Privacy Policy

Information We Collect

When you create schedules with natural language, we process your input text, context (such as time zone), uploaded content (images, PDFs, or audio), and parsing results. When you sign in with Google, we receive your account email and access calendar data within the authorized scope. We also collect technical data such as IP, browser type, logs, and error details for security and troubleshooting.

How We Use Information

We use the information to parse scheduling intent, generate executable plans, and interact with Google Calendar after you authorize access. We also use it for authentication, security, service improvement, customer support, and to create anonymized or aggregated analytics for stability and experience insights.

Google Calendar Data Use

PonyCal uses Google Calendar data only to provide user-facing scheduling features you request, such as reading event details to avoid conflicts and creating or updating events on your behalf. We request the minimum scopes needed for these features. We do not sell Google Calendar data, use it for advertising, or use it to train AI models. We do not allow human review of your Google Calendar data except to provide support with your consent.

PonyCal's use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Legal Basis

We process your information based on your consent, to perform our service contract, and to comply with legal obligations.

Sharing With Third Parties

We do not sell your personal information. We only share data with third-party service providers (such as Google, cloud, or AI vendors) when necessary to deliver the service, and we require reasonable safeguards. These providers are permitted to process data only on our instructions.

Data Storage and Security

Authorization credentials are encrypted. We do not log sensitive tokens. We use access controls, encryption in transit, and least-privilege principles to protect data. Access to user data is limited to personnel who need it to operate and support the service. No system is perfectly secure.

Data Retention

We retain your information only as long as needed to deliver the service or as required by law. You can revoke authorization or request deletion, and we will comply where applicable. When you revoke access, we stop accessing your Google Calendar data and delete stored authorization credentials.

Your Rights

You may access, correct, or delete your personal information, or withdraw consent. You can revoke Google access at any time from your Google account security settings. After revocation we stop accessing your Google Calendar data.

Contact Us

For questions, contact hi@ponycal.com.

Policy Updates

We may update this policy. Material changes will be announced on the site, and continued use indicates acceptance.