sirow logo
Beta

Privacy Policy

한국어English

SIROW (the "Service") values users' privacy and makes best efforts to comply with applicable laws. This policy explains how the Service collects, uses, stores, and protects personal information, including the security model used in our dedicated self-hosted infrastructure.

Article 1 (Purpose of Collection and Use)

The Service collects the minimum personal information required for the following purposes.

  1. User identification through Google OAuth and permission validation for Google Sheets.
  2. Receiving user-configured webhook data and automatically writing it to designated Google Sheets.
  3. Incoming JSON payloads are parsed with user-defined mapping rules and appended as new rows in real time via Google Sheets API spreadsheets.values.append.
  4. Service quality improvement and troubleshooting through session-based activity logs.

Article 2 (Categories of Personal Data Collected)

The Service may collect the following information to provide core features.

  1. Google OAuth profile data: email address, display name, and profile image URL.
  2. Google Sheets credentials: access token, refresh token, and target spreadsheet ID.
  3. Webhook payload history, IP address, browser details, and session-based usage records.

Article 3 (Processing and Retention Period)

  1. Personal information is retained during active service use and deleted upon account removal.
  2. Operational records such as webhook logs are retained for up to 90 days for debugging and analytics, then automatically deleted.

Article 4 (Google API Data Usage Commitment)

  1. The Service accesses users' Google Sheets only to append webhook data configured by users.
  2. We require https://www.googleapis.com/auth/spreadsheets because users need to write into their pre-existing business spreadsheets. The drive.file scope is not sufficient for this workflow because it is limited to app-created files in typical usage.
  3. The Service does not arbitrarily read, modify, delete, or externally disclose existing sheet data.
  4. The Service does not share, transfer, or disclose Google user data to any third parties. Data is strictly used for the core functionality of appending webhook data to the user's designated spreadsheets.

Article 5 (Storage Location and Technical Safeguards)

  1. User data (logs and settings) is stored in an isolated, dedicated self-hosted infrastructure operated by the service owner.
  2. Spreadsheet writes are limited to the specific Spreadsheet ID provided by the user. We do not store existing sheet contents on our servers.
  3. Security controls include container isolation, database protection, and minimized external exposure using secure tunneling technology.
  4. Webhook payloads are processed in memory during handling, and data in transit is protected via HTTPS/TLS encryption.

Article 6 (Service Characteristics and Disclaimer)

The Service is currently provided as a single-operator MVP and beta service. Users acknowledge the following conditions.

  1. Temporary interruptions may occur due to power outages, home network issues, or hardware failures.
  2. While we strive for stability, we are not liable for monetary damages from transmission failures or data loss during free/beta operation.
  3. Users are responsible for maintaining independent backups of important data in Google Sheets.

Article 7 (Privacy Contact)

For privacy-related inquiries, please contact the representative below.

Announcement Date: March 25, 2026

Effective Date: March 25, 2026