Google API Services User Data Policy

Effective Date: July 5, 2026
Last Updated: July 5, 2026

Overview

VerifyMyDocuments ("we", "our", or "us") uses Google API Services to enable users to send verification emails on their behalf through their own Google accounts. This page describes how we comply with the Google API Services User Data Policy, including the Limited Use requirements.

Limited Use Disclosure

The use and transfer of information received from Google APIs by VerifyMyDocuments to any other application will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

What Google User Data We Access

When you authenticate via Google Sign-In and grant permissions, we access:

  • Your name and email address for account creation and identification
  • Your profile picture (optional, for display purposes)
  • The ability to send emails on your behalf via Gmail API — exclusively for sending verification request emails to universities

We do not access, read, or store the contents of your inbox, sent mail, or any other personal emails.

How We Use Google User Data

Google user data obtained through OAuth is used solely for the following purposes:

  • Send verification emails on your behalf: When you request verification of an academic document, we use the Gmail API to send a UGC-compliant verification request email from your email address to the relevant university or institution.
  • Authenticate your identity: Your Google account email and name are used to create and manage your VerifyMyDocuments account.

What We Do NOT Do with Your Google Data

  • We do not sell your Google user data to any third party.
  • We do not share your Google user data for advertising or marketing purposes.
  • We do not use your Google user data to train generalized artificial intelligence or machine learning models.
  • We do not read or access your personal inbox, sent emails, or any email content beyond the verification emails we send on your behalf.

Google Data and AI Services

If OpenAI or any other AI service is used within our application (such as the AI chat feature), Google user data obtained through Google APIs is not provided to those services unless explicitly authorized by you and only for the specific functionality you have requested.

For example, if you ask our AI chat assistant a question about your verification status, we do not share your Gmail inbox data with OpenAI. Only context relevant to your query (such as verification status or document metadata) may be transmitted to generate responses.

Data Retention and Deletion

We retain Google user data (name, email, profile picture) as long as your account is active. OAuth access tokens are stored securely and are refreshed only as necessary to send verification emails.

You may request deletion of your account and all associated Google user data at any time by:

Upon deletion, all Google user data is permanently removed from our systems within 30 days, except as required by law.

Third-Party Access

We do not share Google user data with any third parties except:

  • Google itself — as required to use the Gmail API.
  • Service providers who assist in operating our Service (e.g., secure cloud hosting), under strict confidentiality and data protection agreements. These providers do not have independent access to your Google user data.

Security

We implement industry-standard security measures to protect Google user data, including:

  • Encryption of data in transit (HTTPS/TLS)
  • Encryption of data at rest (AES-256)
  • OAuth 2.0 authentication with secure token storage
  • Regular security audits and vulnerability assessments

Your Rights and Controls

You can:

Changes to This Disclosure

We may update this disclosure from time to time. Any material changes will be communicated via the app or by email. Continued use of the Service after changes constitutes acceptance of the updated disclosure.

Contact Us

If you have any questions about this Google API Services User Data Policy disclosure, please contact us:

Note: This disclosure is also included in our full Privacy Policy.