Privacy Policy

Effective date: April 12, 2026 · Last updated: April 12, 2026

    This policy describes how NiftySolutions ("we", "us", "our") handles
    data collected through our Google Drive integration service. We respect your privacy
    and are committed to protecting your personal information.
  

1. What this application does

NiftySolutions provides an automated file-synchronisation service that copies files shared in your Matrix (Element) workspace to your own Google Drive account. The service is used exclusively by NiftySolutions clients who have explicitly requested this integration.

2. Information we collect

When you authorise our application via Google OAuth, we receive and store:

Your Google account e-mail address (to identify which Drive account to use).
An OAuth refresh token (to maintain access on your behalf without requiring repeated logins).

We do not collect your name, profile picture, contacts, Gmail, or any other Google data beyond what is listed above.

3. How we use your information

The data collected is used solely to:

Upload files from your Matrix workspace to your Google Drive account.
Optionally log upload activity in a Google Sheet that you control.

Your credentials are never shared with third parties, never used for advertising, and never analysed beyond the scope of the synchronisation service.

4. Google API scopes requested

Our application requests the following Google API scopes:

https://www.googleapis.com/auth/drive — to create folders and upload files to your Google Drive.
https://www.googleapis.com/auth/spreadsheets — to optionally write a log of synced files to a Google Sheet in your Drive.

Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

5. Data storage and security

Your OAuth refresh token is stored in an encrypted server environment accessible only to authorised NiftySolutions staff. We apply industry-standard security measures including SSH key authentication, firewall restrictions, and access logging.

No file content from your Google Drive is stored on our servers — files are streamed directly from Matrix to your Drive without intermediate storage.

6. Data retention

Your OAuth token is retained for as long as you use the NiftySolutions synchronisation service. You may request deletion at any time by contacting us (see Section 9). You can also revoke access directly from your Google Account permissions page at any time.

7. Third-party services

This application integrates with the following third-party services, each governed by their own privacy policies:

Google LLC — Google Drive & Google Sheets APIs.
https://policies.google.com/privacy
Matrix.org / Element — open-source real-time communication protocol. Files are accessed via your organisation's self-hosted Matrix homeserver.

8. Children's privacy

This service is not directed at individuals under the age of 13. We do not knowingly collect personal data from children.

9. Contact us

If you have questions about this privacy policy, wish to revoke access, or want your data deleted, please contact us at:

Email: contact@niftysolutions.io
Website: https://niftysolutions.io

We will respond within 5 business days.

10. Changes to this policy

We may update this privacy policy from time to time. The "last updated" date at the top of this page will reflect any changes. Continued use of the service after changes are posted constitutes your acceptance of the updated policy.