Privacy Policy

Last updated: July 24, 2025

1. Information We Collect

When you sign in using Google OAuth, we collect your name, email address, profile image and Google Drive metadata: file name, file type, webView link (read-only). We do not access document content.

2. How We Use Your Information

We use the information we collect to:

• Authenticate users via Google OAuth
• Manage sessions using secure JWT cookies
• We use Google Drive metadata to display to users a list of their Google Docs, Sheets, Slides, showing file titles to show suggestions for creating short links. Metadata is not saved or shared.

3. Data Sharing and Disclosure

We do not sell, trade, or otherwise transfer your personal information to third parties. We may disclose information if legally required or to protect our rights.

4. Data Security

We use industry-standard practices to protect your data:

• Encrypted HTTPS connections
• JWT tokens with expiration and signature validation
• Secure cookie flags

While no system is 100% secure, we regularly review our practices and codebase to minimize risk.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide services. We may also retain and use your information to comply with legal obligations, resolve disputes, and enforce our agreements.

6. Your Rights

Depending on your location, you may have the following rights:

• Access your data
• Request deletion of your account
• Revoke authorization or logout of your session

7. Cookies and Tracking

We use secure, HTTP-only cookies for managing user sessions (JWT token storage)

8. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

9. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Email: [email protected]