I haven't used their app, but I would assume (good guess) they register as service with google. So they are using the API rather than caching credentials (which doesn't work well with 2FA anyway).
Correct. We've gone through the formal security audit that Google requires, and have been approved. Google's auth page is upfront about what we're requesting and we're trying to be very transparent about it.
you should seriously consider to offer a "client-only setup" and a "cloud-assisted" setup. Unfortunately, a lot of email-clients have started to proxy emails (or similar traffic) over their servers (mostly as necessity to delivery pushmail on iOS), which may be acceptable (users decision) but must be announced as such during setup so the user can make an educated decision. That said, on a desktop, I would really like to know which exact function can't be directly implemented in the app itself but rather has to go through your servers. You can sync down reminders and use local notifications on OSX.
I hear your point about local notifications and such. We can think about stricter client-only methods.
To be clear: unlike some other email clients out there, Twobird does not sync or route your email through our servers. We only use our servers to support notifications and reminders across multiple devices, so they work properly if, for example, you're logged into Twobird on your Mac, and also an iPhone or iPad. We try to explain this in our FAQ on our website, but maybe we can be more informative in-app somehow. Point taken.
Furthermore, you don't just offer a free app -you also run that service, which certainly results in operating costs. These days it has become obvious that services aren't free. (The general assumption has become "If you're are not paying for the product you are the product.")
That combination adds some serious questionmarks on the app/service that you might want to address directly on your website rather than per email or on MR.
I understand the skepticism, but we have no interest in exploiting user data. We’re very concerned with privacy and Twobird takes active measures, like blocking tracking pixels, to keep user activity private. We sympathize that everyone is tired of apps that compromise security and privacy, and we will continue to do whatever we can to keep Twobird users safe. As stated on our website, we intend to make money by selling premium plans with additional features. We just aren't there yet.
[automerge]1594838033[/automerge]
It id'd important messages as low priority, a deal breaker for me; thus I removed it.
Sorry to hear this happened. I understand if you're choosing to just move on, but in case you'd like us to try to fix the issue, can you send us more information on what messages were improperly categorized? You can reach us at feedback@twobird.com
Last edited: