Privacy Policy

Last updated: December 14, 2025

1. Introduction

Welcome to Gtidy ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Gmail inbox cleaning service.

By using Gtidy, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, please do not use our service.

2. Information We Collect

2.1 Google User Data We Collect

Gtidy uses Google OAuth 2.0 for secure authentication. We never store or have access to your Gmail password. When you connect your Gmail account through Google OAuth, we collect the following Google user data:

  • Gmail Messages: Email messages from your Gmail account, including message headers (sender, recipient, subject, date), message content, and email metadata (labels, thread information, size estimates)
  • Gmail Profile Information: Your Gmail email address, total message count, and total thread count
  • Google Account Information: Your Google account email address, display name, and profile image URL (provided by Google Sign-In)
  • OAuth Tokens: Access tokens and refresh tokens required to access the Gmail API on your behalf (stored securely and used only for service functionality)

We access this Google user data through the following Gmail API scopes:

  • https://www.googleapis.com/auth/gmail.readonly - To read and search your emails
  • https://www.googleapis.com/auth/gmail.modify - To delete emails and modify email labels as requested by you

You can revoke access to your Google account data at any time through your Google account settings or by disconnecting Gtidy from your account.

2.2 Account Information

We may collect basic account information such as:

  • Email address (for account identification)
  • Subscription status and billing information (for paid plans)
  • Usage statistics (number of emails cleaned, storage recovered)

2.3 Usage Data

We collect anonymized usage data to improve our service, including:

  • Feature usage patterns
  • Error logs and performance metrics
  • General location data (country/region level only)

3. How We Use Your Information

3.1 How We Use Google User Data

We use Google user data solely to provide and improve the user-facing functionality of Gtidy. Specifically, we use Google user data to:

  • Provide Core Service: Search, display, and delete emails from your Gmail account as you request through the Gtidy application
  • Improve Service Functionality: Enhance search accuracy, optimize deletion operations, and improve the user experience within the Gtidy application
  • Display Account Information: Show your email address, name, and profile image for account identification and personalization within the app
  • Calculate Statistics: Provide usage statistics such as the number of emails cleaned and storage space recovered (displayed only to you within the app)

3.2 Prohibited Uses of Google User Data

We do not use Google user data for any of the following prohibited purposes:

  • Targeted advertising, personalized advertising, retargeted advertising, or interest-based advertising
  • Determining credit-worthiness or for lending purposes
  • Creating databases for purposes other than providing the Gtidy service
  • Training AI models or machine learning systems
  • Selling to data brokers or information resellers
  • Any purpose other than providing or improving user-facing features of Gtidy

3.3 Other Information Use

We also use non-Google information to:

  • Manage your subscription and process payments
  • Send you service-related notifications and updates
  • Respond to your inquiries and provide customer support
  • Detect, prevent, and address technical issues and security threats
  • Comply with legal obligations

4. How We Store Google User Data

We store Google user data only as necessary to provide the Gtidy service:

  • OAuth Tokens: We securely store OAuth access tokens and refresh tokens required to access the Gmail API. These tokens are encrypted and stored only for the duration needed to provide service functionality.
  • Email Metadata: We temporarily cache email metadata (headers, labels, sizes) in your device's local storage to improve app performance. This data is stored locally on your device and is not transmitted to our servers.
  • Account Information: We store your Google account email address, display name, and profile image URL to identify your account and personalize your experience within the app.
  • Usage Statistics: We store anonymized usage statistics (number of emails cleaned, storage recovered) associated with your account for display within the app.

We do not store: The full content of your email messages on our servers. Email content is accessed in real-time through the Gmail API only when you request to view or delete emails, and is not permanently stored by Gtidy.

4.1 Data Protection Mechanisms

We implement industry-standard security measures to protect your Google user data:

  • OAuth 2.0 Authentication: We use Google's secure OAuth system - we never see or store your password
  • Encryption: All data transmitted between your device and our servers is encrypted using TLS/SSL. OAuth tokens are encrypted at rest.
  • Access Controls: Limited access to user data on a need-to-know basis. Only authorized personnel with legitimate business needs can access user data.
  • Security Procedures: We maintain security procedures and technical safeguards to protect the confidentiality of your Google user data
  • Regular Security Audits: We conduct regular security assessments and updates to maintain the security of our systems

5. How We Share Google User Data

We do not sell, rent, or share your Google user data with third parties for any purpose, including advertising, data brokering, or information reselling.

5.1 Limited Sharing for Service Provision

We may share Google user data only in the following limited circumstances, and only to provide or improve the Gtidy service:

  • Service Providers: We may share Google user data with trusted service providers who assist in operating our service (e.g., hosting providers, cloud infrastructure providers), subject to strict confidentiality agreements that prohibit them from using the data for any purpose other than providing services to Gtidy. These service providers are contractually required to protect your Google user data and are not permitted to use it for advertising, data brokering, or any other purpose.
  • Google APIs: We share Google user data with Google's Gmail API as necessary to provide the core functionality of Gtidy (searching and deleting emails). This sharing is done through Google's secure OAuth system and is limited to the scopes you have authorized.

5.2 Prohibited Sharing

We do not share, transfer, or disclose Google user data to third parties for:

  • Targeted advertising, personalized advertising, retargeted advertising, or interest-based advertising
  • Selling to data brokers or information resellers
  • Determining credit-worthiness or for lending purposes
  • Any purpose other than providing or improving user-facing features of Gtidy

5.3 Other Disclosure Circumstances

We may disclose information (including Google user data) only in the following additional circumstances:

  • Legal Requirements: We may disclose information if required by law, court order, or government regulation
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, user information may be transferred as part of that transaction, subject to the same privacy protections outlined in this policy
  • With Your Consent: We may share information with your explicit consent for specific purposes

6. Data Retention and Deletion

We retain Google user data only for as long as necessary to provide the Gtidy service and fulfill the purposes outlined in this privacy policy:

  • OAuth Tokens: We retain OAuth access tokens and refresh tokens for as long as your account is active and connected to Gtidy. When you disconnect your account or delete your Gtidy account, we immediately revoke and delete these tokens.
  • Account Information: We retain your Google account email address, display name, and profile image URL for as long as your account is active. This information is deleted when you delete your Gtidy account.
  • Usage Statistics: We retain anonymized usage statistics associated with your account for as long as your account is active. This data is deleted when you delete your Gtidy account.
  • Email Data: We do not permanently store email content. Email data is accessed in real-time through the Gmail API and is not retained on our servers after the operation is complete.

When the data retention period expires for a given type of data, or when you request deletion, we will delete or destroy the data in accordance with our data deletion procedures. You may request deletion of your Google user data at any time by contacting us at support@gtidy.com or by deleting your Gtidy account.

6.1 Your Rights and Choices

You have the following rights regarding your personal information and Google user data:

  • Access: Request access to your personal data and Google user data we have collected
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your account and associated Google user data. We will delete your data within 30 days of your request.
  • Revoke Access: Revoke Gmail access at any time through Google account settings or by disconnecting Gtidy from your account
  • Data Portability: Request a copy of your data in a portable format
  • Opt-Out: Unsubscribe from marketing communications (service-related emails may still be sent)

To exercise these rights, please contact us at support@gtidy.com.

7. GDPR Compliance

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to be informed about data collection and processing
  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Rights related to automated decision-making

8. Children's Privacy

Gtidy is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately, and we will delete such information.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes. Changes are effective when posted on this page.

10. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: support@gtidy.com

← Back to Home