Privacy Policy
Last updated: March 8, 2026
I. Introduction
This application, "Forms for Google Forms" (hereinafter referred to as the "App"), is developed,
maintained, and owned by Thousand Apps LLC (hereinafter referred to as "Company", "we", "us", or "our"),
a limited liability company organized under the laws of the State of Wyoming, United States.
Please note that the App is distributed on the Apple App Store through the individual developer account of
Denys Markin, who is the sole founder and owner (Founder & Owner) of Thousand Apps LLC.
By accepting this Privacy Policy and using the App, you enter into a legal relationship directly with Thousand Apps LLC.
We are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store,
and share information when you use our App. By using the App, you acknowledge and agree to the practices described
in this Privacy Policy. If you do not agree, please discontinue use of the App immediately.
For the purposes of the EU General Data Protection Regulation (GDPR), Thousand Apps LLC acts as the data controller
for any personal data processed through the App.
II. Use of Google API Services
The App integrates with the following Google API services to provide its core functionality:
- Google Forms API — to create, read, edit, and manage Google Forms on your behalf.
- Google Drive API — to list, organize, share, star, trash, and manage your Google Forms files and folders within your Google Drive.
- Google Sign-In (OAuth 2.0) — to securely authenticate your Google account and obtain authorized access to the services listed above.
Google API Services User Data Policy: Our use and transfer of information received from Google APIs
adheres to the Google API Services User Data Policy,
including the Limited Use requirements.
In accordance with the Limited Use requirements:
- We only use Google API data to provide and improve user-facing features of the App. We do not use Google API data for any other purpose.
- We do not transfer Google API data to third parties, except: (a) with your explicit consent, (b) as necessary for security purposes (e.g., investigating abuse), (c) to comply with applicable laws or regulations, or (d) as part of a merger, acquisition, or sale of assets (with prior notice to users).
- We do not use Google API data to serve advertisements or for any advertising-related purpose.
- We do not allow humans to read Google API data, except: (a) with your explicit consent (e.g., to debug an issue you reported), (b) as necessary for security purposes, (c) to comply with applicable law, or (d) when the data has been aggregated and anonymized for internal operations.
Additionally:
- All Google user data is transmitted securely using HTTPS encryption.
- No Google API data is transmitted to any third-party analytics, crash reporting, or advertising services. The third-party services listed in Section V receive only non-Google device telemetry, usage events, and crash data.
- We do not store Google API data on our servers. All Google Forms and Drive data is processed on-device and communicated directly between your device and Google's servers.
II.1. Google Drive Data
The App requests access to your Google Drive to manage your Google Forms files. This includes:
- Listing and searching for Google Forms files and folders in your Drive.
- Creating, renaming, moving, starring, trashing, and permanently deleting Forms files and folders.
- Managing sharing permissions (adding/removing collaborators, changing roles, link sharing settings).
- Copying Forms (duplicating).
We do not access, read, or modify any files in your Google Drive other than Google Forms and related folders.
We do not download, store, or transfer your Google Drive files to our servers.
All operations are performed directly between your device and Google's servers using your authorized OAuth token.
II.2. Google Forms Data
The App accesses your Google Forms data to provide form creation, editing, and response viewing functionality.
No Google Forms data is collected, stored on our servers, or shared with any third party.
Form data is cached temporarily on your device for performance and offline access, and is cleared upon sign-out.
III. Information We Collect
III.1. Information You Provide
- Google Account Information: When you sign in with Google, we receive your name, email address, and profile photo. This information is used solely to display your profile within the App and to authenticate API requests.
- Support Requests: If you contact us for support, we may collect your email address and any information you voluntarily provide in your message.
III.2. Information Collected Automatically
We may collect certain information automatically when you use the App:
- Device Information: Device type, operating system version, unique device identifiers, and language settings.
- Usage Data: App interaction data such as screens viewed, features used, actions performed, session duration, and timestamps.
- Crash & Performance Data: Crash logs, stack traces, performance metrics, and diagnostic data to help us identify and fix issues.
- Subscription Data: Information about your subscription status, purchase history, and entitlements, processed by our payment provider (RevenueCat).
III.3. Information We Do NOT Collect
- We do not collect your Google Forms content (questions, responses, or settings) on our servers.
- We do not collect your Google Drive file contents.
- We do not collect location data.
- We do not collect contacts or address book data.
- We do not use advertising identifiers (IDFA) or serve ads.
IV. How We Use Your Information
We use the information we collect for the following purposes:
- Providing the Service: To authenticate you, display your forms, enable form creation/editing, and synchronize data with Google's servers.
- Improving the App: To analyze usage patterns, identify bugs, optimize performance, and develop new features.
- Customer Support: To respond to your inquiries and resolve issues.
- Subscription Management: To manage your subscription status, process payments (via Apple's in-app purchase system), and provide access to premium features.
