Privacy Policy

Last updated: October 20, 2025

1. Introduction

This Privacy Policy explains how SlideDoctor ("Add-on," "we," "us," or "our") accesses, uses, and protects information obtained from your Google Workspace account when you install or use the Add-on for Google Slides.

2. Data We Access from Google

SlideDoctor accesses the following specific types of Google user data:

  • Presentation Content – Text, images, shapes, tables, and other visual elements within your Google Slides presentations
  • Presentation Metadata – Presentation ID, slide IDs, theme data, layout information, and formatting details
  • User Information – Your Google Workspace email address for identification purposes

Important: We only access this data for the specific presentation you are actively using with SlideDoctor. We cannot and do not access presentation data while SlideDoctor is not actively being used, and we can only access the presentation that is currently open and being used with SlideDoctor features. We do not access your data in the background or access other presentations in your account.

3. External API Communication & Data Sharing

To provide enhanced functionality, SlideDoctor transmits data outside of Google Workspace to the SlideDoctor API. Here's what you need to know:

3.1 Why We Send Data to Our API

The SlideDoctor API enables us to:

  • Use third-party libraries for advanced processing (e.g., Markdown parsing)
  • Provide AI-powered features for content enhancement
  • Cache results for improved performance and efficiency
  • Process complex operations that require server-side computation

3.2 What Data We Store

When you use advanced features that require external processing or AI capabilities, we store:

  • Presentation ID – To associate cached data with your presentation
  • User Email – For user identification and authentication
  • Presentation Content – Only when using features that require processing or caching (e.g., Markdown to Slides conversion, AI-powered features)

Important: Your presentation content data is only processed or stored when using an advanced feature that requires more complex processing or AI. Basic features that don't require external processing will not store or transmit your presentation data.

3.3 How We Use Your Email

Your email address will not be used for marketing emails. We only use it for:

  • User identification and authentication
  • Limited transactional emails (e.g., account notifications, security alerts)

4. AI Features & Third-Party AI Providers

SlideDoctor offers AI-powered features (indicated as "intelligent" features) that may share your presentation data with the following AI service providers:

  • Google Gemini
  • Anthropic Claude
  • OpenAI

4.1 No Training on Your Data

Your presentation content data will never be used to train AI models without your explicit prior consent. We currently have no intention to train any custom models on user data. When we use third-party AI providers, we:

  • Configure API requests to disallow training on your data
  • Transmit only the minimum data necessary for the requested feature
  • Instruct providers not to retain or use your data for model training

4.2 Bring Your Own API Keys

We will provide the option to use your own AI API keys, allowing AI processing to occur through your own account with Google Gemini, Anthropic Claude, or OpenAI. This gives you direct control over how your data is processed by these AI providers.

4.3 Markdown to Slides Feature

The Markdown to Slides feature uses your presentation's full theme data to support a streamlined experience and automated matching to your existing presentation style.

5. Data Security & Protection

  • Encryption in Transit – All data transmitted between your device, our servers, and third-party providers is encrypted using TLS 1.2 or higher
  • Encryption at Rest – Data stored in our secure database is encrypted with AES-256
  • Secure Infrastructure – Our database and API infrastructure follow industry-standard security practices
  • Least-Privilege Access Control – Access to user data is restricted to the minimum necessary for feature operation
  • Row-Level Security – Database security policies ensure users can only access their own data
  • Monitoring & Alerts – Automated monitoring helps us detect and respond to abnormal activity
  • Incident Response – In the event of a security incident affecting your data, we will investigate promptly and notify affected users by email within 72 hours of discovery

6. How We Use Data

We use your Google Workspace data exclusively to:

  • Perform the specific features you request (e.g., formatting, AI enhancements, Markdown conversion)
  • Cache results for improved performance and reduced processing time
  • Maintain feature functionality and user sessions

We do not:

  • Build user profiles for advertising purposes
  • Sell your data to third parties
  • Use your data to develop generalized AI/ML models
  • Share your data except as explicitly described in this policy
  • Store or process data that isn't inherently needed for the feature you're using

7. Product Analytics

To better understand feature popularity and prioritize improvements, we may collect aggregate analytics including:

  • Number of uses of each feature
  • Number of users using each feature
  • Basic usage patterns and error rates

This analytics data is aggregated and anonymized. It helps us prioritize building and enhancing the features most useful to you.

8. Data Retention & Deletion

Workspace data is stored only while your account remains active in the Add-on or until you delete it within the product, whichever occurs first. After deletion:

  • Records are removed from our active storage within 24 hours
  • Backups containing your data are retained for up to 7 days and then automatically purged

You may request export or deletion of your Workspace data at any time by emailing support@bryceyork.com.

9. Third-Party Services

SlideDoctor relies on the following types of third-party services:

  • Google Workspace APIs (for accessing your presentation data)
  • AI providers: Google Gemini, Anthropic Claude, OpenAI (only when using AI features)
  • Managed cloud database platform (for secure data storage)

Please review the respective privacy policies of these services to understand their data handling practices.

10. Minors' Privacy

The Add-on is not directed to children under 18, and we do not knowingly process data from them. If you believe we have inadvertently received such data, contact us and we will delete it.

11. Your Rights

You have the right to:

  • Access the data we store about you
  • Request deletion of your data
  • Export your data
  • Opt out of product analytics
  • Use your own AI API keys for AI features

12. Changes to This Privacy Policy

We may update this policy from time to time to reflect new features or legal requirements. When we make material changes, we will update the "Last updated" date at the top of this policy. Continued use of the Add-on after an update constitutes acceptance of the revised policy.

13. Contact Us

Questions or concerns about this Privacy Policy or our data practices? Please contact us at support@bryceyork.com.