Date of last revision:
April 01, 2025

1. Introduction

This Privacy Policy (the "Policy") informs you about the types, scope, and purposes of processing personal information that the Company and/or its affiliates may receive when You use MyOffice mobile applications (the "Mobile Applications" or "Applications") and their components (including, but not limited to, MyOffice Documents and MyOffice Mail).

This Policy uses the definitions that comply with Article 3 of Federal Law No. 152-FZ of July 27, 2006 “On Personal Data” (“152-FZ”).

1.1. Authorized Person

Name:

Limited Liability Company New Cloud Technologies (New Cloud Technologies Ltd., the “Company“).

Registered office address:

Office 302, 7 Universitetskaya Street, Verkhneuslonsky district, Innopolis, Republic of Tatarstan, 420500 Russian Federation.

Postal address:

1 Bldg. 2 Bolshoy Gnezdnikovsky Lane, Moscow, 125009 Russian Federation

Contact information:

contact@myoffice.team

1.2. Types of Information Collected and Processed

• User credentials
• Information about the user's device
• Contact information
• Application crash reports
• Application use reports
• Other information

1.3. Categories of Data Subjects

• Application users

1.4. Processing Purposes

• Ensure stable operation of the Applications.
• Support, improvement, detection, and correction of errors of the Applications.
• Development of new functions of the Applications.
• Ensure security and reliability of the Applications.

2. Applicable Legal Basis

Your consent shall constitute the legal basis for the processing of personal information (including personal data).

By using the Mobile Applications, You agree that the Company may collect, store, and use Your personal information (including personal data) for the purposes specified in the Policy.

3. Amendments and Additions to the Policy

Please review this Policy periodically for changes. The Policy will adapt to regulatory changes. The current version of the Policy is posted on the website https://myoffice.ru/privacy_mobile_en/.

As soon as the changes require Your additional consent or mandatory familiarization, You will be necessarily notified about it.

4. Ensuring Information Security

During the execution of the processes of collecting and processing of the information specified in Clause 1.2 of this Policy, its security is ensured in accordance with the requirements of the applicable legislation.

The following factors are taken into account when ensuring information security:

• Current technological level.
• Cost of implementing protection measures.
• Results of the assessment of harm to personal data subjects in case of violation of the requirements of personal data legislation.
• Compliance of technical and organizational protection measures with current threats to information security.

Information security measures include, in particular, ensuring the confidentiality, integrity and accessibility of processed information by controlling physical access to it, as well as monitoring its processing procedures.

The Company has developed and implemented procedures to ensure compliance with the rights of data subjects and to respond to incidents.

In addition, we ensure the protection of personal information when developing or choosing hardware and software in accordance with the requirements of applicable law.

5. Data Processing

When You use the Company's Applications, location information, device information, usage data and Application failure reports (see Clause 6 and 7 of this Policy) are processed for the purposes of analyzing usage, optimizing, detecting and correcting errors in the Applications, and sending notifications to Application Users.

6. Transfer of Data to Third Parties

In order to analyze usage, optimize, detect and correct errors in Applications, as well as to send notifications to Application Users, information is transmitted to the following third-party services:

• Huawei Analytics Kit (only for MyOffice Documents application running on Android platform)
• Firebase Crashlytics
• Firebase Performance Monitoring
• Firebase Cloud Messaging
• Kaspersky Security Network
• Yandex Managed Service for Apache Kafka
• AppsFlyer (only for MyOffice Documents application)

Google Analytics (only for MyOffice Documents application)

6.1. Huawei Analytics Kit

We use the Huawei Analytics Kit service to collect and analyze technical data on the use of the MyOffice Documents application running on the Android platform.

The following information is automatically transmitted to Huawei Analytics Kit:

• Information about the device's location, such as: country, region, city, obtained by converting the IP address.
• Information about the device, such as: identificator, model and type of device, version and name of the operating system, parameters and language settings of the device.
• Identificators of operations performed and results of operations performed.
• Information about the use of the application.
• Application version.

To find out detailed information about the processing of personal data, refer to the document:

• https://developer.huawei.com/consumer/en/doc/development/HMSCore-Guides/android-personal-data-0000001050705120

Huawei Analytics Kit is used in MyOffice Documents application running on the Android platform in accordance with the integration guidelines:

• https://developer.huawei.com/consumer/en/doc/development/HMSCore-Guides/android-integrating-sdk-0000001050161876

The information transmitted to Huawei Analytics Kit is not additionally stored or transferred to other services or resources.

Information about Huawei's policy regarding the data received and data protection measures can be found on the resources:

• https://consumer.huawei.com/en/privacy/privacy-statement-huawei/

The transfer of analytical information to Huawei Analytics Kit can be disabled by the user in the settings of the MyOffice Documents application running on the Android platform.

