDREN'S PRIVACY

The Extension is not intended for use by children under 13 years old. We do NOT knowingly collect personal information from children under 13.

If you are a parent or guardian and believe your child has used the Extension:

Contact us at support@gmaax.info
We will help you revoke access
Note: We don't store data on servers, so there's no data to delete

CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time. We will notify you of any changes by:

Updating the "Last Updated" date at the top of this policy
Posting a notice in the Extension's Chrome Web Store listing
Sending an email if changes are significant (if we have your email)

Your continued use of the Extension after any changes indicates your acceptance of the updated Privacy Policy.

We recommend reviewing this policy periodically to stay informed about how we protect your privacy.

COMPLIANCE

This Extension complies with:

Google Chrome Web Store Developer Program Policies
Google API Services User Data Policy
General Data Protection Regulation (GDPR) requirements
California Consumer Privacy Act (CCPA) requirements
Children's Online Privacy Protection Act (COPPA)

Limited Use Disclosure

GMAAX - Gmail Attachment Extractor's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

We only use the Gmail API to provide and improve user-facing features of GMAAX
We do NOT transfer Gmail data to third parties except as necessary to provide the Extension's functionality or comply with applicable law
We do NOT use Gmail data for serving advertisements
We do NOT allow humans to read Gmail data unless:
We have your explicit consent
It's necessary for security purposes (e.g., investigating abuse)
It's required to comply with applicable law

Learn more: https://developers.google.com/terms/api-services-user-data-policy

TRANSPARENCY REPORT

For Full Transparency:

Data We Store on Servers: ZERO
We have no user database
We have no email storage
We have no attachment storage
We have no log file storage

Data Requests Received: ZERO

We've never received government data requests
We've never received legal demands for user data
We've never shared user data with law enforcement

Why? Because we don't store your data.

CONTACT US

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: support@gmaax.info
Website: www.gmaax.info

Response Time: Usually within 24-48 hours

For Privacy-Specific Inquiries:

Subject Line: "Privacy Policy Question"

For Data Deletion Requests:

Subject Line: "Data Deletion Request"

(Note: Since we don't store data, you can simply uninstall the Extension)

For GDPR Requests:

Subject Line: "GDPR Request"

SUMMARY

Quick Overview:

✓ GMAAX processes your Gmail data locally on your device

✓ We search for and download attachments based on your criteria

✓ We create download logs that are stored ONLY on your computer

✓ We do NOT store, share, or sell your data

✓ Your emails and logs never leave your device or Google's servers

✓ Your privacy is our top priority

Simple Version:

"We help you download Gmail attachments. Everything happens on your computer. We don't store anything on our servers. Your data is yours alone."

Not affiliated with Google LLC. Gmail is a trademark of Google LLC.