Security Update 2021

We are very pleased to inform you that InMoat is now an authorized application via OAuth 2.0!

As you might know already, we’re a small, close-knit team that believes in better email. Unlike Silicon Valley giants, our operations resources are still stretched as far as possible to provide you with the best email productivity service possible. 

When 2019 came around, Google first announced that they would require all third-party applications to submit to a security review in order to continue accessing the Gmail API. The security review was then contracted to their security firm partners, with an estimated cost of the mandatory review amounting to $15,000 to $75,000. This sparked controversy amongst many app developers as a move by Google that would potentially destroy the development environment that helped Gmail flourish.

Given the importance of email in remote work, more than ever, due to the current circumstances caused by CoVID-19, we spent 2020 in hindsight to smooth out any wrinkles in our services, with your security in mind. Some of you might have noticed the slight change in accessing our services, resulting in a repeat of a simple, painless online authentication that we are all familiar with.

What is OAuth 2.0?

OAuth 2.0 is the latest authorization framework that allows for third-party applications to access accounts like inboxes through token verification. Tokens are encrypted for login credentials, as authorized by the account owner, which are generally not accessible to back-end operations.

This helps servers prevent passwords from getting hacked, even though the presence of keyloggers and other malware.

What does this mean for me?

We decided that given the recent surges in cybercrime and the vulnerabilities in social media platforms that have surfaced, the security review was an essential step for us to continue providing the best inbox experience securely. Likely, this is why Google, having considered these security concerns, created a higher obstacle for app introduction that relies on the Gmail API. With less clutter and a more rigorous process, we can be more certain of the security of our inboxes.

The bottom line? More importantly, you won’t have to change how you access or use InMoat, even with the added security improvements by our team, approved and tested by Google’s preferred cybersecurity partner, BishopFox. We also decided to have our application reviewed by an independent cybersecurity consulting firm, AccessTier, for rigorous testing of our AI and security protocols. You can now rest assured that unwanted eyes are not rifling through your inbox. Whew!

As always, we place your privacy first! We do not review any email information personally, and we will never store or sell your information. If you would like more information about our security policy, please do not hesitate to contact us at

Thank you,
The InMoat Team

Next: How to learn webflow within 30days