プライバシーポリシー

Callendar (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, process, and safeguard your personal information when you use the Callendar application and related services.

By accessing or using Callendar, you acknowledge that you have read and understood this Privacy Policy and agree to the data practices described herein.

Owner and Data Controller: Pedro Manfredi (Clutch Developer), Pau Alsina 64, bloque A, 3, 1, Barcelona 08024, Spain. Contact: info@clutchdeveloper.com.

We collect only the minimum data necessary to provide and improve the Service:

• Personal Data — your email address and name, provided during account registration.
• Usage Data — aggregated, anonymized usage analytics.
• Device Data — OS type and version, app version, device model.
• Payment Data — handled entirely by Apple App Store, Google Play, and RevenueCat. We do not collect payment card details.
• Crash & Diagnostic Data — crash reports and performance metrics.

We do NOT read, collect, or retain meeting content, attendees, or notes. Callendar reads upcoming events read-only to schedule the reminder call.

Our primary servers and data infrastructure are hosted on Google Cloud Platform in Frankfurt, Germany (EU). All data processing operations take place within the European Union unless explicitly stated otherwise.

• Account data — retained while your account is active; deleted within 30 days of account deletion.
• Usage analytics — up to 24 months (anonymized).
• Crash data — up to 12 months.
• Payment records — up to 7 years (tax/financial regulations).

• Provide the Service — authenticate users, sync preferences, deliver core functionality. Legal basis: performance of a contract.
• Process payments — handle purchases and renewals. Legal basis: performance of a contract.
• Analyze usage — improve features (anonymized). Legal basis: legitimate interests.
• Diagnose issues — resolve crashes. Legal basis: legitimate interests.
• Prevent fraud — detect unauthorized access. Legal basis: legitimate interests / legal obligation.
• Marketing (only with explicit consent) — promotional communications. Legal basis: consent.

• Analytics — Google Firebase Analytics, Mixpanel (EU SCCs).
• Crash Reporting — Firebase Crashlytics, Sentry (EU SCCs).
• Payments — RevenueCat, Apple App Store, Google Play.
• Hosting — Google Cloud Platform (Frankfurt, EU).
• Authentication — Firebase Authentication, Sign in with Apple.
• Push Notifications — Firebase Cloud Messaging.

• Encryption in transit (TLS 1.3) and at rest (AES-256).
• Role-based access control (RBAC).
• Multi-factor authentication on all internal systems.
• Regular security audits and penetration testing.
• Documented incident response plan (72-hour GDPR breach notification).

• Right of access — request a copy of your personal data.
• Right to rectification — correct inaccurate data.
• Right to erasure — “right to be forgotten”.
• Right to restriction of processing.
• Right to data portability.
• Right to object to processing.
• Right to withdraw consent.
• Right to lodge a complaint with the Agencia Española de Protección de Datos (AEPD) at www.aepd.es.

• Email: info@clutchdeveloper.com
• Postal: Pedro Manfredi (Clutch Developer), Pau Alsina 64, bloque A, 3, 1, Barcelona 08024, Spain.