Privacy Policy

Last Updated: March 21, 2026

1. Introduction

snARASM ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how our snARASM Spam Reporter extension, the snARASM Outlook Add-in and website collect, use, and disclose information.

2. Information We Collect

When you use our services to report spam, we collect the following data:

Spam Evidence: The raw headers and body of the unsolicited email you are reporting.
Reporter Information: Your email address (if you choose to provide it). This is used solely to notify you of the report status or if an abuse desk requires manual verification.
Technical Log Data: We may log your IP address when you submit a report to prevent abuse of our API limits.

3. How We Use Your Information

We use the collected information for the sole purpose of:

Analyzing the reported spam to identify the originating network.
Generating and sending an automated abuse report to the responsible ISP or hosting provider.
Updating our internal blocklists and statistics.

4. Data Sharing and Disclosure

We do not sell your personal data to third parties.

However, the core function of snARASM is to report abuse. Therefore, we must share the Spam Evidence (which may contain your email address if it was in the original spam headers) with:

Abuse Desks & ISPs: The network providers responsible for sending the spam (e.g., Google, AWS, Mailgun, etc.) so they can take action against the spammer.

5. Security

All data is transmitted over HTTPS. The snARASM backend is hosted on a privately operated VPS. Access to the database is restricted to authorized personnel only.

6. Data Retention

We retain report data for as long as necessary to ensure the abuse report is processed and to maintain historical statistics on spam trends.

7. Your Rights

You may request the deletion of your data from our internal records at any time by contacting us.

8. Contact Us

If you have any questions about this policy, please contact us at: support@snarasm.org