6.2. Firebase Crashlytics

We use the Firebase Crashlytics service, which provides information about crashes and other malfunctions of Applications developed by the Company.

In case of failures or malfunctions, the following information is transmitted to Firebase Crashlytics:

• Information about the device's location, such as: country, region, city, obtained by converting the IP address.
• Information about the device, such as: identificator, model and type of device, version and name of the operating system, parameters and language settings of the device.
• Failure time and technical information about the failure.
• Application version.

The information transmitted to Firebase Crashlytics is not additionally stored or transferred to other services or resources.

Information about the Firebase Crashlytics service policy regarding the data received and data protection measures can be found on the following resources:

• https://firebase.google.com/terms/crashlytics/
• https://firebase.google.com/terms/crashlytics-app-distribution-data-processing-terms

Google's Privacy Policy is available at:

• https://policies.google.com/privacy

The transmission of information about crashes and malfunctions of Applications to the Firebase Crashlytics service can be disabled by the user in the Application settings.

6.3. Firebase Performance Monitoring

We use the Firebase Performance Monitoring service which provides performance information (startup time, screen rendering time, and activity) regarding the Applications developed by the Company.

The following information is transmitted to Firebase Performance Monitoring:

• Information about the device's IP address.
• Identificators of operations performed and results of operations performed.
• Information about the device identificator.

The information transmitted to Firebase Performance Monitoring is not additionally stored or transferred to other services or resources.

Information about the Firebase Performance Monitoring service policy regarding the data received and data protection measures can be found on the resources:

• https://firebase.google.com/support/privacy

Google's Privacy Policy is available at:

• https://policies.google.com/privacy

The transmission of information about crashes and malfunctions of Applications to the Firebase Performance Monitoring service can be disabled by the user in the Application settings.

6.4. Firebase Cloud Messaging

We use the Firebase Cloud Messaging service which allows us to notify You of changes in file access settings and other changes in their status when working with them, as well as new emails and short messages addressed to You.

The following information is transmitted through the Firebase Cloud Messaging servers:

In MyOffice Document application:

• Information about the owner of the modified document: the identificator of their avatar in the system, first name, last name, email address and the owner's ID.
• Information about the modified file: unique identifier, MIME type, file name.

In the MyOffice Mail application:

• Information about the author of the email: the ID of their avatar in the system, the first name, last name and email address.
• Information about the email You received: the subject of the email, the part of its body, the name of the folder it entered, and the date it was received.

In addition, Firebase Cloud Messaging service information is always transmitted, such as a unique application identifier.

The information transmitted using Firebase Cloud Messaging is not additionally stored or transferred to other services or resources.

Information about the policy of the Firebase Cloud Messaging service regarding the received data and data protection measures can be found on the resources:

• https://firebase.google.com/terms
• https://firebase.google.com/terms/data-processing-terms

Google's Privacy Policy is available at:

• https://policies.google.com/privacy

Notification transmission using the Firebase Cloud Messaging service can be disabled by the user in the Application settings.

6.5. Kaspersky Security Network, Yandex Managed Service for Apache Kafka

We use the Kaspersky Security Network (KSN) service, which allows us to process analytical information about the use of Applications developed by the Company.

The following information is transmitted to KSN:

• Information about the device, such as: identificator, model and type of device, version and name of the operating system, parameters and language settings of the device.
• Anonymized analytical information about Applications' usage.
• Application versions.

In order to obtain analytical information from KSN, the service is used to create and manage Apache Kafka® clusters in the Yandex Cloud infrastructure (Yandex Managed Service for Apache Kafka®).

Information about the Privacy Policy of the KSN service regarding the data received and data protection measures can be found on the resources:

• https://www.kaspersky.com/products-and-services-privacy-policy

The Privacy Policy of YANDEX LLC is available at:

• https://yandex.ru/legal/confidential/?lang=en

The transmission of analytical information about the Applications usage can be disabled by the user in the Application settings.

6.6. AppsFlyer

We use the AppsFlyer service which allows us to process analytical information about the use of the MyOffice Documents application.

The following information is transmitted to AppsFlyer:

• Information about the device, such as: identifier, model and type of device, version and name of the operating system, settings and language settings of the device, etc.
• Anonymized analytical information about the use of the Application.
• Application version.

Information about the Privacy Policy of the AppsFlyer service regarding the data received and data protection measures can be found on the resources:

• https://www.appsflyer.com/legal/services-privacy-policy

6.7. Google Analytics

We use Google Analytics service, which allows us to process analytical information about the use of the MyOffice Documents application.

