Privacy Policy
NG Desktop ("the Service") is operated by Dengjin ("we", "us", "our") at ng.net. This Privacy Policy explains how we collect, use, store, and protect your information when you use the Service.
1. Information We Collect
When you sign in with your Google account, we request access to the following data through Google OAuth 2.0:
- Basic profile information — your Google user ID, email address, display name, and profile picture (scopes:
openid,email,profile). - Gmail — read, compose, send, and organize your email messages, including managing labels, starring, and moving messages to trash (scopes:
gmail.modify,gmail.send). - Google Drive — browse, upload, download, create, rename, and delete files and folders in your Google Drive (scope:
drive). - Google Calendar — view your calendar events (scope:
calendar). - Google Tasks — view and manage your tasks (scope:
tasks). - Google Contacts — view your contacts (scope:
contacts). - Google Photos — browse your photo library in read-only mode (scope:
photoslibrary.readonly). - Google Sheets — list, create, and edit spreadsheets (scope:
spreadsheets). - Google Docs — list, create, and edit documents (scope:
documents). - Google Slides — list, create, and edit presentations (scope:
presentations). - Blogger — view and manage your blogs (scope:
blogger). - Google Analytics — view your analytics data in read-only mode (scope:
analytics.readonly).
2. How We Use Your Information
We use your information solely to:
- Authenticate your identity and maintain your login session.
- Display and interact with your Google data within the NG Desktop interface on your behalf.
- Perform actions you explicitly initiate, such as sending an email, uploading a file, or creating a document.
- Improve and optimize the Service.
We do not use your Google data for advertising, profiling, or any purpose other than providing the Service functionality you directly interact with.
3. Data Storage and Security
- Authentication credentials — your Google user ID, email, OAuth access token, and refresh token are stored in a Cloudflare D1 database to maintain your session and refresh API access.
- Google application data — your emails, files, calendar events, and other Google content are fetched in real-time via Google APIs and rendered directly in your browser. This data is not stored on our servers.
- All data transmission is encrypted via HTTPS.
- Access tokens are automatically refreshed and old tokens are overwritten; we do not retain historical tokens.
4. Data Sharing
We do not sell, rent, or share your personal information with any third party. Our infrastructure relies on the following services:
- Google OAuth 2.0 and Google APIs — for authentication and accessing your Google data on your behalf.
- Cloudflare — for website hosting, CDN, and database services (Cloudflare Pages, Workers, D1).
- Google Gemini API — if you use the AI assistant feature, your prompts are sent to the Gemini API. We do not store your conversation history on our servers.
5. Your Rights
- You may revoke NG Desktop's access to your Google account at any time via Google Account Security Settings.
- Upon revocation, we will no longer be able to access your Google data, and your session will be invalidated.
- You may contact us to request deletion of all account information stored in our systems.
6. Cookies
The Service uses a single session cookie to maintain your login state. This cookie contains only a session identifier and no personal information.
7. Children's Privacy
The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children.
8. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Your continued use of the Service constitutes acceptance of the revised policy.
9. Contact Us
If you have any questions about this Privacy Policy, please contact us:
- Email: [email protected]
- Website: https://ng.net