Privacy Policy

1. Introduction

ScheduleMuse AI (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our scheduling platform.

2. Information We Collect

2.1 Personal Information

• Name and email address
• Phone number (optional)
• Professional information (job title, company)
• Profile pictures or avatars

2.2 Scheduling Data

• Meeting preferences and availability
• Appointment details
• Meeting notes and descriptions
• Participant information

2.3 Integration Data

• Calendar access (Google Calendar, Outlook)
• Gmail: When you connect your Gmail account, we use Google's Gmail API solely to send meeting invitations, confirmations, cancellations, and reminders on your behalf. We access only the gmail.send scope and your email address for identification. We do not read, scan, index, or store the content of your emails.
• Video conferencing data (Zoom, GoTo Meeting, Microsoft Teams)
• GoTo Meeting: When you connect your GoTo Meeting account, we access GoTo Meeting APIs solely to create, update, and manage video conference meetings on your behalf when you schedule appointments. We access only the minimum data necessary to generate meeting links and manage scheduled sessions. We do not access recordings, attendee lists beyond scheduling needs, or unrelated account data.
• CRM and contact management system data

3. How We Use Your Information

• To provide scheduling services
• To send meeting invitations, reminders, and updates
• To sync with your calendar and video conferencing tools
• To provide customer support
• To meet legal obligations

4. Information Sharing and Disclosure

4.1 Third-Party Integrations

We share necessary information with integrated services:

• Zoom: Meeting details to create video conferences
• GoTo Meeting: Meeting details to create and manage video conferences on your behalf
• Calendar Providers: Appointment data for calendar syncing
• Gmail: When you connect your Gmail account, we use Google's Gmail API solely to send meeting invitations, confirmations, cancellations, and reminders on your behalf. We access only the gmail.send scope and your email address for identification. We do not read, scan, index, or store the content of your emails.

4.2 Legal Requirements

We may disclose your information if required by law, court order, or to protect our rights and safety.

5. Data Security

We implement industry-standard security measures, including encryption for data in transit and at rest, access controls, and regular security updates.

6. Data Retention

We retain your information for up to 2 years, or as long as necessary to provide our services and comply with legal obligations.

7. Your Rights

Depending on your location, you may request access, correction, deletion, or portability of your personal data by contacting us.

8. Cookies and Tracking

We use essential cookies for platform functionality and analytics/preference cookies to improve your experience. You can manage cookie preferences in your browser settings.

9. International Data Transfers

Your data may be transferred to and processed in countries other than your own. We use appropriate safeguards such as standard contractual clauses.

10. Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13 and will delete such data if discovered.

11. Changes to This Policy

We may update this Privacy Policy. We will notify you of material changes via email or platform notification. Continued use after changes constitutes acceptance.

12. Contact Us

Email: privacy@schedulemuse.ai

We aim to respond within 30 days.

13. Google API Services — User Data Disclosure

When you connect your Google account to ScheduleMuse AI, we request access to specific Google services. This section describes exactly what data we access, why, and how it is handled.

13.1 Scopes and Data Accessed

• Gmail Send (gmail.send): Used solely to send meeting invitations, confirmations, cancellations, and reminders from your Gmail account on your behalf. We do not read, scan, index, or store any of your existing emails or inbox content.
• Calendar Events (calendar.events): Used to create and manage calendar events for meetings you schedule through ScheduleMuse AI. We do not access or store calendar data beyond what is necessary to perform these scheduling actions.
• Email Address (userinfo.email): Retrieved to identify your connected account and display it in your integration settings.

13.2 How Google Data Is Used

Google user data is used exclusively to provide the scheduling features you requested — specifically, sending meeting-related communications through your connected Gmail account and managing calendar events for meetings you schedule.

13.3 Storage and Protection of Google Data

OAuth tokens are encrypted and stored securely. They are decrypted only when needed to send an email or manage a calendar event and are never logged in plaintext or exposed to client-side code.

13.4 Revocation and Deletion

You may disconnect your Google account at any time from your integration settings. Upon disconnection, all stored OAuth tokens are immediately and permanently deleted. Revocation via Google Account settings also invalidates and leads to deletion of tokens on our side.

13.5 Limited Use Disclosure

ScheduleMuse AI's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, ScheduleMuse AI will:

1. Limit its use of data to providing or improving user-facing features that are prominent in the requesting application's user interface.
2. Transfers of data are not allowed, except:
   • To provide or improve user-facing features that are visible and prominent in the requesting application's user interface and only with the user's consent;
   • For security purposes (for example, investigating abuse);
   • To comply with applicable laws; or
   • As part of a merger, acquisition, or sale of assets of the developer after obtaining explicit prior consent from the user.
3. Not use Google user data for serving advertisements.
4. Not allow humans to read Google user data unless the user has given explicit consent to view specific messages, files, or other data, or it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or the data has been aggregated and anonymized for internal operations.

14. GoTo Meeting Services — User Data Disclosure

When you connect your GoTo Meeting account to ScheduleMuse AI, we request access to specific GoTo services. This section describes exactly what data we access, why, and how it is handled.

14.1 Scopes and Data Accessed

• GoTo Meeting scopes: Used solely to create, update, and manage video conference meetings on your behalf when you schedule appointments through ScheduleMuse AI. We access only the minimum data necessary to generate meeting links, invitations, and manage scheduled sessions. We do not access or store any recordings, attendee lists beyond scheduling needs, or unrelated account data.

14.2 How GoTo Data Is Used

GoTo user data is used exclusively to provide the scheduling features you requested — specifically, creating and managing GoTo Meeting video conferences for meetings you schedule.

14.3 Storage and Protection of GoTo Data

OAuth tokens are encrypted and stored securely. They are decrypted only when needed to create or manage a meeting and are never logged in plaintext or exposed to client-side code.

14.4 Revocation and Deletion

You may disconnect your GoTo Meeting account at any time from your integration settings. Upon disconnection, all stored OAuth tokens are immediately and permanently deleted.

15. Compliance

This Privacy Policy is designed to comply with applicable laws including GDPR, CCPA, and the Google API Services User Data Policy.