At Softway, we prioritize your privacy and the security of your data.
This document outlines the specific access permissions required by our applications and how we handle your data.
While using the Communicator application, you will be asked to enter the access credentials for the IMAP and SMTP servers of your Gmail mailbox.
This grants us access with Read, Write, and Delete permissions for your messages.
Purpose of Access: This access is solely for the purpose of synchronizing the actions you perform within Communicator with your messages (e.g., reading new messages, sending emails, deleting correspondence).
Data Accessed: The application accesses Google user data via the Gmail API, specifically email message content, metadata (headers, subject, sender, recipient), and labels/folders.
This access is necessary to enable the core function of the application: a local email client.
Data Usage: The accessed data is used solely to display, manage, and synchronize the user's email messages within the local application.
Messages are downloaded to a local database on the user's device for fast access and offline functionality.
The application also uses the user's credentials to send emails via the Gmail SMTP service and to perform deletion actions as initiated by the user.
Data Sharing: No Google user data is shared with any third parties.
All processing is performed locally on the user's device.
Data Storage & Protection: User data is stored in a local, secure database on the user's device.
Access tokens are stored securely using platform-appropriate encryption mechanisms (e.g., Windows Credential Manager, macOS Keychain) to prevent unauthorized access.
Data Retention & Deletion: User email data is retained only for as long as the application is installed and active on the user's device, mirroring the user's current mailbox state.
Users can delete their data by simply uninstalling the application, which removes the local database and any stored tokens.
Additionally, users can revoke access at any time via their Google Account Security settings.
The application is a standalone, full-featured mail client that provides local storage, synchronization, and comprehensive management of the user's Gmail mailbox.
Justification: This scope is necessary for the primary and complete functionality of the application as a dedicated mail client.
It grants the application full access to read, send, delete, manage labels, and perform all operations necessary to fully synchronize the user's entire Gmail mailbox to the local device.
While more specific scopes (like gmail.readonly, gmail.send, and gmail.modify) exist, they are not sufficient for a robust, feature-complete mail client application of this nature.
We require the comprehensive permissions of https://mail.google.com/ to:
Token Revocation: This access token can be revoked by your mailbox administrator through the corresponding Google Console.
While using the Softway Scheduler application, you will be asked to log in to your Google account and permit access to your calendar with Read, Write, and Delete capabilities.
Purpose of Access: This access is used exclusively to synchronize the events you create or manage in Softway Scheduler with your Google Calendar.
Data Stored: No information is stored on Softway's servers, except for the Google OAuth token that we receive after your Google login.
This token grants us access only to your Google Calendar, and nothing else.
Strictly Personal: All information collected remains strictly personal and is not shared with any third party under any circumstances.
We remain at your disposal for any further clarifications and would like to hear your thoughts, if any.
Best Regards,
Softway R&D Department