- Security & Fraud Prevention: To detect and prevent unauthorized access, abuse, or fraud.
- Legal Compliance: To comply with applicable laws, regulations, and legal processes.
V. Third-Party Services
We use the following third-party services to operate and improve the App.
We do not use any advertising networks or sell your data to advertisers.
| Service | Provider | Purpose | Privacy Policy |
|---|
| Firebase Analytics | Google LLC | Usage analytics & event tracking | Link |
| Firebase Crashlytics | Google LLC | Crash reporting & stability monitoring | Link |
| Amplitude | Amplitude Inc. | Product analytics & user behavior | Link |
| RevenueCat | RevenueCat Inc. | Subscription & in-app purchase management | Link |
| Google Sign-In | Google LLC | Authentication (OAuth 2.0) | Link |
| Apple (App Store) | Apple Inc. | App distribution & in-app purchases | Link |
These third-party services may collect and process certain data in accordance with their own privacy policies. We encourage you to review their privacy policies linked above.
VI. Data Storage & Security
Your Google account credentials (OAuth tokens) are managed by the Google Sign-In SDK and stored securely on your device using platform-native secure storage mechanisms.
Form data is cached locally on your device for performance and offline access. This cache is cleared when you sign out or delete your account from the App.
We implement appropriate technical and organizational measures to protect your information, including:
- All data transmitted between the App and Google's servers uses HTTPS/TLS encryption.
- OAuth 2.0 protocol for secure authentication (we never see or store your Google password).
- No server-side storage of your Google Forms or Drive data — all processing is performed on-device.
While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.
In the event of a data breach that affects your personal data, we will notify affected users and relevant authorities in accordance with applicable law, including within 72 hours where required by the GDPR.
VII. Data Retention
- Google account information (name, email, photo) is stored only during your active session and is cleared upon sign-out.
- Cached form data is stored on your device with a 24-hour time-to-live and is fully cleared upon sign-out or account deletion.
- Analytics data is retained by our third-party analytics providers according to their respective retention policies.
- Crash reports are retained by Firebase Crashlytics for up to 90 days.
- Support correspondence is retained for as long as necessary to resolve your inquiry and for up to 12 months thereafter.
VIII. Your Rights
VIII.1. All Users
Regardless of your location, you have the right to:
- Access the personal data we hold about you.
- Delete your account and all associated local data through the App's Settings screen.
- Revoke Google access at any time through your Google Account permissions.
- Opt out of analytics by contacting us at the email address below.
VIII.2. European Economic Area (EEA) — GDPR
If you are located in the EEA, you additionally have the right to:
- Rectification: Request correction of inaccurate personal data.
- Erasure: Request deletion of your personal data ("right to be forgotten").
- Restriction: Request restriction of processing of your personal data.
- Portability: Request a copy of your personal data in a structured, machine-readable format.
- Object: Object to processing of your personal data.
- Lodge a complaint with your local Data Protection Authority.
Our legal basis for processing personal data under the GDPR is: (a) your consent (which you may withdraw at any time), (b) performance of a contract (providing the App's services), and (c) our legitimate interests (improving the App and ensuring security).
VIII.3. California Residents — CCPA/CPRA
If you are a California resident, you have the right to:
- Know what personal information we collect, the categories of sources, and the business purpose for collection.
- Delete your personal information.
- Correct inaccurate personal information we hold about you.
- Opt out of "sale" or "sharing" of personal information. We do not sell or share your personal information for cross-context behavioral advertising.
- Non-discrimination for exercising your CCPA/CPRA rights.
Categories of personal information we collect:
- Identifiers (name, email address, device identifiers) — for authentication and analytics.
- Internet or electronic network activity (usage data, crash logs) — for improving the App.
- Commercial information (subscription status, purchase history) — for subscription management.
To exercise any of these rights, contact us at support@thousandapps.com. We will verify your identity before processing your request. You may also designate an authorized agent to make a request on your behalf.
IX. Children's Privacy
The App is intended for users who are at least 18 years old. We do not knowingly collect personal information from children under the age of 18. If we become aware that we have inadvertently collected personal data from a child under 18, we will take steps to delete such information promptly. If you believe a child under 18 has provided us with personal information, please contact us at support@thousandapps.com.
X. International Data Transfers
Your information may be transferred to and processed in countries other than your country of residence, including the United States, where our third-party service providers operate. These countries may have different data protection laws. We ensure appropriate safeguards are in place, including standard contractual clauses approved by the European Commission where applicable.
XI. "Do Not Track" Signals
The App does not respond to "Do Not Track" browser signals, as there is no industry standard for handling such signals in mobile applications. However, we do not track users across third-party websites or apps and do not use advertising identifiers.
XII. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy within the App and updating the "Last updated" date at the top of this page. Your continued use of the App after such changes constitutes your acceptance of the updated Privacy Policy.
XIII. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: