Request a demo
Get started for free today

Privacy policy

Privacy Policy 

Last update: 2025-09-29
 Responsible: UAN Technologies, SL (DianaTool)
 Contact: [email protected] 

 1) Google user data we access

When you connect your Google account, we request the minimum necessary permits and we access only the following data, depending on the features you enable:

  • Email: to identify your account, display your current session, and send you operational communications.

  • Profile picture: to personalize your dashboard experience (avatar/visual ID).

  • Access token and refresh (if applicable): to maintain a secure connection with Google and perform actions you request (e.g., importing a file or publishing content).

  • Usage statistics/technical telemetry associated with the integration: Aggregate and technical metrics about the integration's performance (e.g., number of posts, sync errors, latencies, queue status), without accessing your file content or building advertising profiles.

Exact scopes requested from Google:

  • https://www.googleapis.com/auth/drive.file – View, edit, create and delete only the Google Drive files you select or create with the app, using Google Picker.

  • https://www.googleapis.com/auth/yt-analytics.readonly – See reports of YouTube Analytics about your own content.

  • https://www.googleapis.com/auth/youtube.upload – Upload and manage videos on your YouTube channel upon your request.

We do not solicit drive.readonly nor other restricted areas.

2) How we use this data

We use your data exclusively for:

  • Authentication and account linking: log in and verify your identity.

  • Operations initiated by you: import a file you select from Drive, prepare and publish content you approve, or upload videos to your YouTube channel.

  • Statistics: display metrics for your YouTube channel on the dashboard.

  • Operational improvement: collect aggregated usage metrics (reliability, performance, issue resolution).

Never We do not sell your data, use it for advertising targeting, or combine it for purposes other than the features you request.

3) Sharing with third parties

We do not share Google user data with third parties except:

  • Data processors (suppliers): Hosting, monitoring, or backup services, always under contract with minimal access and data protection obligations.

  • Legal compliance: only in response to valid requests from competent authorities.

These third parties cannot use your data for their own purposes.

4) Storage and protection

  • Location: data centers in the EU or equivalent with adequate guarantees.

  • Transmission and rest: AES-256 encryption at rest, TLS 1.2+ in transit.

  • Token Security: Stored encrypted in secret stores; never in code or logs; rotation according to OAuth 2.0 practices.

  • Restricted internal access: only authorized personnel with operational needs.

  • Protection of sensitive data:

    • Files from Google Drive only if you explicitly select them using Google Picker.

    • YouTube videos only when you decide to upload them.

    • Tokens and metadata are treated as sensitive information, with key management (KMS), access control (RBAC), MFA on administrative accounts, and access monitoring.

    • Encrypted backups with limited retention.

    • Incident detection and reporting procedures in ≤72 h (GDPR).

5) Conservation and disposal

  • We retain data only as long as the integration is active or as needed to provide the service.

  • You can request the elimination of data writing to [email protected]; we will delete operational data within 30 days of verifying your request.

  • Deleted data is erased from active systems and after backups according to the rotation cycle.

  • You can revoke access at any time from the Google Security Settings.

6) Your options and how to revoke permissions

  • Revoke permissions: in your Google Account → Security → Third-party access.

  • Disconnection in DianaTool: You can disconnect the integration and request data export or deletion by writing to [email protected].

  • When you revoke permissions, the app can no longer access new data; existing data is treated according to this policy.

7) Compliance with the Google API Services User Data Policy (incl. “Limited Use”)

DianaTool's use of Google user data complies with the Google API Services User Data Policy, including the requirements of Limited Use, and the YouTube API Services Terms of Service:

  • Data is used only for user-directed functions.

  • They are not transferred to third parties except to provide the service, with your consent, or by legal obligation.

  • They are not used for advertising or to create advertising profiles.

  • They are not combined with data from other services for different purposes without your consent.

Purpose

Purpose

Provision of the SAAS service

Contract execution

Internal analytics and product improvement

Legitimate interest

Sending of communications
commercial

Consent (opt-in)

Compliance with legal obligations

Legal obligation