Privacy

We aim to use the absolute minimum amount of your information

Who is requesting your Google user data?

• Gigaccounting Limited (New Zealand registered company) - for the HTML Signature app

What data are we requesting?

• Basic account info: Associate you with your personal info on Google & View your email address

To let you save and retrieve your data. The app uses your email address as the unique "key" (basically a label) for data you've saved in the app

• Run as a Gmail add-on

This lets you open the app open in your Gmail user interface. It's also a prerequisite for the following three items

• View your email message metadata when the add-on is running

This allows the app to read information such as the subject and recipients, but not the content of the current message and any other message within the same thread. It's a prerequisite for the following two items

• View your email messages when you interact with the add-on

To read the current message body in order to save it to be used later. When you use any "Save" button, the app reads the body of the currently open message and saves it to your data (unless you've opted to save something else)

• Manage drafts and send emails when you interact with the add-on

To add information to the message you're composing. When you use any "Insert" button, the app uses this permission to insert the data you saved earlier in to the current message. This permission also allows the app to temporarily create new drafts messages and replies, but that's not needed, so it doesn't

• Connect to an external service

We store data you've saved with us in an "external" database. It's technically external as it's outside of the app's program file, but the data is still stored by us using Google services in Google locations

Sharing

We don't share your data with any third parties aside from those noted below:

Your data is stored using Google products - see Storage below. It's not explicitly shared with Google, and we understand that Google won't investigate our storage nor attempt to glean or otherwise discover any information.

If you purchase a "Premium" subscription, your email address will be sent to Stripe. This allows Stripe to generate the checkout page with your email address as the recipient, and send you a receipt on payment. This allows us to associate the completed payment with your account, removing human error. We understand Stripe is a broadly trusted credit card payment provider and are confident in (but do not guarantee) their respect for your privacy. Please review Stripe's privacy policy if you are interested in purchasing a Premium subscription.

Storage

Any data stored is stored by us using Google applications and services - please review Google's privacy policies

Your data is stored in working memory (cache) while you're using the app, and for 6 hours afterwards so it loads quickly when you need it next. This 6 hour timer resets each time you use the add-on. It can't be accessed by any other users. At rest, it's stored in Google Sheets, in and encrypted and unreadable state. The AES encryption would take billions of years of computing to crack and find any personally identifiable information.

We can decrypt the data if absolutely required for maintenance, but we can't associate the decrypted data with you. Your email address is the unique identifier for your data, and is stored in an irreversibly encrypted manner (hashed). We can only associate your data with you by knowing your email address (so we can generate the hash again and find the corresponding data). We will only ever do so to fix a problem or perform some other function necessary for the service, or to assist you with your data, or to delete your data.