Data Protection & Security

GDPR Compliance

None of our add-ons collect any data whatsoever from the users of the add-on. Not so Magic Apps has no access to any of your Google Sheets/Slides/Docs/Forms that you implement our add-ons to. Therefore no data exchange takes place or is transferred meaning that Not so Magic Apps are 100% compliant to all Data Protection laws. 

For more detailed information please look at our Privacy Policy and our Terms of Service pages which explain the above fully. 

Data Protection Impact Assessments (DPIAs) 

As a company Not so Magic apps would be very happy to complete due diligence questionnaires and contribute to DPIAs. If you are purchasing a paid add-on then this would be done free of charge. If you would like this completed for one of our many free add-ons then there is a £10 charge for completion due to the time it takes to complete these forms. 

Additional Points and Information (HIPAA & FERPA)

We have previously completed Business Associate Agreements covering HIPAA & FERPA for our customers in the US. Again we are happy to complete these free of charge for our paid add-ons but require a £10 charge for one of our free add-ons.

CASA Security Assessments

For our add-ons that make use of the Google Drive scope in order to function correctly Google have introduced CASA Security Assessments. You can find out more information here.

Our add-ons that have been through this new Tier 2 security assessment are Magic Exercise Book, Magic Link and Magic Make Copies. 

Not so Magic Apps will not be conducting an further CASA Security Assessments due to the large cost involved in conducting these assessments, especially for free addons. Rest assured that we take security very seriously which is why we run our own Fluid Attacks scans on all of our addons to ensure their security.