Privacy Policy for Notion CSV sync

Last Updated: November 26, 2025

Introduction

Notion CSV sync ("we," "our," or "the app") is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our iOS application.

Our Privacy Commitment

We do not collect, store, or share any of your personal data. Your information stays on your device and travels only between your device and Notion's servers.

Information We Handle

Authentication Data

  • Notion Access Token: When you connect your Notion account, we receive an access token through OAuth 2.0 authentication

  • Storage: This token is stored securely in your device's iOS Keychain

  • Usage: The token is used solely to communicate with Notion's API on your behalf

  • Transmission: During OAuth authentication, your authorization code is sent to our secure backend proxy (csv-sync-oauth.johnerling.workers.dev) only to exchange it for an access token. Our proxy does not log, store, or retain this information beyond the immediate exchange process

CSV File Data

  • Processing: CSV files you import are processed entirely on your device

  • Storage: Temporary copies may be stored in your device's App Group container for handoff between the main app and Share Extension

  • Usage: CSV data is used only to sync with your chosen Notion database

  • Transmission: CSV data is sent directly from your device to Notion's servers via their official API

Sync History

  • What We Store Locally: Database names, sync timestamps, success/failure counts, and parent page titles

  • Storage Location: Stored locally in your device's UserDefaults

  • Access: Only you can access this data on your device

  • Deletion: You can clear sync history at any time from the app's settings

Workspace Information

  • What We Store: Your Notion workspace name and icon (if available)

  • Storage: Stored locally in your device's iOS Keychain

  • Usage: Displayed in the app to confirm which workspace you're connected to

What We DO NOT Collect

  • We do not collect analytics or usage statistics

  • We do not track your behavior

  • We do not store your CSV files on any server

  • We do not access your Notion data beyond what's necessary for syncing

  • We do not share any information with third parties for advertising or marketing

  • We do not use cookies or tracking technologies

  • We do not collect device identifiers or location data

Third-Party Services

Notion API

  • The app communicates directly with Notion's servers using their official API

  • Your data is subject to Notion's Privacy Policy: https://www.notion.so/Privacy-Policy

  • We only access the Notion pages and databases you explicitly grant permission to during authentication

OAuth Proxy Server

  • Our backend proxy (csv-sync-oauth.johnerling.workers.dev) handles OAuth token exchange

  • Purpose: Securely manages the OAuth flow without exposing the client secret in the app

  • Data Handling: Receives authorization codes and returns access tokens; does not log or store any data

  • Location: Cloudflare Workers infrastructure

Data Security

  • Keychain Storage: Sensitive data (access tokens, workspace info) is stored in iOS Keychain with hardware-backed encryption

  • App Group: File sharing between the main app and Share Extension uses Apple's secure App Group container

  • Network Security: All communications with Notion use HTTPS encryption

  • No Cloud Storage: We do not operate any cloud servers that store your data

Your Rights and Controls

Access Control

  • You control which Notion pages the app can access during the OAuth authentication process

  • You can revoke access at any time by logging out of the app

  • You can remove the app's access to individual pages through Notion's connection settings

Data Deletion

  • Logging out removes all stored authentication data from your device

  • Clearing sync history removes all local sync records

  • Uninstalling the app removes all locally stored data

  • To revoke API access completely, disconnect the app from your Notion workspace settings

Children's Privacy

This app is not directed to children under the age of 13. We do not knowingly collect information from children under 13.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be reflected in the "Last Updated" date at the top of this policy. Continued use of the app after changes constitutes acceptance of the updated policy.

Data Retention

  • Authentication data is retained until you log out or uninstall the app

  • Sync history is retained until you clear it or uninstall the app

  • Temporary CSV files in the App Group container are deleted after successful import

  • No data is retained on any servers we operate

International Data Transfers

Since we do not collect or store your data on our servers, there are no international data transfers from us. Any data transmission occurs directly between your device and Notion's servers, subject to Notion's data handling practices.

Legal Compliance

We comply with applicable data protection laws, including GDPR and CCPA, through our practice of not collecting user data. Since we do not collect, process, or store personal data beyond what's necessary for app functionality on your device, most data protection regulations do not apply to our data handling practices.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: post@johnerling.no

Developer: John-Erling Holmenes Fredriksen FNF

Open Source

This app is inspired by csv2notion-neo by TheAcharya. While our implementation is independent, we acknowledge the open-source community's contributions to making Notion integrations accessible.

Summary: Your privacy is protected because we simply don't collect your data. Everything happens on your device and directly between you and Notion. We've designed the app to be private by default, not as an afterthought.