# Security & Data ## Data & Encryption All ContentSync data is encrypted at rest with AES-256. All communications with ContentSync are secured over HTTPS. ## Data & Storage ContentSync stores information necessary for services. This including storing sync data for a period of time while syncs and associated services are being performed. ContentSync may store this information for up to 30 minutes. Design images and data will be stored if you do a design sync. This feature is completely optional but is required to use our canvas view. All images and information are securely stored to ensure only permitted users have access for a limited amount of time. ## Data & Access **All spreadsheets are owned by your account.** The spreadsheet is owned by your account, ContentSync just has access to it. At any point you can revoke our access. All of your Google and Microsoft data is accessed through their APIs through a verified OAuth authentication you provide to ContentSync. You can revoke that access any time through [Google](https://myaccount.google.com/permissions) and [Microsoft](https://docs.microsoft.com/en-us/cloud-app-security/manage-app-permissions#working-with-the-oauth-apps-page). ContentSync uses that authentication during services to sync your data with a spreadsheet. Data is updated through our API to theirs and passes through our servers to properly map and sync data for our services. #### Google Permissions The permissions you give ContentSync only allows us to access and modify spreadsheets we create on your account. You can revoke our access at any time and continue to have your spreadsheet within your Drive. #### Microsoft 365 Permissions The permissions you give ContentSync only allows us to access and modify spreadsheets we create on your account. You can revoke our access at any time and continue to have your spreadsheet within your Drive. ## Payment Processing All payment processing is done through our payment processor, [Stripe](https://stripe.com/), and credit card details are stored outside of our architecture. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.contentsync.com/security-and-data.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.