At Filo , security is built-in from day one, integrated from the very first line of code. Every feature we offer—whether AI summaries, smart categorization, or otherwise—is built on a framework that treats confidentiality, integrity, and availability as uncompromising foundations. Our engineers, experienced in cloud security and applied AI, leverage modern encryption, segmented cloud architecture, and regular security testing to protect your emails, attachments, and account data.
Every feature we offer—whether it's AI summaries, smart categorization, or anything else—is developed on a solid framework that treats data confidentiality, integrity, and availability as non-negotiable primary principles.
Our team of engineers with deep expertise in cloud security and applied artificial intelligence uses modern encryption technologies, segmented cloud architectures, and regular security testing to ensure your emails, attachments, and account data remain secure. Our security protections have also been independently validated through assessments such as Google's annual Cloud Application Security Assessment (CASA).
Additionally, should you decide to discontinue using Filo, you can use the 'one-click deletion' feature to instantly and irreversibly erase all your data—no waiting period, no residual data.
All production data resides in Amazon Web Services' (AWS) ISO‑, PCI‑, and SOC‑certified data centers.
We follow a strict "defence‑in‑depth" strategy, combining network segmentation, service isolation, and fine‑grained IAM roles to eliminate single points of failure.
Filo passes Google's Cloud Application Security Assessment (CASA) Tier 3—the required third‑party audit for any app requesting restricted Gmail scopes.
We also comply fully with Google's API Services User Data Policy and remain approved in the Google Workspace Marketplace.
Filo integrates seamlessly with Google's Advanced Protection Program Administrators can authorize the app for their domain through Google's standard third‑party app‑access controls.
Your data is never used for training or secondary use. Every byte is strictly confined to the features you choose, kept under robust privacy controls, and never repurposed beyond what you see.
Internal access is locked down behind hardware‑key multi‑factor authentication.
Every access event is written to an immutable audit log, and no employee may view customer content without your explicit consent.
You always retain full control:
Confirmation triggers immediate, irreversible deletion: Gmail OAuth tokens are revoked on the spot, and all Filo‑stored data—live and backup copies alike—is purged within seconds.
Need to remove just one mailbox?
Open that mailbox's folder, click the trash icon in the address bar, and confirm; only that mailbox and its data are deleted.
- Mobile: Open the mailbox account folder, click the trash icon in the address bar and confirm — the operation will only delete this mailbox and its data.
- Desktop: Go to Settings ▸ Accounts, find the corresponding address under "Associated email accounts", click the × next to it, and confirm — the operation will only remove this mailbox and its data.
Disconnect it from Settings → Mailboxes → Remove (or the equivalent in your client). Only that mailbox and its associated data are deleted.
For more detail, please read our complete Privacy Policy and Terms of Service