G4
Audits

GA4 Access & Data Handling

Transparency about how we access and protect your Google Analytics data.

Why We Need Google Access

GA4 Audits connects to the Google Analytics Admin API and Data API to read your property configuration and run automated audit checks. This is the only way to programmatically inspect your GA4 setup — including data streams, conversion events, enhanced measurement settings, audience definitions, and more — without requiring you to manually export and upload screenshots or spreadsheets.

We also crawl your website pages to validate that tracking tags actually fire, consent mode is implemented correctly, and data layer events match your GA4 configuration. This crawl accesses your public website, not your GA4 data.

Permissions Requested

We request a single OAuth scope:

https://www.googleapis.com/auth/analytics.readonly

This is a read-only scope. It does not grant write, edit, or delete access to any part of your Google Analytics account. We cannot create or modify properties, data streams, events, audiences, or any other configuration element.

What GA4 Data We Access

Admin API (property configuration)

  • Property settings (name, time zone, currency, industry category)
  • Data streams and their configuration (web, iOS, Android)
  • Enhanced measurement settings per data stream
  • Conversion events and their counting method
  • Custom dimensions and custom metrics
  • Audience definitions and membership duration
  • Google Ads link configurations
  • BigQuery link configurations
  • Data retention settings
  • Attribution settings
  • Google Signals settings

Data API (aggregated reports)

  • Traffic reports — sessions, users, page views by source/medium
  • Event reports — event counts and parameters to validate tracking
  • E-commerce data — transaction counts, revenue totals, item-level metrics to check for duplicates and discrepancies
  • Realtime data — to validate active tag firing during crawl checks

Website crawl (your public site)

  • Page HTML to detect gtag.js, GTM containers, and data layer implementations
  • Consent mode signals (default and update commands)
  • Tag firing validation across multiple page types
  • Cross-domain tracking configuration

What We Do NOT Access

Our OAuth scope is limited to Google Analytics. We explicitly do not access:

  • Gmail — we cannot read, send, or view your emails.
  • Google Drive — we cannot access your files, documents, or spreadsheets.
  • Google Calendar — we have no access to your calendar events.
  • Google Ads spend — we can see whether a Google Ads link exists in GA4, but we cannot access your Ads account, spend data, or billing information.
  • Personal data in GA4 reports — we query aggregated metrics only. We do not access user-level reports, User Explorer, or any data that could identify individual website visitors.
  • Other Google services — Search Console, YouTube, Firebase, Cloud Platform, or any other Google product.

Token Storage

When you connect your Google account, we receive an OAuth refresh token that allows us to access the Analytics APIs on your behalf. This token is handled with the following safeguards:

  • Encrypted at rest — tokens are encrypted using Fernet symmetric encryption (AES-128-CBC with HMAC-SHA256) before being stored in the database.
  • Stored in Supabase PostgreSQL — with row-level security policies ensuring tokens can only be accessed by the owning user's session.
  • Never logged — tokens are never written to application logs, error reports, or monitoring systems.
  • Never exported — tokens are never included in API responses, audit reports, or data exports.
  • Encryption keys managed separately — the Fernet encryption key is stored as an environment variable on Google Cloud Run, separate from the database.

How to Revoke Access

You can revoke GA4 Audits's access to your Google account at any time using either method:

  • In-app— go to Settings and click "Disconnect Google Account". This immediately deletes your encrypted token from our database.
  • Via Google — visit myaccount.google.com/permissions and remove GA4 Audits. This invalidates the token on Google's side; we will detect it is no longer valid on the next API call.

Data Deletion

You can request deletion of your data at any time:

  • Via settings— use the "Delete Account" option to remove your account, all audit history, stored tokens, and connected properties.
  • Via email — send a deletion request to hello@ga4auditor.com and we will process it within 7 business days.

Deletion is permanent and cannot be undone. We recommend downloading your audit reports before requesting deletion.

We Do Not Sell Your Data

GA4 Audits does not sell, rent, licence, or trade your personal information, Google Analytics data, audit results, or any other data associated with your account to any third party — for advertising, marketing, data brokerage, or any other purpose. This is not something we will ever do.

We Never Modify Your Configuration

GA4 Audits operates on a strict read-only basis. We will never:

  • Change your GA4 property settings, events, or audiences
  • Modify your Google Tag Manager containers or tags
  • Write data back to Google Analytics
  • Create, edit, or delete any resource in your Google account
  • Make changes to your website, tracking code, or consent management platform

Our read-only OAuth scope makes it technically impossible for us to write to your GA4 properties, even if we wanted to.

Questions?

If you have any questions about how we handle your GA4 data, please reach out at hello@ga4auditor.com. We are happy to provide additional detail about any aspect of our data handling practices.

Related policies:

Privacy PolicyTerms of ServiceCookie PolicyRefund Policy