This Privacy Policy describes how Sheets Portal (“we”, “our”, “us”) collects, uses, and protects information when you use sheetsportal.com (the “Service”). By using the Service, you agree to this policy.
1. What We Collect
Account information. When you sign in with Google, we receive your name, email address, and profile picture via Google OAuth. We do not store your Google password.
Portal and client data. Information you enter — client names, portal settings, request content, comments — is stored to operate the Service and synced to your Google Sheets as you configure.
Usage data. We collect logs of actions taken within the Service to improve performance and reliability.
Technical data. IP addresses, browser type, and error logs are collected for security monitoring and debugging.
2. Google Data Access
Sheets Portal accesses your Google account using OAuth 2.0 with the minimum scopes required:
- Google Sheets: Read and write access to create and update the Sheet where portal data is stored.
- Google Drive: Permission to create folders and upload files sent by your clients into your Drive.
We do not access any Sheets or Drive files beyond those created by Sheets Portal. You can revoke access at any time from your Google Account permissions page.
Our use of Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.
3. How We Use Your Data
We use data we collect to:
- Authenticate you and your clients securely via Google
- Create and manage client portals on your behalf
- Write request data, comments, and file references to your Google Sheet
- Upload client files to your configured Google Drive folder
- Send email notifications for new requests, uploads, and status changes
- Provide customer support and respond to enquiries
- Improve the reliability and performance of the Service
We do not sell your data, use it to train AI models, or share it with advertisers.
4. Data Sharing
We do not sell or rent your data. Limited sharing occurs only in these cases:
- Google APIs: Data is passed to Google Sheets and Drive APIs as directed by you to operate the Service.
- Infrastructure providers: Hosting and database services process data under strict data processing agreements.
- Legal obligations: We may disclose data if required by law or valid legal process.
- Business transfers: You will be notified before your data is transferred in any acquisition or merger.
5. Data Retention
Portal data is retained as long as your account is active. You can delete individual portals, requests, or files at any time from within the app. When you delete your account, we remove your personal data within 30 days. Data already written to your Google Sheets and Drive remains there under your control and is not deleted by us.
6. Security
We use TLS encryption for all data in transit, AES-256 encryption at rest, and least-privilege access controls. OAuth tokens are stored securely and never exposed to clients. Contact security@sheetsportal.com if you believe your account has been compromised.
7. Your Rights
You may request access to, correction of, or deletion of your personal data at any time by emailing privacy@sheetsportal.com. We will respond within 30 days. You may also revoke Google access at any time from your Google Account settings.
8. Cookies
We use only strictly necessary session cookies to keep you authenticated. We do not use third-party tracking or advertising cookies.
9. Changes to This Policy
We will notify you by email of material changes before they take effect and update the date above. Continued use of the Service after changes constitutes acceptance.
10. Contact
Sheets Portal
bahaeddin.feriani@gmail.com