Security Overview

This page describes the current security and access model used by Invoice Collector for Gmail and Google Drive integrations.

Access Model

Token Handling

Data Handling

Transport and Service Communication

Operational Notes

OAuth Submission Reference

The exact scope set, Cloud Console field values, scope justifications, and reviewer walkthrough used for this app's Google OAuth verification submission are maintained alongside the code and kept in sync with the production deployment. Summary:

Contact

Security, privacy, and OAuth review questions can be sent to nir.ashkenazi88@gmail.com.

Related pages: