Privacy Policy

Last updated: April 22, 2026

This privacy policy applies to OneEx YT Publisher ("the App"), a private internal tool used by OneEx to upload video content to YouTube channels owned by OneEx. The App is not offered to the general public; access is restricted to channel owners authorized by OneEx.

1. Data We Access

When you authorize the App with your Google account, we request the following OAuth scope:

• https://www.googleapis.com/auth/youtube.upload — permission to upload videos to YouTube channels you own.

Using this permission, the App accesses:

• Your YouTube channel handle and channel ID (to confirm which channel the upload targets).
• The OAuth access token and refresh token Google issues to your account for this App.

We do not access your email contents, contacts, Drive files, location, or any other Google service data.

2. How We Use the Data

The App uses the OAuth credentials solely to:

• Upload video files (Shorts and standard videos) to the specific YouTube channel you authorized.
• Set video metadata (title, description, category, privacy status) on the uploads it performs.

We do not read, download, or modify any content on your channel other than the uploads the App itself initiates.

3. Data Storage

OAuth refresh tokens are stored encrypted at rest on a private server operated by OneEx (not shared with third parties). Uploaded video files are streamed directly from our private object storage to YouTube; copies are not retained outside the original source.

4. Data Sharing

We do not share, sell, or transmit your OAuth credentials, channel data, or video content to any third party. The only external recipients of data are Google APIs (YouTube Data API v3 and Google OAuth 2.0 token endpoint), to the extent required to perform the uploads you authorized.

5. Data Retention and Revocation

OAuth refresh tokens are retained for as long as you keep the authorization active. You can revoke the App's access at any time by visiting https://myaccount.google.com/permissions and removing "OneEx YT Publisher" from your authorized applications. Once revoked, the stored refresh token becomes unusable and will be purged from our storage at the next maintenance cycle.

6. Google User Data Usage — Limited Use Compliance

The App's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We use Google user data only to provide the upload functionality you authorized.
• We do not use the data for advertising, serve ads, or train generalized AI/ML models.
• We do not allow humans to read Google user data unless we have your explicit consent, it is necessary for security, or required by law.
• We do not transfer Google user data to third parties except as necessary to provide the service (e.g., Google's own APIs).

7. Security

Credentials are stored on a server accessible only to OneEx operations staff. Access is protected by SSH key authentication and restricted network ingress. OAuth token exchanges and uploads are transmitted over TLS.

8. Contact

Questions about this policy: moisnik2020@gmail.com

9. Changes to This Policy

We may update this policy occasionally. Updates will be published at this URL with an updated "Last updated" date.