Privacy policy for Gray Rock Scheduler

This is a generic placeholder for Gray Rock Scheduler. It is not legal advice. Before production use or public launch, have qualified counsel review and replace this text with a policy that matches your jurisdiction, data practices, and integrations.

Effective date: April 13, 2026 (or the date this page was last updated by the operator).

This policy describes how Gray Rock Scheduler (“we”, “us”, “the service”) may collect, use, store, and share information when you use our website and related services. By using the service, you agree to this policy. If you do not agree, do not use the service.

1. Information we may collect

Account and identity. If you sign in with Google or similar providers, we may receive identifiers, your name, and email address as permitted by that provider.
Calendar and scheduling. If you connect Google Calendar (or other integrations we offer), we may access calendar metadata, events, availability, and related data needed to provide scheduling features you request.
Content you submit. Meeting titles, descriptions, attendee addresses or identifiers, and other inputs you provide through forms or APIs.
Technical data. IP address, browser type, device type, approximate timestamps, cookies or similar technologies, and server logs used for security, debugging, and service operation.

2. How we use information

We use the information above to operate, secure, and improve the service; authenticate users; schedule and manage meetings you configure; communicate with you about the service; comply with law; and enforce our terms.

3. Legal bases (where applicable)

Depending on your region, we may rely on consent, contract performance, legitimate interests (such as fraud prevention and service reliability), or legal obligation as the basis for processing.

4. Sharing

We do not sell your personal information. We may share data with:

Service providers who host infrastructure, databases, analytics, or email on our behalf, under confidentiality and security obligations.
Integrated third parties (for example Google) when you choose to connect those services; their use of data is governed by their policies.
Authorities when required by law or to protect rights, safety, and security.

5. Retention

We retain information only as long as needed for the purposes described, unless a longer period is required by law. You may disconnect integrations or request account deletion where the product supports it; residual backups may persist for a limited period.

6. Security

We use reasonable administrative, technical, and organizational measures designed to protect information. No method of transmission or storage is completely secure.

7. International transfers

Data may be processed in countries other than your own. Where required, we use appropriate safeguards for cross-border transfers.

8. Your choices and rights

Depending on applicable law, you may have rights to access, correct, delete, restrict, or object to certain processing, or to data portability. Contact the operator to exercise these rights. You may also lodge a complaint with a supervisory authority where you live or work.

9. Children

The service is not directed at children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children.

10. Changes

We may update this policy from time to time. We will post the revised policy on this page and may adjust the effective date above. Continued use after changes constitutes acceptance unless law requires otherwise.

11. Contact

For privacy questions, contact the operator of this deployment using the contact method they publish for the service (for example support email or company website).