Last updated: May 30, 2026

Privacy Policy

This Privacy Policy describes how Sheet to PDF ("we", "us") collects, uses, and protects information when you use our Google Sheets add-on and related services.

1. What we access

Sheet to PDF uses Google's least-privilege drive.file OAuth scope. We can only see and modify:

• Google Sheets where you have explicitly opened the add-on
• Google Docs you select via the picker as a template
• Drive folders you select as a destination
• Files our add-on has created in your Drive

We do not have access to your other Drive files, emails, calendar, or any other Google service.

2. What we store

Free tier

• Your email address (from Google OAuth)
• A monthly usage counter (number of PDFs generated)
• Preferences saved locally in your spreadsheet via UserProperties (template URL, filename pattern)

Nothing else. PDF content is generated and delivered to you (download or your Drive) without being stored on our servers.

Paid plans

In addition to the above, we store:

• Your subscription status (managed by Stripe — see Stripe's privacy policy)
• Stripe customer ID (we never see your card details)
• Unlock claim history (for the free-tier gamification on free plans)
• Referral relationships (if you used a referral code)

For Pro+ and Premium plans, when you choose to use the public share link feature, generated PDFs are stored on Cloudflare R2 with a random unguessable URL. You can delete them at any time via the sidebar.

3. What we don't store

• The content of your Google Docs templates
• The content of your Google Sheets
• Generated PDFs (except hosted PDFs on Pro+/Premium, with your explicit action)
• Your Google account password (we use OAuth — Google handles authentication)

4. Third parties

We use the following services to operate Sheet to PDF:

• Google Cloud (Firestore, Cloud Run) — backend infrastructure, located in EU (europe-west1)
• Stripe — payment processing (paid plans only)
• Resend — bulk email delivery (paid plans, when you use the email feature)
• Cloudflare R2 — PDF hosting (Pro+ and Premium plans only, when you choose this feature)
• Sentry — error monitoring (no user-identifying content)

5. Cookies

The add-on itself uses no cookies. The website (sheet-to-pdf.com) uses a single cookie stp_ref for referral attribution if you arrive via a referral link. It expires after 30 days and contains no personal data.

6. Your rights (GDPR)

You can at any time:

• Export all data we hold about you — open the sidebar → Account → "Export my data" (or email us)
• Delete your account and all associated data — open the sidebar → Account → "Delete my account"
• Request a copy of our data processing records — email [email protected]

7. Data retention

If you delete your account, we wipe all data within 30 days. Backups are retained for 30 days for disaster recovery, after which they are also wiped. Billing records may be retained for up to 7 years where required by tax law.

8. Security

All data is encrypted in transit (TLS 1.3) and at rest. Access to production systems is restricted to authorized engineers. We do not sell or share your data with advertisers or marketers.

9. Contact

For any privacy-related questions, contact [email protected].

10. Changes

If we materially change this policy, we will notify active users by email at least 30 days before the change takes effect.