Your archive,
under your control.

Sign-in inherits your Microsoft 365 controls

There is no separate password to manage. Everyone signs in via Microsoft 365, so your existing SSO, multi-factor authentication, and conditional-access policies apply automatically — if Microsoft denies the sign-in, mailvault365 denies the session. We don't store your Microsoft password.

Every cross-mailbox access is recorded

When an admin or a user with granted access opens someone else's mailbox, opens a message in it, or downloads an attachment, the action is logged with the user, the timestamp, and the target. Role and access-grant changes are logged the same way. Admins and the account owner review this audit trail under Administration → Activity.

Reading your own mailbox is intentionally not logged — that's day-to-day work, not a compliance event.

What happens if you cancel

Archived emails are stored as standard RFC 822 .eml files from day one — never a proprietary format. Individual messages can be downloaded at any time; on cancellation, contact support and we'll arrange a complete export.

After cancellation, your data is retained for 30 days as a grace period. Re-subscribing within that window restores everything instantly. After 30 days, all archived content is permanently deleted from our systems.

Who we work with

To operate mailvault365 we rely on a small number of vendors — Microsoft (for the Graph API connection), a hosting provider, a payment provider, and an email-delivery provider. Each is bound by a written agreement and processes data only on our instructions. The current list is available on request.