ImpManagers logo ImpManagers
Download
Legal

Privacy Policy

How ImpManagers handles your information — including Google user data.

Last updated: 7 June 2026

1. Introduction

This Privacy Policy explains how ImpManagers ("we", "us", or "our") handles information in connection with our Windows desktop applications — Import Manager and Export Invoice (the "Apps") — and the website at impmanagers.online (the "Site"). By installing or using the Apps, or by using the Site, you agree to the practices described here.

Our Apps are offline-first. They are designed so that your business data stays on your own computer. We do not operate a central server that collects, stores, or processes your business records.

2. Who we are

ImpManagers develops desktop software for import and export trade operations. For any privacy question or request, contact us at support@impmanagers.online.

3. Data stored on your device

The Apps store the information you enter — such as suppliers, customers, shipments, invoices, purchase orders, bills of entry, expenses and related records — in a local SQLite database on your own machine. This data:

  • is created and controlled entirely by you;
  • is not transmitted to ImpManagers or to any server we operate;
  • remains under your control, including when you create local backups.

Backups created by the Apps are encrypted on your device using AES-256-GCM before they are written to disk or uploaded anywhere. Encryption keys are stored in your operating system's secure keyring, and you may export a disaster-recovery key for safekeeping.

4. Google user data

Import Manager offers an optional feature that lets you back up your encrypted database snapshots to your own Google Drive. This feature is entirely optional — the App is fully functional without it. It is only activated if you explicitly choose to connect a Google account.

4.1 Scopes we request

When you connect Google Drive, the App requests the minimum OAuth scopes needed for backup:

  • https://www.googleapis.com/auth/drive.file — permission to create and manage only the files the App itself creates. The App cannot see, read, list, download, or modify any other file already in your Google Drive.
  • https://www.googleapis.com/auth/userinfo.email — to display the email address of the connected Google account, so you can confirm which account backups are being sent to.

4.2 How we use Google data

We use the access you grant solely to:

  • upload your already-encrypted backup files to your Google Drive;
  • list, retrieve, and delete those backup files for restore and retention (for example, pruning old backups you no longer need);
  • show the connected account's email address in the App's interface.

Because backups are encrypted on your device before upload, Google stores ciphertext only. The decryption key never leaves your machine, so the contents of your backups are not readable by Google or by us.

4.3 How Google data is stored

OAuth tokens (used to keep your Drive connection active) are stored securely in your operating system's credential vault / keyring, with an encrypted local fallback. These tokens stay on your device and are not sent to ImpManagers.

5. Limited Use disclosure

Import Manager's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, in line with the Limited Use requirements:

  • We only use Google user data to provide and improve the backup feature you have enabled.
  • We do not transfer Google user data to third parties except as necessary to provide or improve the feature, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with appropriate notice.
  • We do not use Google user data for serving advertisements.
  • We do not sell Google user data.
  • We do not allow humans to read your Google data, unless we have your affirmative agreement for specific messages, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or the data is aggregated and anonymized and used for internal operations. In practice, your backup data is encrypted and cannot be read by us.

6. Information from this website

The Site is a static marketing and information website. It does not require you to create an account. We may use privacy-respecting, aggregate analytics or standard server logs (such as IP address, browser type, and pages visited) to understand traffic and keep the Site secure. If you email us, we receive the information you choose to send.

7. How we share data

We do not sell your personal information. Because your business data and backups live on your own device and your own Google Drive, we generally have no access to them. We may disclose limited information (such as Site logs or an email you send us) only:

  • to comply with applicable law, regulation, legal process, or a lawful government request;
  • to protect the rights, property, or safety of ImpManagers, our users, or the public;
  • with service providers strictly to operate the Site, under confidentiality obligations.

8. Retention & deletion

You control retention of your own data and backups. To stop and remove the Google Drive integration at any time, you can:

  • Disconnect Google Drive from within Import Manager, which clears the stored OAuth tokens from your device;
  • delete backup files the App created from your Google Drive;
  • revoke the App's access entirely from your Google Account at myaccount.google.com/permissions.

Once access is revoked, the App can no longer reach your Drive. Any data you sent us by email is retained only as long as needed to respond and meet legal obligations.

9. Security

We take reasonable measures to protect information. Backups are encrypted with AES-256-GCM using per-file salts and PBKDF2 key derivation; keys are held in your OS keyring. OAuth tokens are stored in your OS credential vault. No method of storage or transmission is completely secure, but the offline-first, encrypt-before-upload design is intended to minimize exposure of your data.

10. Children

The Apps and Site are intended for business use and are not directed to children under 16. We do not knowingly collect personal information from children.

11. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date above and, where appropriate, provide additional notice. Continued use of the Apps or Site after changes take effect constitutes acceptance of the updated policy.

12. Contact us

If you have questions, requests, or concerns about this Privacy Policy or your data, contact us at:

ImpManagers
Email: support@impmanagers.online
Website: impmanagers.online