Privacy Policy

1. Introduction

SyncRoutine ("we", "our", or "us") is a free schedule-to-calendar sync tool. This Privacy Policy explains how we collect, use, and protect your information when you use our service at syncroutine.muddasirfaiyaj.dev.

2. Information We Collect

We collect the following information when you use SyncRoutine:

• Google Account Info: Your name, email address, and profile picture — provided by Google when you sign in via OAuth.
• Uploaded Documents: Schedule files (PDF, Word, Excel) you upload for parsing.
• Parsed Schedule Data: Course names, times, days, and locations extracted from your documents.
• Google Calendar Access: We request permission to create, update, and delete events on your Google Calendar.

3. How We Use Your Information

• To authenticate you via Google OAuth.
• To parse your uploaded schedule documents and extract event data.
• To create, update, or delete recurring calendar events in your Google Calendar.
• To display your schedules and sync status within the app.

4. Data Storage & Retention

• Uploaded files are processed and then immediately deleted from our servers. We do not retain your original documents.
• Parsed schedule data (event names, times, days) is stored in our database so you can view and manage your schedules.
• Google OAuth tokens are encrypted and stored securely to maintain your calendar sync connection.
• You can delete your account and all associated data at any time from the Settings page.

5. Third-Party Services

We use the following third-party services:

• Google OAuth & Google Calendar API: For authentication and calendar event management.
• Supabase: For database storage and authentication infrastructure.
• Vercel: For hosting and deployment.

We do not sell, share, or transfer your personal data to any other third parties.

6. Google API Services — Limited Use Disclosure

SyncRoutine's use and transfer of information received from Google APIs to any other app adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We only access Google Calendar data to create, update, and delete schedule events you explicitly request.
• We do not use Google user data for serving advertisements, including retargeting, personalized, or interest-based advertising.
• We do not sell, rent, or transfer Google user data to third parties.
• We do not use Google user data for purposes unrelated to providing or improving the SyncRoutine service.
• We do not allow humans to read your Google user data unless: (a) you give explicit consent, (b) it is necessary for security purposes (e.g., investigating abuse), (c) it is required to comply with applicable law, or (d) our use is limited to internal operations and the data has been aggregated and anonymized.

7. Data Security

We implement industry-standard security measures to protect your data. OAuth tokens are encrypted at rest using AES-256 encryption. All data is transmitted over HTTPS. However, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.

8. Your Rights

• You can revoke SyncRoutine's access to your Google account at any time via your Google Account permissions.
• You can delete your account and all stored data from the Settings page.
• You can request a copy of your data by contacting us.

9. Children's Privacy

SyncRoutine is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data, please contact us and we will delete it.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date. Continued use of SyncRoutine after changes constitutes acceptance of the updated policy.

11. Contact

If you have questions about this Privacy Policy, please contact us at muddasirfaiyaj66@gmail.com.