Last updated: 26 June 2026 · Effective date: 26 June 2026
Template notice. This document accurately describes how the TidySheet software handles data based on its implementation. Fill in the bracketed operator details ([…]) and have it reviewed by qualified legal counsel before relying on it for a commercial launch. It is not legal advice.
This Privacy Policy explains how the TidySheet add-in ("TidySheet", "we") handles information when you use it inside Microsoft Excel (and, in a future release, Google Sheets). It is operated by [Operator legal name], [address], contact [privacy@yourdomain].
TidySheet is designed to minimize data exposure. Spreadsheet cleaning runs entirely on your device and transmits no spreadsheet content anywhere. AI features (Ask, Generate Formula, Categorize, Extract) send only the cells you have selected to a proxy server operated by the party that deployed TidySheet, which forwards them to Anthropic's Claude API to produce a result. We do not sell your data, and we do not use your spreadsheet content to train any model.
| Feature | What leaves your device | Where it goes | Stored? |
|---|---|---|---|
| Cleaning (trim, dedupe, dates, numbers, etc.) | Nothing. Runs locally in the task pane. | Stays on your device. | No. |
| AI: Ask / Generate formula / Categorize / Extract | Only the cell values in your current selection, plus your instruction text. | Your operator's proxy server → Anthropic Claude API. | Not retained as content by the proxy. Anthropic processes per its API terms (no training on API inputs; limited retention). |
| Free-tier usage metering | An anonymous random client identifier and a count of AI calls. | Operator's proxy server. | Yes — a per-day count keyed to the anonymous ID. No spreadsheet content. |
| Licensing | Your Pro license key (if entered). | Operator's proxy server (validated, not stored as content). | The key is held in your browser's local storage on your device. |
TidySheet's AI proxy is self-hosted by the operator who deployed it. This means the data path for AI requests runs through infrastructure the operator controls — including the choice of hosting region and network boundary — rather than through a third-party SaaS intermediary. The only external processor in the default configuration is Anthropic (the AI provider). An operator may further restrict or replace this (for example, running within a private network, or substituting a self-hosted model) without changing the add-in.
| Provider | Purpose | Data shared |
|---|---|---|
| Anthropic, PBC | AI processing (Claude API) | Selected cell values + instruction text, only when an AI feature is used. |
| [Your hosting provider] | Hosting the add-in files and proxy | Standard request metadata (IP, timestamps) per provider logs. |
Where GDPR applies, we process data to perform the service you request (Art. 6(1)(b)) and for our legitimate interest in operating and securing the product (Art. 6(1)(f)). You have rights of access, rectification, erasure, restriction, portability, and objection. Because we do not store spreadsheet content, most requests concern only the anonymous usage record and any license key; contact [privacy@yourdomain] to exercise these rights. California residents have analogous rights under the CCPA/CPRA; we do not "sell" or "share" personal information as those terms are defined.
Anonymous usage counts are retained for [e.g., 90 days] for abuse-prevention and billing, then deleted or aggregated. License keys are retained for the life of the subscription. Anthropic's retention of API inputs is governed by its commercial terms.
All traffic between the add-in and the proxy uses HTTPS. The Anthropic API key is held only on the server and never sent to the task pane. We apply least-privilege access to operator systems.
TidySheet is a workplace productivity tool not directed to children under 16, and we do not knowingly collect their data.
We will post any changes here and update the "Last updated" date. Material changes will be highlighted in the add-in or by email where we have one.
[Operator legal name] — [privacy@yourdomain] — [address].