Emails: Incoming and outgoing messages are stored in the database to map the ticket history Attachments: Files are stored encrypted on the server User Data: Name, email address, organizational affiliation Audit Log: All actions are logged

Stripe: Payment processing (own GDPR compliance) AI Providers: Only if the customer has configured an API key. The data is sent for processing to OpenAI or Anthropic — both have DPAs for EU customers.

GDPR Compliance

Data Protection under European Law

What MailDesk Stores

Emails: Incoming and outgoing messages are stored in the database to map the ticket history
Attachments: Files are stored encrypted on the server
User Data: Name, email address, organizational affiliation
Audit Log: All actions are logged

Data Deletion

Customers can request the deletion of their data. Admins can delete individual tickets (including all messages and attachments). When deleting an organization, all data is irreversibly removed.

Data Location

MailDesk is operated on European servers. All data remains within the EU.

Third Parties

Stripe: Payment processing (own GDPR compliance)
AI Providers: Only if the customer has configured an API key. The data is sent for processing to OpenAI or Anthropic — both have DPAs for EU customers.

Imprint & Privacy Policy

The full privacy policy can be found at /datenschutz, the imprint at /impressum.