Privacy Policy

Last updated: April 1, 2026

TinyCal ("we", "our", or "us") is operated by Zenith Studio. This Privacy Policy explains how we collect, use, and protect your information when you use our scheduling platform at tinycal.zenithstudio.app (the "Service").

1. Information We Collect

Account Information

When you create an account, we collect your name, email address, and profile image through your authentication provider (e.g., Google, Amazon Cognito).

Calendar Data

When you connect a calendar (Google Calendar or Outlook), we access your calendar's free/busy information and event details solely to check availability and create meeting events on your behalf. We store OAuth tokens securely to maintain this connection.

Booking Data

When someone books a meeting with you, we collect the booker's name, email address, phone number (if provided), timezone, and any answers to custom questions you've configured.

Meeting Link Data

When you create a shareable meeting link, we may collect the recipient's name, email, phone number, and LinkedIn profile if they choose to provide them during confirmation.

Usage Data

We automatically collect standard server logs including IP addresses, browser type, and pages visited to maintain and improve the Service.

2. How We Use Your Information

3. Google API Services

TinyCal's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

4. Data Sharing

We do not sell your personal information. We share data only in the following cases:

5. Data Storage and Security

Your data is stored in secure, encrypted databases hosted on Neon (PostgreSQL). OAuth tokens are stored encrypted. We use HTTPS for all data transmission. The Service is hosted on Vercel with industry-standard security measures.

6. Data Retention

We retain your account data and booking history for as long as your account is active. You can request deletion of your account and associated data at any time by contacting us. Calendar OAuth tokens are retained until you disconnect the calendar or delete your account.

7. Your Rights

You have the right to:

8. Cookies

We use essential cookies for authentication and session management. We do not use third-party tracking or advertising cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on the Service.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at: