Privacy Policy

kabu-station-gmail-otp-helper-site

Effective date: 2026-05-21

Information Collected / 収集する情報

kabu-station-gmail-otp-helper-site runs on the user's local PC and handles the following information only for kabu Station login support:

Google OAuth authorized user credentials JSON stored locally.
Gmail message metadata such as sender, subject, received time, and unread state.
The body of matching authentication emails, read temporarily on the local PC for two-factor authentication code extraction.
Local runtime logs and session status that do not include the sensitive content listed below.

Gmail API Data Access / Gmail APIで読み取る情報

The tool uses only this Gmail API scope:

https://www.googleapis.com/auth/gmail.readonly

It reads:

Gmail labels list for a read-only credential smoke test.
Gmail message list filtered by configured sender, subject, unread state, and recency.
Metadata and body of matching candidate messages.

The tool does not send, delete, modify, or mark Gmail messages as read.

Purpose / 利用目的

Gmail data is used only to extract an email two-factor authentication code locally and support the kabu Station login helper flow.

Gmail data is not used for advertising, marketing, user tracking, trading decisions, model scoring, scraping, order planning, or broker API calls.

Data Storage / データ保存方針

Stored:

Google OAuth authorized user credentials JSON in a local-only directory on the user's PC.

Not stored:

Gmail message body.
Extracted authentication codes.
Gmail raw payload.
kabu Station login information.
Broker order API requests or responses.

The implementation policy is not to write email bodies, authentication codes, login information, or OAuth credential content to documentation, logs, status artifacts, or debug artifacts.

This tool does not sell, share, or provide Gmail data to third parties. The current design is a personal local desktop tool and does not send Gmail data to a third-party server.

Credential Storage and Deletion / Token保存と削除方法

OAuth authorized user credentials JSON is stored on the user's local PC in the configured secrets directory. Default example:

C:\kabu\secrets\gmail_token.json

To delete it, close the tool and remove that local file. The OAuth grant flow can be run again later if access is needed.

Revoking Google Account Access / Googleアカウント連携解除方法

Users can remove this app's access from Google Account third-party access settings:

https://myaccount.google.com/permissions

Users should also delete the local OAuth credentials JSON file from their PC.

Google API Services User Data Policy

This tool is designed to comply with the Google API Services User Data Policy. Gmail data is used only for the disclosed purpose of local two-factor authentication code extraction and login support.

Gmail data is not used for advertising, is not sold to third parties, and is not intended for human review. Troubleshooting should not include email bodies, authentication codes, login information, or OAuth credential content in logs or reports.