Date of last revision:
June 22, 2022

1. Introduction

This Privacy Policy (hereinafter referred to as "Policy") informs you about the types, scope and purposes of processing of personal information (including personal data), which the Company and/or its affiliates may receive when you use MyOffice mobile applications (hereinafter referred to as the "Mobile applications" or "Applications") and their components (including but not limited to MyOffice Documents, MyOffice Mail, and MyOffice Focus).

This Policy uses the definitions corresponding to Article 3 of Federal Law No. 152-FZ "On Personal Data" of July 27, 2006 (hereinafter referred to as "152-FZ").

This Policy is the English translation of the original privacy policy written in Russian language which can be found on https://myoffice.ru/privacy_mobile/. In case of any discrepancies between Russian and English texts of the privacy policy the Russian text shall prevail.

1.1. Authorized person

Name:

Limited liability company "NEW CLOUD TECHNOLOGIES" (NEW CLOUD TECHNOLOGIES LTD, hereinafter referred to as "Company").

Legal address:

420500, Russian Federation, Republic of Tatarstan, Innopolis city, Universitetskaya str., 7, of. 302.

Post address:

125009, Russian Federation, Moscow, Bol. Gnezdnikovskiy per., 1, build. 2.

Contact information:

contact@ncloudtech.ru

1.2. Types of information collected and processed

• user credentials;
• information about the user’s device;
• contact information;
• Applications’ crash reports;
• Applications’ usage reports;
• other information.

1.3. Processing of special information categories

Special information categories (in accordance with Article 10, paragraph 1 of 152-FZ) shall not be processed.

1.4. Categories of data subjects

• Users of the Applications.

1.5. Processing purposes

• to provide stable operation of Applications;
• to support and improve the Application, and to detect and correct errors;
• to develop new functions of Applications;
• to provide security and reliability of Applications.

2. Applicable legal basis

The legal basis for processing personal information (including personal data) is your consent.

By using Mobile Applications, you agree that the Company may collect, store, use and otherwise process your personal information (including personal data).

3. Changes and additions to this Policy

Please read this Policy regularly. The Policy will adapt to regulatory changes. The current version of the Policy is available at https://myoffice.ru/privacy_mobile_en/.

As soon as the changes require your additional consent or obligatory familiarization, you will be informed about this fact.

4. Information security

Data collection and processing processes ensure security at every stage of the data lifecycle.

The following factors are taken into account in the information security:

• current technological horizon;
• the cost of implementing protection measures;
• types, categories and purposes of processing, as well as the probability and degree of risk to the rights and freedoms of individuals;
• compliance of technical and organizational protection measures with the risks.

Measures include, but are not limited to, providing for the confidentiality, integrity and availability of data by controlling physical access to the data, as well as the processes of data entry, modification, deletion and transfer.

The Company has developed and implemented procedures to ensure that the rights of data subjects are observed, and to respond to data disclosure.

In addition, we consider the protection of personal data when developing or selecting hardware and software according to the principles of "privacy by default" and "privacy by design".

Security measures include, in particular, data transmission over encrypted communication channels (TLS).

5. Data processing

When the Company’s Applications are used, information about the user’s location, the user’s device, data about how the Applications are used and Application crash reports (see the section 6 and 7 of this Policy) are processed for the purposes of analysis, optimization, detection and correction of errors, and also to send notifications to the Application User.

6. Transfer of data to third parties

For the purposes of analysis, optimization, detection and correction of errors in the Applications, and also to send notifications to the Application User, information is transferred to the following third-party services:

• Huawei Analytics Kit (exclusively for the MyOffice Documents Android application);
• Firebase Crashlytics;
• Firebase Performance Monitoring;
• Firebase Cloud Messaging.

6.1. Huawei Analytics Kit

We use the Huawei Analytics Kit service to collect and analyze technical data about the use of MyOffice Documents Android application.

The following information is automatically transmitted to Huawei Analytics Kit:

• information about the location of the device, including country, region, and city, obtained by converting an IP address;
• device information such as: device ID, model and type, operating system version and name, device settings and language settings;
• IDs of operations performed and results of operations performed;
• information about using the app;
• application version.

