Privacy Policy
Last updated: March 10, 2026
OpenBID ("we", "us") provides OpenBID Studio (Google Sheets add-on) and OpenBID Chat (Google Chat app). This section explains exactly what usage and billing-related data we collect, why we collect it, and what we do not collect.
1. Data We Collect for Usage, Access, and Billing
| Data field | Example | Why we collect it |
|---|---|---|
| User email | user@company.com | Identify account, apply subscription status, support/admin operations |
| Domain key | company.com | Apply domain-level subscriptions and controls |
| Action/event name | prepBid, undoPrepBid, chat_message | Usage metering, product analytics, troubleshooting |
| Usage counters | chat uses, studio menu uses | Free-tier warnings/limits and entitlement enforcement |
| Timestamps | client/server event time | Audit trail and support diagnostics |
| Script/project identifiers | Apps Script / deployment IDs | Service reliability and incident investigation |
| Spreadsheet identifier (ID only) | Google Sheet ID | Correlate operational events to a specific workbook instance (not sheet contents) |
| Subscription/plan state | free, individual, domain, pending activation | Access control and billing entitlement |
2. What We Do Not Collect for Usage Tracking
- We do not collect spreadsheet cell contents for usage metering.
- We do not intercept or copy client spreadsheet data solely for usage analytics.
- We do not sell personal data or use it for advertising profiles.
3. Feature-Specific Processing
Some features process user content by design:
- AI features (GPT/DALL·E): data is sent only when a user invokes AI functionality.
- Payment features: billing-related data is processed by Stripe.
- Google Workspace integrations: actions are processed through Google infrastructure (Apps Script/Workspace APIs).
4. Service Providers / Subprocessors
We use the following processors to run OpenBID:
- Google Cloud / Firebase (Apps Script, Cloud Run, Firestore, Workspace APIs)
- Stripe (subscriptions and payments)
- OpenAI (AI features, when explicitly used)
5. Data Retention
- Usage event logs are retained only as long as needed for operations, abuse prevention, support, and billing reconciliation.
- Billing and transaction records are retained as required by law and accounting obligations.
- We periodically delete or age out usage telemetry data where feasible.
6. Access and Security
- Usage data is stored in systems controlled by OpenBID.
- Access is restricted to authorized personnel with operational need.
- We apply reasonable administrative and technical safeguards to protect stored data.
7. Customer and User Rights
To request access, correction, or deletion of data associated with your account/domain, contact: help@openbid.bid. Please include the relevant account email and (if applicable) domain.
8. Workspace Admin Notice
For domain-managed deployments, your Google Workspace administrators may control app installation and organizational access. Domain-level subscription settings may apply to all users under that domain.
9. Policy Updates
We may update this policy from time to time. Material changes will be reflected by the "Last updated" date at the top of this page.