Privacy Policy

Last updated: July 2, 2026

This Privacy Policy explains how Natasha's Connections ("Company," "we," "us," or "our") collects, uses, stores, shares, and protects personal information when you use our website, application, products, and services, including the Priority Connector service available at app.natashasconnections.com (collectively, the "Services").

The Services provide a one-way data synchronization tool from Priority ERP to Google Sheets and/or Microsoft Excel. Because the Services connect to business systems and third-party accounts, this Privacy Policy also explains how we handle connected account data, sync configuration, logs, and data processed through the integrations you authorize.

If you do not agree with this Privacy Policy, please do not use the Services.

Summary of Key Points

1. What Information Do We Collect?

Information you provide to us

We collect personal information that you voluntarily provide when you register for the Services, subscribe to a plan, configure integrations, contact us, request support, or otherwise interact with us.

This may include:

Payment processing is handled by Lemon Squeezy or another payment provider. We do not intentionally collect or store full credit card numbers.

Connected account and sync data

To provide the Services, we may access, process, and store data from the accounts and systems you connect to the Services, including Priority ERP, Google, and Microsoft accounts.

This may include:

The specific data processed depends on the integrations you connect, the permissions you grant, and the syncs you configure.

Business customer data and third-party personal data

Priority ERP data or spreadsheet data may contain personal information about your employees, customers, vendors, users, or other third parties. You are responsible for ensuring that you have the necessary rights, permissions, notices, and legal basis to connect, sync, disclose, and process that data through the Services.

Where we process such data on your behalf, we do so to provide the Services and according to your configuration and instructions, subject to this Privacy Policy and our Terms of Service.

Information automatically collected

We may automatically collect technical and usage information when you visit, use, or navigate the Services. This may include:

This information is primarily needed to maintain security, troubleshoot issues, operate the Services, prevent abuse, and understand how the Services are used.

Sensitive personal information

We do not intentionally request sensitive personal information such as racial or ethnic origin, political opinions, religious beliefs, health information, biometric data, or sexual orientation. However, the business data you choose to sync from Priority ERP or other connected systems may contain sensitive information. You are responsible for avoiding the sync of sensitive data unless you have the legal right and business need to process it through the Services.

2. How Do We Process Your Information?

We process personal information for the following purposes:

3. What Legal Bases Do We Rely On?

Depending on your location and applicable law, we may process personal information based on one or more legal bases, including:

4. When and With Whom Do We Share Your Information?

We may share personal information only as needed for the purposes described in this Privacy Policy.

We may share information with:

We do not sell personal information. We do not share connected account data or synced business data for third-party advertising.

5. Google API Services and Limited Use

If you connect a Google account, the Services may access Google user data only as needed to provide the features you authorize, such as authentication, selecting or creating Google Sheets files, and writing synced Priority ERP data to Google Sheets.

Our use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

We do not use Google user data for advertising. We do not sell Google user data. We do not use Google user data to train artificial intelligence models.

You may revoke the Services' access to your Google account through your Google account permissions page or by disconnecting the integration in the Services. Revoking access may stop synchronization.

6. Microsoft Account Data

If you connect a Microsoft account, the Services may access Microsoft user data only as needed to provide the features you authorize, such as authentication, selecting or creating Excel workbooks, and writing synced Priority ERP data to Microsoft Excel.

We do not use Microsoft user data for advertising. We do not sell Microsoft user data. We do not use Microsoft user data to train artificial intelligence models.

You may revoke the Services' access to your Microsoft account through your Microsoft account permissions or by disconnecting the integration in the Services. Revoking access may stop synchronization.

7. Do We Use Cookies and Similar Technologies?

We may use cookies, local storage, and similar technologies to operate the Services, keep you signed in, remember settings, improve security, prevent fraud, understand service usage, and troubleshoot issues.

We do not use connected account data or synced business data for advertising. If we use analytics cookies or similar technologies, they are used to understand and improve the Services.

You can usually control cookies through your browser settings. If you disable cookies, some parts of the Services may not work properly.

8. Is Your Information Transferred Internationally?

We may process, store, or transfer information in Israel and in other countries where we or our service providers operate. These countries may have data protection laws that differ from those in your country.

When required by applicable law, we take appropriate steps designed to protect personal information transferred internationally.

9. How Long Do We Keep Your Information?

We keep personal information for as long as reasonably necessary to provide the Services, maintain your account, operate integrations, comply with legal obligations, resolve disputes, enforce agreements, prevent fraud, and maintain security.

Connected account tokens and sync configuration are generally retained while the relevant integration or account remains active, unless you disconnect the integration or request deletion, subject to legal and operational retention needs.

Logs, diagnostics, backups, and security records may be retained for a limited period for operational, security, troubleshooting, and legal purposes.

When we no longer have a legitimate business or legal need to process personal information, we will delete or anonymize it, or securely store and isolate it until deletion is possible.

10. How Do We Keep Your Information Safe?

We use reasonable technical, administrative, and organizational measures designed to protect personal information. These measures may include access controls, authorization controls, logging, monitoring, and security practices appropriate to the nature of the Services.

However, no internet-based service, cloud system, or electronic transmission is completely secure. We cannot guarantee absolute security.

11. Do We Collect Information from Minors?

The Services are intended for business and professional use and are not directed to children under 18. We do not knowingly collect personal information from children under 18. If we learn that we have collected personal information from a child under 18, we will take reasonable steps to delete it.

12. What Are Your Privacy Rights?

Depending on your location and applicable law, you may have rights regarding your personal information, including the right to:

These rights may be limited in some circumstances by applicable law, security requirements, legal obligations, or the rights of others.

You may also revoke Google or Microsoft access directly through your Google or Microsoft account settings. Revoking access may stop synchronization.

13. Account Information

You may review or update certain account information in the Services. You may also contact us to request account deletion.

If your account is deleted, we may retain certain information where necessary to comply with legal obligations, prevent fraud or abuse, resolve disputes, enforce our Terms of Service, maintain security, or keep records required for legitimate business purposes.

14. Do-Not-Track Features

Some browsers and devices include a Do-Not-Track ("DNT") setting. Because there is not yet a uniform standard for recognizing and implementing DNT signals, we do not currently respond to DNT browser signals. If a standard is adopted in the future, we will update this Privacy Policy as appropriate.

15. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Last updated" date at the top of this page. If we make material changes, we may notify you by posting a notice in the Services, sending an email, or using another reasonable method.

16. How Can You Contact Us?

If you have questions, comments, or requests about this Privacy Policy or our privacy practices, you may contact us at:

Natasha's Connections
Israel
Email: natashasconnections@gmail.com

17. How Can You Review, Update, or Delete Your Data?

To request access, correction, deletion, or another privacy action regarding your personal information, please contact us at natashasconnections@gmail.com. We may need to verify your identity before fulfilling a request.

This Privacy Policy is provided as a practical starting point for self-hosting. You should have a qualified legal professional review it before relying on it for production legal compliance.