For more information about the personal data processing, see the document:

• https://developer.huawei.com/consumer/en/doc/development/HMSCore-Guides/android-personal-data-0000001050705120.

Huawei Analytics Kit is used in MyOffice Documents Android application in accordance with the embedding recommendations: 

• https://developer.huawei.com/consumer/en/doc/development/HMSCore-Guides/android-integrating-sdk-0000001050161876.

The information transmitted in Huawei Analytics Kit is not additionally stored or transmitted to other services or resources.

You can find information about the Huawei company's policy regarding received data and data protection measures on the resource:

• https://consumer.huawei.com/en/legal/privacy-policy/?lang=en.

The transfer of analytical information to Huawei Analytics Kit can be disabled by the user in the MyOffice Documents Android application settings.

6.2. Firebase Crashlytics

We use the Firebase Crashlytics service, which provides information about failures and other malfunctions in the Applications developed by the Company.

The following information is transferred to Firebase Crashlytics in case of failures or malfunctions:

• information about the location of the device, including country, region, and city, obtained by converting an IP address;
• device information such as: device ID, model and type, operating system version and name, device settings and language settings;
• the time of failure and technical information about the failure;
• application version.

Information transferred to Firebase Crashlytics is not additionally stored or transferred to other services or resources.

Information about Firebase Crashlytics’s data privacy policy and data protection measures can be found on the following resources:

• https://firebase.google.com/terms/crashlytics;
• https://firebase.google.com/terms/crashlytics-app-distribution-data-processing-terms.

Google’s Privacy Policy is available at:

• https://policies.google.com/privacy.

The transfer of information concerning failures or malfunctions to Firebase Crashlytics can be disabled by the user in the Application settings.

6.3. Firebase Performance Monitoring

We use the Firebase Performance Monitoring service, which provides information about the efficiency (launch time, rendering time of data in screens and activity) of the Applications developed by the Company.

The following information is transferred to Firebase Performance Monitoring:

• information about the IP address of the device;
• IDs of operations performed and results of operations performed;
• information concerning the device’s ID.

The information transferred to Firebase Performance Monitoring is not additionally stored or transferred to other services or resources.

Information about Firebase Performance Monitoring’s data privacy policy and data protection measures can be found on the following resources:

• https://firebase.google.com/support/privacy.

Google’s Privacy Policy is available at:

• https://policies.google.com/privacy.

The transfer of information concerning efficiency to Firebase Performance Monitoring can be disabled by the user in the Application settings.

6.4. Firebase Cloud Messaging

We use the Firebase Cloud Messaging (FCM) service, which allows us to deliver notifications about changes in a file access settings or other file status changes which occur while working with it, and also to deliver notifications about received emails and short messages addressed to You.

The following information is transferred via Firebase Cloud Messaging server:

In the MyOffice Documents application:

• information about the owner of the modified data: the ID of their avatar in the system, their full name, postal address and ID;
• changed file data: unique ID, MIME type, file name.

In the MyOffice Mail application:

• information about the author of the email: the ID of their avatar in the system, their full name and postal address;
• received email data: its subject, part of its body, the name of the folder it was put in and the date it was received.

In the MyOffice Logos application:

• information about the messages you receive: message ID, the text of the message, information on the position of the message in the chat;
• information about a new chat: chat ID, the name of the chat, information about the type of chat;
• information about the author of the message received: their Name and ID.

In addition, FCM internal service information, such as the unique application ID, is always transferred.

Any data, transmitted via Firebase Cloud Messaging are not additionally saved or transmitted to other services or resources.

Information about the policy of the Firebase Cloud Messaging service in relation to received data and data protection measures can be found on the following resources:

• https://firebase.google.com/terms;
• https://firebase.google.com/terms/data-processing-terms.

Google’s privacy policy is available at

• https://policies.google.com/privacy.

The transfer of notifications through the Firebase Cloud Messaging service can be disabled by the user in the Application settings.

7. Internal Analysis

For the purposes of analysis of usage, optimization, detection and correction of errors in the Applications, information is transferred and processed in the Company's internal analytical system.

7.1. Internal Analytical System

We use an internal analytical system to collect and analyze technical data about usage, failures, and other errors in the Applications developed by the Company.

The internal analytical systems are located on and functions on the Company's resources, and the information received is not additionally transferred to any external services, products or resources.

The following information is automatically transmitted to the internal analytical systems:

• information about the location of the device, including country, region, and city, obtained by converting an IP address;
• device information such as: device ID, model and type, operating system version and name, device settings and language settings;
• IDs of operations performed and results of operations performed;
• information about using the app;
• the time of failure and technical information about the failure;
• application version.

The transfer of analytical information and information about failures to the internal analytical systems can be disabled by the user in the Applications' settings.

8. Connecting to Gmail mailbox

If you use the MyOffice Mail application as a client to connect to a Google mailbox (https://mail.google.com) provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, California 94043, USA), your account data is processed in full compliance with the terms set out in the Google API Services user data Policy (https://developers.google.com/terms/api-services-user-data-policy).

To provide access to Google services, we use OAuth authentication. This is an open authorization protocol that provides us with limited access to secure resources for our services without disclosing your account authorization details.

You can block access to your data for the "MyOffice Mail" app at any time in your Google account settings.

The MyOffice Mail app uses Gmail API calls (https://developers.google.com/gmail/api) that allow you to exclusively read, create, and modify messages (including attachments), metadata, and message headers.

MyOffice Mail application use of information received from Gmail APIs will adhere to Google’s Limited Use Requirements.

To access email messages when you are not connected to the Internet, email messages are saved on the user’s mobile device.

MyOffice Mail application does not grant anyone access to the received user data, including not allowing it to be read by people or processed by third parties, unless You gave direct permission to access a specific message for the purposes specified in paragraph 1.5. of this Policy.

9. Connection to Google Drive 

If you use the MyOffice Documents application as a client to connect to a Google Drive (https://drive.google.com) provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, California 94043, USA), your account data is processed in full compliance with the terms set out in the Google API user data Policy (https://developers.google.com/terms/api-services-user-data-policy).

To provide access to Google services, we use OAuth authentication. This is an open authorization protocol that provides us with limited access to secure resources for our services without disclosing your account authorization details.

You can block access to your data for the MyOffice Documents app at any time in your Google account settings.

The MyOffice Documents app uses GoogleDrive API calls (https://developers.google.com/drive/api/v3/about-sdk) that allow the following actions:

• reading the list of files belonging to the Google account holder and stored on Google Drive
• receiving metadata for each of the files: name, type, size, date of creation, date of modification, owner
• receiving the contents of the files
• saving the files on the device's local storage
• exporting the files to other cloud resources
• modifying the contents of the files
• saving the files on Google Drive.

The use by the MyOffice Documents application of information obtained from the Google Drive API will adhere to Google’s Limited Use Requirements.

To access the list of files when you are not connected to the Internet, the names of files and their paths are saved on the user’s mobile device.

As a Google Drive identifier, the MyOffice Documents application only saves the email of the Google account holder, and does not save passwords or other confidential information.

The MyOffice Documents application does not grant anyone access to the received user data, including not allowing it to be read by people or processed by third parties, unless you gave direct permission to access a specific document.

10. Limitations

Our Applications are not intended for children under 16 years.

Thus, we do not collect, at least knowingly, information about persons under 16 years, and do not transfer it to third parties.

11. Terms of information processing

We process your data only for the period of time necessary to achieve the goals set out in this Policy. Your data will be deleted immediately when the specified objectives are achieved.

12. Your Rights

You are not obliged to consent to the transfer of your data to us and/or third parties.

If you refuse to provide us and/or third parties with your data, you cannot use the Applications that require you to provide certain data.

When processing your data in accordance with this Policy, you have the right to withdraw your consent at any time without affecting the legality of the processing performed prior to such withdrawal of consent.

If you have any questions, requirements or requests related to the processing of your data under this Policy, you may contact us using the contact information provided in section 1.1. of this Policy.