The following information is transmitted to Google Analytics:

• Information about the device, such as: identifier, model and type of device, version and name of the operating system, settings and language settings of the device, etc.
• Anonymized analytical information about the use of the Application.
• Application version.

Information about the terms of use of Google Analytics can be found on the resource:

• https://marketingplatform.google.com/intl/en_us/about/ads_platforms/gmp/advertising/terms

Information about how Google processes information that comes from websites and applications that use Google services can be found on the resource:

• https://policies.google.com/technologies/partner-sites?hl=en

The transmission of analytical information about the use of the MyOffice Documents application can be disabled by the user in the Application settings.

7. Internal Analytics

In order to analyze the use, optimize, detect and correct errors in Applications, information is transmitted and processed in the Company's internal analytics system.

7.1. Internal Analytics System

We use an internal analytics system to collect and analyze technical data on usage, failures, and other malfunctions of Applications developed by the Company.

Internal analytics systems are hosted and operate on the Company's resources, and the information received is not additionally transmitted to other external services, products, or resources.

The following information is automatically transmitted to the internal analytics systems:

• Information about the device's location, such as: country, region, city, obtained by converting the IP address.
• Information about the device, such as: identificator, model and type of device, version and name of the operating system, parameters and language settings of the device.
• Identificators of operations performed and results of operations performed.
• Information about the use of the application.
• Failure time and technical information about the failure.
• Application version.

The transmission of analytical information and information about failures to internal systems can be disabled by the user in the Application settings.

8. Connect to Gmail Mailbox

If you use the MyOffice Mail app as a client to connect to your Google mailbox (https://mail.google.com provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, California 94043, USA), your credentials are processed in full compliance with the conditions defined by the Google API User Data Usage Policy (https://developers.google.com/terms/api-services-user-data-policy).

To provide access to Google services, we use OAuth authentication. This is an open authorization protocol that provides us with limited access to secure resources for our services without disclosing your account authorization details.

You can restrict MyOffice Mail's access to your data at any time in your Google Account settings.

MyOffice Mail application uses Gmail API calls (https://developers.google.com/gmail/api), which only allow for reading, creation, and modification of messages (including attachments), metadata, and message headers.

The use of the information received from Gmail API by MyOffice Mail application complies with Google's requirements for limited use.

To access mail messages when there is no Internet connection, the email messages are stored on the user's mobile device.

MyOffice Mail application does not provide anyone with access to the received user data, including not allowing them to be read by people or processed by third parties, unless You have given direct permission to access a specific message for the purposes defined in Clause 1.5. of this Policy.

9. Connect to Google Drive

If you use MyOffice Documents application as a client to connect to Google Drive (https://drive.google.com provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, California 94043, USA), your credentials are processed in full compliance with the conditions defined by the Google API User Data Usage Policy (https://developers.google.com/terms/api-services-user-data-policy).

To provide access to Google services, we use OAuth authentication. This is an open authorization protocol that provides us with limited access to secure resources for our services without disclosing your account authorization details.

You can restrict access to your data to MyOffice Documents application at any time in your Google Account settings.

MyOffice Documents application uses GoogleDrive API calls (https://developers.google.com/drive/api/v3/about-sdk), allowing you to perform the following actions:

• Reading the list of files of the Google account owner contained in Google Drive.
• Getting metadata for each of the files: name, type, size, creation date, modification date, owner.
• Getting file contents.
• Saving files to the device's local storage.
• Exporting files to other cloud resources.
• Modification of file contents.
• Saving files to Google Drive.

The use of information received from Google Drive API by the MyOffice Documents application complies with Google's requirements for limited use.

To access the list of files when there is no Internet connection, file names along with their paths are saved on the user's mobile device.

As a Google Drive identifier, MyOffice Documents application stores only the email address of the Google account owner and does not store passwords or other confidential information.

MyOffice Documents application does not provide anyone with access to the user data received, including not allowing people to read it or process it to third parties, unless you have given direct permission to access a specific document.

10. Restrictions

Our Applications are not intended for children under the age of 16.

Thus, we do not collect, at least knowingly, information about persons under the age of 16, and do not share it with third parties.

11. Terms of Information Processing

We process your data exclusively for the period necessary to achieve the goals set out in this Policy. When these goals are achieved, your data will be deleted immediately.

12. Your Rights

You are not required to consent to the transfer of Your data to the Company and/or third parties.

If you refuse to provide us and/or third parties with your data, you may not use the Applications that require certain data from you.

When processing your data in accordance with this Policy, you have the right to withdraw your consent at any time, without affecting the legality of the processing performed prior to such withdrawal of consent.

If you have any questions, requirements or requests related to the processing of your data in accordance with this Policy, You can contact us using the contact information in Clause 1.1. of the Policy.