GSD ("the app", "we", "us") is a personal productivity application built for individual use. This policy explains what data the app accesses, how it is used, and how it is protected. GSD is not a commercial product โ it is a personal tool used by its developer and a small number of authorized users.
When you connect a Google account, GSD requests access to your Gmail data using Google's OAuth 2.0 authorization. Specifically, the app uses the https://mail.google.com/ scope, which allows it to:
When you connect a Google Calendar account, GSD requests the https://www.googleapis.com/auth/calendar.readonly scope, which allows it to read calendar events.
Your data is used exclusively to provide the features of the app:
GSD stores the following data in AWS DynamoDB:
Email message content and calendar event details are fetched on demand from Google's servers and are not stored permanently in the app's database.
OAuth access tokens and refresh tokens are stored in AWS DynamoDB with encryption at rest. These tokens are used only to authenticate API requests to Google on your behalf. You can revoke access at any time from your Google Account permissions page.
Your data is retained for as long as your account is active. You may request deletion of your data at any time by contacting the developer at the address below.
GSD is hosted on AWS infrastructure. Data in transit is encrypted via HTTPS/TLS. Data at rest is encrypted using AWS-managed keys. Access to the backend is restricted to authorized AWS IAM users only.
GSD is not directed at children under 13 and does not knowingly collect data from children.
If this policy is updated, the effective date above will be revised. Continued use of the app after any changes constitutes acceptance of the new policy.
For questions about this privacy policy or to request data deletion, contact: mike@stearnsy.com