PRIVACY POLICY

Updated Date: May 18, 2026

Welcome to AIMOZA, an AI-powered Software-as-a-Service (SaaS) platform. We are headquartered in Rancho Santa Margarita, California, and provide our services across the United States and Canada. This Privacy Policy explains how we collect, use, protect, and share your information when you interact with our platform and services.

1. Introduction

At AIMOZA, we respect your privacy and are committed to protecting your personal data. This policy applies to all information collected through our website, web application, AI-powered communication tools, automation systems, and integrations.

2. Information Collection

We collect the following types of information:

AI Configuration and Personalization Data

Information used to configure and personalize AI agents, automation systems, workflows, CRM pipelines, and operational processes.

Customer Data

Information provided by or about our users’ customers, leads, contacts, appointments, and communication records.

User Account Data

Information about users who access and manage the AIMOZA platform, including login credentials, billing information, business details, and account settings.

These data points help us tailor experiences, deliver AI-powered functionality, improve our platform, and optimize system performance.

We do not sell or share your personal data with third parties for advertising or marketing purposes. Data may be processed by trusted service providers solely to operate, maintain, and support the AIMOZA platform.

2.1 Google Calendar Integration

If you choose to connect your Google account with AIMOZA to enable calendar functionality, we will request access to specific Google Calendar data via the Google Calendar API. This includes:

• Viewing your calendar events

• Checking your availability

• Creating, modifying, and deleting events on your behalf

What Data We Access

We may access and process the following Google user data:

• Your calendar list

• Event metadata (title, description, date/time, location, attendees)

• Free/busy availability

How We Use This Data

This data is used solely to:

• Allow your AI agent to check availability in real time

• Automatically create, update, or delete events as part of scheduling or engagement workflows

• Improve the user experience by offering seamless booking and scheduling through your calendar

Data Storage and Sharing

• We do not store full calendar event content permanently.

• We do not share your Google Calendar data with third parties.

• We only retain metadata necessary to link events to the AIMOZA platform for scheduling visibility.

• You may disconnect your Google account at any time from your AIMOZA dashboard.

Data Protection Measures for Google Calendar Data

• All Google Calendar data is transmitted securely via HTTPS/TLS 1.2+ encryption.

• Any sensitive data temporarily stored is encrypted at rest using AES-256 encryption.

• Access to Google Calendar data is strictly limited to authorized systems and personnel with a legitimate operational need, and all access is logged and monitored.

• We comply with the Google API Services User Data Policy, including the Limited Use requirements. Your Google data is never sold, used for advertising, or shared with unauthorized third parties.

3. User Interaction

Users may interact with AIMOZA through:

• Our web application

• AI-powered chat systems

• SMS messaging

• Automated workflows

• CRM and pipeline systems

• Email integrations

• Voice and scheduling systems

• Our website and landing pages

4. Data Security

We take the protection of your personal and sensitive data seriously. To safeguard all information, including data accessed via the Google Calendar API, we implement the following security measures:

Encryption in Transit & at Rest

All data transmitted between your device, our servers, and third-party APIs (including Google services) is encrypted using HTTPS/TLS 1.2+ protocols. Sensitive data stored by AIMOZA is encrypted at rest using AES-256 encryption.

Access Control

Only authorized personnel with a legitimate business need have access to sensitive data, and all access is logged and monitored.

Data Minimization

We only collect and retain the minimum amount of information necessary to provide our services. Calendar event data is not stored permanently and is only retained long enough to fulfill scheduling functions.

Regular Security Reviews

We conduct periodic security assessments, vulnerability scans, and audits to help ensure our systems remain compliant and secure.

Incident Response

In the event of a data breach, we maintain an incident response process that includes immediate containment, investigation, remediation, and notification to affected users as required by applicable law.

Compliance with Google API Services User Data Policy

All use of Google Calendar data complies with Google’s Limited Use requirements. Your data is never sold, used for advertising, or shared with unauthorized third parties.

5. Compliance Requirements

Given our operations in the United States and Canada, we adhere to applicable privacy and consumer protection laws, including:

• The California Consumer Privacy Act (CCPA)

• The Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada

These laws provide users with rights regarding their personal data.

6. Cookies and Tracking Technologies

We use standard cookies, analytics tools, and similar technologies to:

• Improve platform functionality

• Analyze website and application usage

• Enhance user experience

• Maintain session authentication and security

Users may manage cookie preferences through their browser settings.

7. Data Retention and Deletion

We follow industry standards regarding data retention and deletion. Users may request deletion of their personal data, subject to operational, legal, or compliance requirements.

8. International Data Transfer

Our data operations are primarily confined to the United States and Canada, and we take reasonable measures to ensure data protection standards are maintained across all supported regions.

9. User Rights

Users have the right to:

• Access their personal data

• Correct inaccurate information

• Request deletion of their data

• Disconnect third-party integrations

• Request information regarding stored personal information

Requests may be submitted directly through the platform or by contacting us via email at [email protected].

10. Contact Information

For any privacy-related inquiries or concerns, please contact:

AIMOZA
Email: [email protected]
Website: www.aimoza.com

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect operational, legal, or platform changes. Significant updates will be communicated through our platform, website, or via email notification where appropriate.