Privacy Policy

Last updated: 2025-10-13
App name: My Personal Automation Assistant
Developer domain: objectory.co.kr

1. Overview

The App is a non-commercial automation tool built on Make.com that connects a user’s own Google Workspace account (Gmail, Calendar, Docs, Drive, Sheets) to perform personal workflow automation.

This policy explains how user data is accessed, used, stored, and protected.

It fully aligns with the Google API Services User Data Policy, including the Limited Use requirements.

2. Data Access (Scopes) and Purpose

The App requests only the OAuth scopes required to perform visible, user-initiated actions:

• /auth/drive.file — Used to store and update files that the user creates or selects during automation.

• /auth/userinfo.email — Identify the user’s Google account email address.

• /auth/calendar.settings.readonly — Used to detect the user’s time-zone for accurate scheduling of events and reports.

• /auth/calendar.calendars.readonly — Used to read calendar titles and time-zone information so the App can display selectable calendars to the user.

• /auth/calendar.events.owned — Used to create, edit, and delete events in the user’s own calendar when they issue scheduling commands.

• /auth/gmail.send — Used solely to send summary or notification emails on behalf of the user; the App never reads mailbox content.
  
  

No restricted or full-access scopes (for example, Gmail read, Drive full, Contacts access) are requested.

All scopes follow the Principle of Least Privilege and are directly tied to user-configured workflows.

3. Data Usage

User data is used only to execute automations explicitly configured by the user in Make.com.

There is no sale, sharing, or advertising use of any data.

Processing occurs solely within the secure Make.com environment.

4. Data Storage and Retention

• The App does not store Google user data permanently.

• Temporary processing exists only while a workflow is executing in Make.com’s secure infrastructure.

• Output files or events remain in the user’s Google account and can be deleted at any time by the user.

• When a user revokes access or deletes a Make scenario, all associated processing stops immediately.

5. Data Sharing and Third Parties

The App does not share, sell, or transfer Google user data to third parties.

Make.com acts solely as a data processor to run user-initiated workflows.

6. Security

• Authentication and authorization use Google OAuth 2.0 with HTTPS/TLS encryption.

• OAuth tokens are securely encrypted and stored by Make.com.

• The developer has no manual or human access to user data.

• All access is limited to authorized scopes and executed within Make.com’s verified environment.

7. Human Access

No human review of user data occurs unless explicit user consent or a valid legal obligation is provided.

8. AI / ML Disclosure

Data received from Google Workspace APIs is not used to train, improve, or fine-tune AI or machine-learning models, either by the developer or Make.com.

9. User Rights and Control

Users may revoke OAuth access at any time through their Google Account → Security → Third-party access.

Upon revocation, the App immediately loses API access to their data.

For privacy inquiries: hrocho2@gmail.com.

10. Children’s Privacy

The App is not directed to children under 13 and does not knowingly collect personal data from them.

11. Policy Changes

This policy may be updated periodically. Any revisions will be indicated by the “Last updated” date above and posted on objectory.co.kr.

12. Limited Use Statement

The use of information received from Google Workspace APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.