Home About Services Contact Terms of Service
Legal

Privacy Policy

Last updated: March 10, 2026  |  Effective: March 10, 2026

Table of Contents

  1. Introduction
  2. Data Controller
  3. Information We Collect
  4. Google OAuth Data
  5. Legal Basis (GDPR)
  6. How We Use Your Data
  7. Data Sharing
  8. Data Retention
  9. Your Rights (GDPR)
  10. Data Security
  11. International Transfers
  12. Cookies
  13. Children's Privacy
  14. Changes to This Policy
  15. Contact Us

1. Introduction

Welcome to CodesAuto (“we,” “our,” or “us”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit codesauto.com and use our automation development services.

CodesAuto is a platform that builds custom automation solutions for clients — including Python scripts, web automation tools, API integrations, data pipelines, bots, and web applications.

We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable data protection laws.

By accessing our website or using our services, you agree to the terms of this Privacy Policy. If you do not agree, please do not use our website.

2. Data Controller

The data controller responsible for your personal information is:

CodesAuto
Website: codesauto.com
Email: service@codesauto.com

For any privacy-related inquiries, please contact us using the details above.

3. Information We Collect

3.1 Account Information (via Google OAuth)

When you sign in using Google OAuth, we receive the following data directly from Google:

  • Email address — used as your unique account identifier
  • Full name — used to personalize your account experience
  • Profile picture — used as your account avatar

No passwords are stored by CodesAuto when you use Google sign-in.

3.2 Contact Form Submissions

When you submit our contact form, we collect:

  • Your name
  • Your email address
  • Your message content

3.3 Usage and Technical Data

We may automatically collect the following when you visit our website:

  • IP address (anonymized)
  • Browser type and version
  • Device type (desktop/mobile)
  • Pages visited and time spent
  • Referring website

4. Google OAuth — Special Disclosure

Google API Services User Data Policy: CodesAuto's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

4.1 Base Authentication Scopes (Always Used)

When you sign in with Google, CodesAuto always requests the following minimum scopes for authentication:

  • email — to identify your account uniquely
  • profile — to display your name and profile picture within the application
  • openid — to verify your identity securely

4.2 Conditional Automation Scopes (Only When Required)

CodesAuto builds automations that may, depending on the specific service you request, require access to additional Google services such as Gmail, Google Drive, Google Calendar, Google Sheets, or other Google APIs. These extended permissions are:

  • Never requested by default — they are only prompted when a specific automation you have commissioned explicitly requires them
  • Always presented via Google's own consent screen — you will see exactly which permissions are being requested before granting access
  • Specific and minimal — we request only the narrowest scope necessary for the automation to function (e.g., read-only access if writing is not needed)
  • Used solely to perform the requested automation — data accessed from these services is never used for advertising, profiling, training AI models, or shared with third parties for any purpose beyond executing your automation

Examples of when conditional scopes may be requested:

  • Gmail: If your automation sends, reads, or organizes emails on your behalf
  • Google Drive: If your automation reads, writes, or manages files in your Drive
  • Google Calendar: If your automation creates, reads, or updates calendar events
  • Google Sheets: If your automation reads from or writes data to spreadsheets

4.3 What We Never Do

  • Use any Google service data for advertising or profiling purposes
  • Share your Google account data with any third party for marketing
  • Retain access to Google services beyond the scope and duration of your automation project
  • Request permissions broader than what your specific automation requires

You can revoke CodesAuto's access to your Google account and any granted scopes at any time by visiting your Google Account Permissions page. Revoking access will stop any active Google-connected automations.

6. How We Use Your Information

We use collected data for the following purposes:

  • Authenticate and maintain your account
  • Provide our automation development services
  • Respond to contact form inquiries and support requests
  • Send important service-related notifications (no marketing spam)
  • Analyze website usage to improve performance
  • Comply with legal obligations and prevent fraud

We will never use your data for purposes incompatible with those stated in this policy without obtaining your consent.

7. Data Sharing and Disclosure

We do not sell, rent, or trade your personal data to any third party for marketing or commercial purposes.

We may share your data only in the following limited circumstances:

7.1 Google OAuth

Sign-in is handled via Google's OAuth 2.0 service. Data shared with Google is governed by Google's Privacy Policy.

7.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or if we believe in good faith that such action is necessary to protect our rights or the safety of others.

7.3 Business Transfers

If CodesAuto is involved in a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction. You will be notified via email and/or a prominent notice on our website.

8. Data Retention

  • Account data (Google OAuth): Retained until you request account deletion
  • Contact form submissions: Retained for up to 12 months, then securely deleted
  • Usage/analytics data: Retained on a rolling 24-month basis
  • Legal compliance data: Retained for as long as required by applicable law

To request deletion of your data, email us at service@codesauto.com.

9. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights regarding your personal data:

  • Right of Access — Request a copy of the personal data we hold about you
  • Right to Rectification — Request correction of inaccurate or incomplete data
  • Right to Erasure (“Right to be Forgotten”) — Request deletion of your personal data
  • Right to Restrict Processing — Ask us to limit how we use your data
  • Right to Data Portability — Receive your data in a structured, machine-readable format
  • Right to Object — Object to processing based on legitimate interests
  • Right to Withdraw Consent — Withdraw consent for any consent-based processing at any time

To exercise any of these rights, contact us at service@codesauto.com. We will respond within 30 days.

If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection supervisory authority (e.g., the ICO in the UK, CNIL in France, or equivalent in your country).

10. Data Security

We implement industry-standard security measures to protect your personal data:

  • All data transmission uses HTTPS/TLS encryption
  • Data at rest is stored with encryption where applicable
  • Access controls limit who can view personal data internally
  • Regular security assessments of our systems and infrastructure
  • Authentication via Google OAuth reduces password-related risks

However, no method of transmission over the internet is 100% secure. We cannot guarantee absolute security, but we are committed to taking all reasonable steps to protect your data.

11. International Data Transfers

Your data may be processed in countries outside the European Economic Area (EEA). When this occurs, we ensure appropriate safeguards are in place, including standard contractual clauses (SCCs) approved by the European Commission, to protect your data in compliance with applicable law.

12. Cookies and Tracking

We use the following types of cookies:

  • Essential Cookies: Required for authentication and basic site functionality. These cannot be disabled.
  • Analytics Cookies: Used to understand how visitors interact with our website. These are only set with your consent.

You can manage or delete cookies at any time through your browser settings. Disabling essential cookies may impact your ability to use parts of the site.

13. Children's Privacy

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you believe a child has provided us with personal information, please contact us immediately at service@codesauto.com and we will promptly delete that data.

14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or applicable laws. We will notify users of any material changes by:

  • Sending an email to registered users at least 30 days before the change takes effect
  • Updating the “Last Updated” date at the top of this page

Your continued use of our services after changes constitutes acceptance of the updated policy.

15. Contact Us

For any questions about this Privacy Policy, to exercise your data rights, or to request account deletion:

Email: service@codesauto.com
Website: codesauto.com
Response Time: We aim to respond within 30 days.