Privacy Policy - Radiant Google Workspace Add-on
This Privacy Policy explains how Radiant ("we", "our", or "us") collects, uses, stores, and protects information when you install or use the Radiant Google Workspace Add-on (the "Add-on"). By using the Add-on, you consent to the practices described below. If you disagree with any part of this policy, please do not use the Add-on.
1. Google User Data We Access
| Data Category | Google OAuth Scope / Source | Specific Data Elements | Purpose |
|---|---|---|---|
| Account identity | https://www.googleapis.com/auth/userinfo.email | Primary Google Account email address | Used as a unique key to enforce individual quotas and generate usage analytics |
| Basic profile | https://www.googleapis.com/auth/userinfo.profile | Display name & profile-picture URL | Shown in the Add-on UI and support communications to personalise the experience |
| Spreadsheet content | https://www.googleapis.com/auth/spreadsheets.currentonly(or user-selected range via Apps Script) | Cell values, formulas and formatting in the ranges you explicitly select or reference | Processed by our AI/ML model to generate insights, summaries or transformations you request |
| Spreadsheet metadata | Same scope as above | Sheet names, sheet & column dimensions, and file ID | Needed to apply results back to the correct location in your spreadsheet and maintain context |
| Usage events (non-content) | Generated by the Add-on | Feature invoked, timestamp, execution status; never spreadsheet content | Operational diagnostics and aggregate feature analytics |
2. How We Use Your Data
- Quota enforcement & licensing - Your email address identifies you so we can apply free-tier limits or paid entitlements.
- AI-powered processing - When you trigger an Add-on action, the selected spreadsheet data is securely sent to our servers, where an AI/ML model (hosted in Google Cloud) analyses or transforms it. The results are returned to your sheet; the raw content is discarded immediately after processing (see Retention).
- Product improvement - We compile high-level, non-personal statistics (e.g., "function X used 200 times last week") to prioritise new features and ensure reliability.
- We do not use your spreadsheet content or personal data to train or fine-tune our AI/ML models.
3. Data protection (Storage & Security Measures)
We follow industry best practices to protect data against unauthorised access, alteration or destruction:
- Encryption in transit & at rest - All network traffic uses TLS 1.2+; databases store email addresses and profile IDs using AES-256 encryption.
- Logical isolation - Each user's data is namespaced under their unique ID to prevent cross-customer data mixing.
- Role-based access control - Only a small subset of authorised personnel can access production systems; access is logged and regularly audited.
- Secrets management - Service keys and OAuth tokens are stored in Google Secret Manager and rotated automatically.
- Intrusion detection & monitoring - Continuous monitoring alerts us to abnormal behaviour; logs are retained for security forensics.
- Data segregation for AI/ML - AI workloads run in dedicated, hardened projects with no persistent storage of user content.
4. Retention & Deletion
- Spreadsheet content - Held in memory only for the duration of the AI computation (typically < 60 seconds) and permanently deleted immediately after the response is returned. No copy is stored on disk.
- Account identity & usage events - Retained while your Radiant account or Add-on installation remains active. After uninstallation or a deletion request, they are erased from our systems within 30 days.
- Back-ups - Encrypted back-ups are kept for up to 35 days purely for disaster recovery, after which they are automatically pruned.
- Users may request data erasure or export at any time by emailing getexcelia@gmail.com.
5. Machine-Learning Processing
Our AI model is hosted on Google Cloud. It receives only the cell content you explicitly select, performs the requested operation (such as summarisation or classification), and returns the result.
- No user data is used to train, retrain or fine-tune the underlying model.
- The model instance does not log prompts or outputs beyond transient server logs needed for operational health (< 7 days).
- All communications with the model occur over private, encrypted Google Cloud VPC links.
6. Sharing & Disclosure
We do not sell, rent, or trade your personal data. Data is shared only:
- With Google Cloud Platform, which acts as our sub-processor under the Google DPA;
- To comply with a lawful request, court order or legal process;
- To enforce our Terms of Service or protect the rights, property or safety of Radiant, our users or the public.
7. Your Choices & Rights
- Revoke permissions - You can remove the Add-on's access at any time in Google Account → Security → Third-party access.
- Access / deletion - Email getexcelia@gmail.com to request a copy of or deletion of your personal data. We will respond within 30 days.
8. Google API Services User-Data Policy Compliance
Radiant's use and transfer of information received from Google Workspace APIs will adhere to the Google API Services User Data Policy, including its Limited Use requirements.
Last updated: