Privacy Policy

Name, email address, phone number, and business details such as company name, team size, and role provided during registration and onboarding.

Information you enter into the platform including contacts, properties, leads, deals, documents, and notes.

Technical information such as IP address, browser type, device information, and usage patterns collected automatically to improve our services.

When you connect your Google account, we access specific Google data with your explicit consent. Full details are provided in the Google User Data section below.

With your authorization, we may access the following Google user data:

• Google Account Information — email address and profile name used for authentication and account identification.
• Gmail — email messages, drafts, and labels used to synchronize your communications inside the CRM.
• Google Calendar — events and schedules used to display, create, and manage appointments and generate AI-powered meeting insights.
• Google Contacts — saved contacts and interaction-based contacts used to import and enrich CRM contact records.
• Google Drive — files created or uploaded through the CRM used for document management and property file organization.

Google user data is used solely to provide CRM functionality:

• Authenticating your identity and maintaining your session
• Synchronizing emails so you can read and send messages within the CRM
• Displaying and managing calendar events and generating AI meeting briefs
• Importing Google Contacts into the CRM
• Storing and organizing property-related documents and media files in Google Drive

We do not use Google user data for advertising, user profiling, or market research.

We do not sell, rent, or trade Google user data.

Google user data may only be shared in the following limited cases:

• AI Processing — email and calendar data may be processed by AI services hosted on Google Cloud Vertex AI to generate meeting briefs, email drafts, and task suggestions. Data is processed in real time and is not retained by the AI service.
• Infrastructure Providers — we use Google Cloud Platform for hosting, storage, and compute. Data remains within Google's infrastructure.
• Legal Obligations — data may be disclosed if required by law, regulation, subpoena, or court order.

We do not transfer Google user data to unrelated third parties.

We implement multiple security measures to protect your Google user data:

• Encryption in Transit — all communication uses TLS 1.2 or higher.
• Encryption at Rest — Google OAuth tokens and credentials are encrypted using Fernet symmetric encryption.
• Least-Privilege Access — we request only the minimum OAuth scopes required for each feature.
• Tenant Isolation — strict row-level isolation in our multi-tenant architecture.
• Token Revocation — you can disconnect your Google account at any time.
• Audit Logging — all data access operations are logged for monitoring and incident response.
• Access Controls — only authenticated users within your organization can access connected Google data.

Our use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.