Privacy Policy

Last updated: 27-10-2024

This Privacy Policy describes how the Moneybird Gmail add-on (“Service,” “Add-on,” “we,” “us,” or “our”) collects, uses, and handles your information.

1. Information We Collect

1.1 Information You Provide

• OAuth Tokens: We store authentication tokens in your Google Apps Script userProperties to maintain integration between Gmail and Moneybird.
• Email Content: We process email content and attachments only when you actively use the add-on to interact with Moneybird. Importantly, we do not store any email content or attachments; they are processed in-memory and transmitted directly to Moneybird via their API.
• Moneybird Account Information: Basic account information required to facilitate the integration with your Moneybird account.

1.2 Automatically Collected Information

• Usage Data: Basic information about how you interact with the add-on, including frequency of use and features accessed.
• Technical Information: Browser type, device information, and other technical details necessary for service operation.

2. How We Use Your Information

We use the collected information solely to:

• Facilitate the integration between Gmail and Moneybird
• Process and transmit documents directly to Moneybird as requested through the add-on
• Maintain and improve the Service
• Ensure technical functionality and security
• Comply with legal obligations

3. Data Storage and Security

3.1 Storage

• OAuth tokens are stored securely in Google Apps Script userProperties
• We do not maintain a separate database of user information
• No email content or attachments are stored by our Service at any time - they are only processed in-memory for direct transmission to Moneybird

3.2 Security Measures

• All data transmission occurs over secure, encrypted connections
• We implement industry-standard security practices
• Access to technical systems is strictly limited and monitored
• Attachments are processed securely in-memory and transmitted directly to Moneybird via their API without intermediate storage

4. Data Processing and Transmission

4.1 Email Attachments

• When you choose to send an attachment to Moneybird:
  • The attachment is read from your email
  • Processed in-memory only
  • Transmitted directly to Moneybird via their secure API
  • No copies are stored on our servers
  • No temporary files are created
• The entire process occurs in real-time during your interaction with the add-on

5. Data Sharing and Disclosure

We do not sell, rent, or share your personal information with third parties. Information may be shared only in the following circumstances:

• With your explicit consent
• To comply with legal obligations
• To protect our rights, privacy, safety, or property

6. Third-Party Services

6.1 Google and Moneybird

Our Service integrates with Google Gmail and Moneybird. Your use of these services is governed by their respective privacy policies:

• Google Privacy Policy
• Moneybird Privacy Policy

6.2 Data Processing

• We process data only as necessary to provide the Service
• No data is shared between Google and Moneybird except as explicitly requested by you through the add-on

7. User Rights and Choices

You have the right to:

• Access your personal information
• Request correction of inaccurate data
• Request deletion of your data
• Revoke OAuth permissions at any time
• Disable or uninstall the add-on

8. Data Retention

• OAuth tokens are retained only while you actively use the Service
• Tokens are automatically deleted when you uninstall the add-on or revoke permissions
• No email content or attachments are permanently stored

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

• Posting the new Privacy Policy on our website
• Updating the “Last updated” date at the top of this Policy
• Providing notification through the Service when possible

10. Children’s Privacy

Our Service is not directed to children under 13. We do not knowingly collect personal information from children under 13.

11. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us here .

12. Additional Information for EU Users

For users in the European Union, we process personal data in accordance with GDPR requirements. The legal basis for processing your information is:

• Performance of the contract to provide you with the Service
• Your consent
• Legal obligations
• Legitimate interests in operating and improving our Service

You have the right to lodge a complaint with your local data protection authority if you have concerns about our data processing practices.