Privacy Policy
Last updated: February 7, 2026
1. Data Controller
meet-r.com is operated by a private individual under the Syntelligence brand. For any privacy-related questions, please contact us at syntelligencepl@gmail.com.
2. Information We Collect
- Account Information: When you register, we collect your email address, name, username, and optionally a profile image and bio.
- Authentication Data: If you sign in with Google (OAuth 2.0), we receive your name, email address, and profile picture from Google. We store an access token and refresh token to maintain your session and connected services.
- Google Calendar Data: If you connect Google Calendar, we access your calendar events in real time to check for scheduling conflicts (free/busy status and event titles). We do not permanently store your calendar events — they are read on demand and discarded after each availability check.
- Meeting Request Data: Names, email addresses, messages, requested time slots, and custom question responses submitted by individuals requesting meetings with you.
- Uploaded Files: Profile and cover images you upload are stored using Vercel Blob Storage.
- Passwords: If you register with email/password, your password is hashed using bcrypt and never stored in plain text.
- Billing Data: If you subscribe to a paid plan, your payment is processed by Stripe. We store your Stripe customer ID and subscription ID for billing management. We do not store your credit card number, CVV, or full card details.
3. Legal Basis for Processing (GDPR)
- Contract: Processing your account data is necessary to provide the scheduling service you signed up for.
- Consent: Connecting Google Calendar is optional and requires your explicit consent via OAuth authorization.
- Legitimate Interest: We may process data to prevent abuse and maintain the security of the service.
4. How We Use Your Data
We use your data strictly to operate the scheduling service: managing your account, processing meeting requests, checking calendar availability, and sending email notifications. We do not sell, rent, or share your personal data with third parties for marketing purposes.
5. Third-Party Services
- Google OAuth & Calendar API: Used for authentication and calendar conflict detection. Subject to Google's Privacy Policy.
- Vercel: Our hosting and image storage provider. Data may be processed on servers in the United States.
- Resend: Used for transactional emails (meeting confirmations, counter proposals).
- Stripe: Used for payment processing and subscription management. Stripe may collect billing information, IP address, and device data for fraud prevention. Subject to Stripe's Privacy Policy.
6. Google API Services Usage Disclosure
meet-r's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
- We only request access to the Google Calendar API scope necessary to provide scheduling functionality (conflict detection and calendar display).
- We do not use Google user data for serving advertisements or share it with third parties for advertising purposes.
- We do not allow humans to read your Google data unless you have given affirmative consent, it is necessary for security purposes, or it is required by law.
- Google Calendar data is accessed in real time and is not permanently stored on our servers.
7. International Data Transfers
Your data may be transferred to and processed in the United States through our hosting provider (Vercel) and Google's services. These transfers are necessary to provide the service and are covered by the providers' data processing agreements and standard contractual clauses.
8. Data Retention
We retain your account data for as long as your account is active. Meeting request data is retained indefinitely for record-keeping unless you delete your account. When you delete your account, all associated data (profile, settings, requests, uploaded images) is permanently removed.
9. Your Rights (GDPR)
Under GDPR, you have the right to:
- Access — Request a copy of the personal data we hold about you.
- Rectification — Correct inaccurate data via your dashboard settings.
- Erasure — Delete your account and all associated data instantly from your settings.
- Restrict Processing — Request that we limit how we use your data.
- Data Portability — Request your data in a machine-readable format.
- Withdraw Consent — Disconnect Google Calendar at any time by revoking access in your Google Account settings.
To exercise any of these rights, contact us at syntelligencepl@gmail.com.
10. Cookies
We use only essential cookies required for authentication and session management (NextAuth.js session cookies). We do not use analytics cookies or tracking cookies. Stripe may set its own cookies for fraud prevention during the checkout process — these are governed by Stripe's Cookie Policy.