agent-cal

Legal

Privacy Policy

Effective: 5 May 2026

1. What Data We Collect

  • Account information — Email address, display name, username, and timezone provided during registration.
  • Calendar data — OAuth tokens for Google Calendar and Microsoft Outlook, stored encrypted at rest. We access free/busy data and create calendar events on your behalf.
  • Booking data — Guest name, email, notes, and selected time slots submitted through the booking flow.
  • Payment information — Processed exclusively by Stripe. We never store card numbers, CVVs, or full payment credentials on our servers.
  • Usage and analytics — API request logs, IP addresses, timestamps, and user agent strings collected for security monitoring and service improvement.

2. How We Use Your Data

  • Service delivery — Operating schedules, processing bookings, syncing calendars, and sending email notifications.
  • Payment processing — Passing necessary billing identifiers to Stripe for subscription management.
  • Security monitoring — Detecting abuse, rate-limiting, and protecting the platform against unauthorized access.
  • Audit logging — Recording admin actions for accountability and compliance.
  • Service improvement — Aggregated, anonymised usage patterns to improve reliability and performance.

3. Data Retention

  • Account data — Retained for as long as your account is active. Upon deletion, personally identifiable data is purged within 30 days.
  • Booking records — Retained for 12 months after the booking date, then anonymised.
  • Audit logs — Retained for 24 months for compliance purposes.
  • API request logs — Retained for 90 days, then deleted.

4. Third-Party Services

We integrate with the following third-party services to deliver the product:

  • Stripe — Payment processing. Subject to Stripe's Privacy Policy.
  • Google Calendar API — Calendar sync for users who connect their Google account.
  • Microsoft Graph API — Calendar sync for users who connect their Outlook account.
  • Resend — Transactional email delivery (booking confirmations, verification codes).

We do not sell, rent, or share your personal data with third parties for marketing purposes.

5. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access — Request a copy of the personal data we hold about you.
  • Correction — Request correction of inaccurate or incomplete data.
  • Deletion — Request deletion of your account and associated personal data.
  • Portability — Request an export of your data in a machine-readable format.

To exercise any of these rights, contact us at privacy@amzuit.com.

6. Contact

For privacy-related enquiries, reach us at privacy@amzuit.com.

7. Changes to This Policy

We may update this policy from time to time. When we do, we will revise the "Effective" date at the top of this page. Continued use of the service after changes are posted constitutes acceptance of the updated policy.