Last updated: December 9, 2025

Privacy Policy

How MCPify handles your data when connecting to cloud services like Google Drive and Gmail.

1. Introduction

MCPify, a product of Ayfie International AS ("we", "us", or "our"), provides cloud connector services that enable semantic search across your cloud storage providers. This privacy policy explains how we collect, use, store, and protect your personal data when you use our services.

This policy specifically covers our Google Drive and Gmail connector services available at:

  • gdrive.mcp.mcpify.org - Google Drive Search
  • gmail.mcp.mcpify.org - Gmail Search

This policy supplements our general privacy policy with specific disclosures for Google API integrations as required by the Google API Services User Data Policy.

2. Data We Collect

When you connect your Google account to MCPify, we collect and process:

Account Information

  • Your Google account email address (for user identification)
  • Google user ID (for account linking)

Google Drive Data (if connected)

  • File names and metadata (titles, creation dates, modification dates)
  • File content for indexing and search purposes
  • File sharing status and permissions (read-only)

Scope used: drive.readonly - We only request read access.

Gmail Data (if connected)

  • Email subjects, bodies, and metadata
  • Sender and recipient information
  • Attachments (for search indexing)

Scope used: gmail.readonly - We only request read access.

OAuth Tokens

  • Access tokens (for API access)
  • Refresh tokens (for maintaining connection)

Tokens are encrypted and stored securely. You can revoke access at any time.

3. How We Use Your Data

We use your data exclusively to provide the semantic search service:

We DO

  • Index your files for semantic search
  • Store search indices in encrypted databases
  • Keep your data isolated from other users

We DO NOT

  • Share your data with third parties
  • Use your data to train AI models
  • Sell or monetize your personal data
  • Access data beyond what's needed for search

4. Data Storage & Security

Location

All data is stored in the European Union (Google Cloud Platform, europe-north1 region - Finland).

Encryption

Data is encrypted in transit (TLS 1.3) and at rest (AES-256).

Access Control

Your data is isolated per-user. Only you can access your indexed content.

Token Security

OAuth tokens are encrypted and stored in secure vaults with automatic rotation.

5. Data Retention & Deletion

We retain your data only as long as you maintain an active connection to our service.

When You Disconnect

  • Your search index is deleted immediately
  • OAuth tokens are revoked and deleted
  • Account association is removed
  • No backup copies are retained

How to Disconnect

You can revoke MCPify's access at any time through your Google Account settings:

myaccount.google.com/permissions

6. Your Rights (GDPR)

If you are located in the European Economic Area (EEA), you have the following rights:

Right to Access

Request a copy of your personal data

Right to Rectification

Request correction of inaccurate data

Right to Erasure

Request deletion of your data

Right to Restriction

Request limited processing of your data

Right to Portability

Receive your data in a portable format

Right to Object

Object to processing of your data

To exercise any of these rights, please contact us at [email protected]

7. Google API Services User Data Policy

MCPify's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Limited Use Disclosure

  • We only use Google user data to provide and improve the semantic search features described in this privacy policy.
  • We do not transfer Google user data to third parties except as necessary to provide the service, as required by law, or with your explicit consent.
  • We do not use Google user data for advertising purposes.
  • We do not allow humans to read your data unless you have given us affirmative consent, it is necessary for security purposes, or it is required by law.

8. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any changes by posting the new privacy policy on this page and updating the "Last updated" date. You are advised to review this privacy policy periodically for any changes.

9. Contact Us

If you have any questions about this privacy policy, please contact us:

Data Controller: Ayfie International AS

Organization Number: 988 485 281 (Norway)

Address: Sjølyst Plass 2, 0278 Oslo, Norway

Email: [email protected]

Website: https://mcpify.org

MCPify is a product of Ayfie International AS. For our general privacy policy, see ayfie.com/terms-of-use/privacy-policy

Questions about our privacy practices?

Contact Privacy TeamSecurity Overview