Privacy Policy for CalendarFlow

1. Introduction

Welcome to CalendarFlow ("we", "us", "our").
This Privacy Policy explains how we collect, use, and protect information when you use our website https://calendarflow.dev and our live voice agent that edits your Google Calendar in real time (the "Service").

By using our website or Service, you agree to the practices described in this Privacy Policy.

2. Information We Collect

2.1 Personal Information

When you use CalendarFlow, we may collect the following personal information:

- Name
- Email address
- Payment information (such as credit card or other payment details, collected and processed via our payment provider)

2.2 Google User Data

To provide the voice agent functionality, we require access to your Google Calendar. We collect and store:

- Google Access Token: Used to authenticate and authorize the application to read, create, update, or delete events on your Google Calendar on your behalf.

2.3 Usage Data

We collect limited information about how you use the application to improve our Service:

- Number of tools used per session
- Session duration
- Token usage per session

2.4 Information We Do NOT Collect

- Conversation Content: We do NOT collect or store the audio or text content of your sessions or the substance of your conversational interactions with the AI agent.
- Transcripts: We do NOT collect transcripts of your sessions by default. For debugging purposes only, you may choose to voluntarily send us a specific session transcript (including tool calls) to help us diagnose issues. We do not retain this information otherwise.

3. How We Use Your Information

We use the information we collect for the following purposes:

- To provide and operate the voice agent sessions
- To authenticate your Google Calendar access via the stored Access Token
- To process payments and manage subscriptions or billing
- To communicate with you (e.g., account-related notices, policy updates)
- To maintain, secure, and improve our website and Service

We do not use your information for purposes that are unrelated to the Service without your consent.

4. Data Sharing

We do not sell, rent, or trade your personal information.
We do not share your personal information with third parties, except as necessary to:

- Process payments (e.g., payment processors)
- Operate our infrastructure (e.g., hosting providers)
- Comply with applicable laws, regulations, or legal requests

Any third parties that help us operate the Service are only allowed to use your information to perform those services on our behalf.

5. Retention and Deletion of Google User Data

We are committed to protecting your Google User Data and ensuring you have control over it.

- Retention: We retain your Google Access Token only for as long as necessary to provide the Service to you. As long as you wish to use the voice agent to manage your calendar, we need this token to function.
- Deletion: You can revoke access to your Google Calendar at any time.
- In App: You can disconnect your Google Calendar within the CalendarFlow application settings. This will immediately delete your Google Access Token from our database.
- Via Google: You can also revoke CalendarFlow's access to your data via your Google Account security settings (https://myaccount.google.com/permissions).
- Account Deletion: If you choose to delete your CalendarFlow account, all associated data, including your Google Access Token, name, and email, will be permanently deleted from our systems.

To request manual deletion of all your data, please contact us at rosty.build@gmail.com.

6. Children's Privacy

CalendarFlow is not directed to children and we do not knowingly collect personal information from children.

If you believe that a child has provided us with personal information, please contact us at rosty.build@gmail.com, and we will take steps to delete such information.

7. Security

We use reasonable technical and organizational measures to protect your information from unauthorized access, use, or disclosure. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

8. Updates to This Privacy Policy

We may update this Privacy Policy from time to time. When we do:

- We will post the updated version on https://calendarflow.dev, and
- We will notify users of material changes by email using the email address associated with their account.

Your continued use of the Service after any changes take effect means you accept the updated Privacy Policy.

9. Contact Us

If you have any questions about this Privacy Policy or how your data is handled, please contact us at:

Email: rosty.build@gmail.com

We will do our best to respond promptly.