Privacy Policy
Last Updated: March 6, 2025
Greyfibre QuickAssist ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, store, and share personal data, including data obtained from Google API Services, Slack, Microsoft Outlook, and Intuit QuickBooks Online (QBO).
1. Scope of this Privacy Policy
This Privacy Policy applies to:
- Users who interact with Greyfibre QuickAssist through our website, mobile applications, and integrations
- Data collected through OAuth authentication and APIs from third-party services
- How Greyfibre QuickAssist stores, processes, and protects this data
2. Data We Collect
2.1 User-Provided Information
- Name, email address, and other contact details when registering
- Business-related data necessary for financial and workflow automation
- Additional information provided within the platform
2.2 Data Collected from Third-Party Services
Google API Services
- Google Calendar: Event details for scheduling
- Google Drive: Files for financial operations
- Gmail API: Financial and business-related data from emails
Slack API
- Messages & Channels: Contextual data for collaboration
- User Mentions & Notifications: Task assignments and alerts
3. How We Use Your Data
- Providing User-Facing Features – Enhancing financial workflow automation
- Transaction & Business Process Automation – Syncing user inputs
- Improving AI-Powered Insights – Learning from interactions
- Compliance & Security – Protecting user data
NOTE: We DO NOT use or share user data for:
- Advertising or marketing purposes
- Selling or transferring data to third parties
- Determining creditworthiness or financial lending
4. Data Sharing & Disclosure
We share data only in the following circumstances:
With User Consent
We only share data when you explicitly grant permission
To Service Providers
Trusted third-party vendors assisting with cloud storage, security monitoring, and application functionality
For Legal Compliance
To comply with legal or regulatory requirements
For Security & Fraud Prevention
Investigating unauthorized access or potential breaches
5. Limited Use Compliance (Google API Services)
Greyfibre QuickAssist adheres to Google's Limited Use Policy by ensuring:
Data access is restricted to providing core user-facing features
No user data is transferred for advertising, profiling, or marketing purposes
Human access to data is limited unless explicitly authorized by the user
6. In-Product Privacy Notifications
Real-time Notifications
- AI-driven alerts for data interactions
- Transparent consent requests
- Security and policy change updates
User Controls
Users can modify their privacy preferences at any time in Account Settings
7. Data Security & Retention
Security Protocols
Encryption
Data is encrypted in transit (TLS) and at rest (AES-256)
Access Control
OAuth tokens are securely stored and periodically refreshed
Auditing & Logging
Monitoring unauthorized access attempts
Data Minimization
Storing only the minimal required data for functionality
Data Retention Policy
- User data is retained only as long as necessary to provide services
- Users can request data deletion at any time
- OAuth token revocation automatically removes access to third-party data
8. User Controls & Data Access Management
User Controls
Modify Permissions
Adjust API permissions via service-specific settings
Data Management
Request data deletion or download stored information
9. Contact Information & Policy Changes
Contact Us
Policy Updates
Major changes will be communicated via email and in-app notifications. Continued use after changes indicates acceptance.
10. Compliance Certifications & Third-Party Audits
Security Assessments
Annual Security Assessments for Google API Services Restricted Scopes
Compliance Audits
Regular Compliance Audits for Slack, Microsoft Outlook, and Intuit QBO API policies
SOC 2 Compliance
Security, Availability, and Confidentiality Trust Services Criteria
GDPR Compliance
European Union General Data Protection Regulation standards
YOUR PRIVACY IS OUR PRIORITY!