Legal

Privacy Policy

Last updated: June 24, 2026 · Effective: June 24, 2026

This Privacy Policy explains how Vizionsys Technologies Private Limited (“Vizionsys”, “imatic.ai”, “we”, “us”, or “our”) collects, uses, stores, shares, and protects your information when you use the imatic.ai website, the imatic.ai Voice AI Orchestration Platform, and the imatic scheduling & calendar product (collectively, the “Services”). It includes a dedicated section describing how we handle Google user data obtained through the Google Calendar API.

Who we are
Information we collect
Google user data & Calendar API
Limited Use disclosure
How we use information
How we share information
Data retention
Revoking access & deletion
Security
International transfers
Your rights
Cookies
Children
Changes
Contact us

1. Who we are

The Services are operated by Vizionsys Technologies Private Limited, a company incorporated in India (CIN: U72900KA2021PTC151348), with its registered office in Bengaluru, Karnataka, India. We are the data controller responsible for your information under this Policy. You can reach us at hello@imatic.ai.

2. Information we collect

We collect the following categories of information:

Account information — name, email address, organization, role, and authentication identifiers when you create an account or sign in (including via Google Sign-In).
Google user data — when you connect your Google Account, the profile and calendar data described in Section 3. We only request this with your explicit consent.
Booking & scheduling data — meetings, availability, attendee details, event titles, times, and notes that you or your invitees create using the Services.
Usage & device data — log data, IP address, browser type, pages viewed, and diagnostic information used to operate and secure the Services.
Communications — messages you send us (e.g., support requests).
Billing information — for paid plans, billing contact details and payment status (card data is processed by our payment processor, not stored by us).

3. Google user data & the Google Calendar API

When you choose to connect a Google Account, imatic.ai uses Google OAuth 2.0 to request access to specific data through Google APIs. We request only the scopes necessary to provide the scheduling features you ask for, and you can review and revoke this access at any time.

Google OAuth scope	What it allows	Why we use it
`openid`, `userinfo.email`, `userinfo.profile`	Read your basic profile: name, email address, and profile picture.	To create and identify your account and show which Google Account is connected.
`calendar.events`	View, create, edit, and delete events on calendars you authorize.	To create bookings on your calendar, check conflicts, and keep events in sync when a meeting is booked, rescheduled, or cancelled through imatic.ai.
`calendar.readonly` / `calendar.freebusy`	Read your calendar busy/free times and event details.	To compute your real-time availability so invitees are only offered slots when you are free.

What we access: only the calendars and events you connect and authorize. What we store: we store the minimum data needed to operate scheduling — for example, event identifiers, start/end times, busy/free status, and the events that imatic.ai itself creates on your behalf. We store OAuth tokens in encrypted form so we can perform these actions while your connection is active. We do not store the full contents of unrelated calendar events beyond what is required to detect conflicts and display your schedule.

How Google data is used: Google user data is used solely to provide and improve the user-facing scheduling features you request. We do not use Google user data for advertising, we do not sell it, and we do not allow humans to read it except (a) with your explicit consent, (b) where necessary for security or to comply with applicable law, or (c) in aggregated/anonymized form for internal operations such as debugging.

4. Limited Use disclosure

Compliance with the Google API Services User Data Policy

imatic.ai’s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically: we only use Google user data to provide or improve user-facing features that are prominent in our application; we do not transfer or sell this data for serving advertisements, for purposes unrelated to those features, to data brokers, or to determine creditworthiness; and we do not allow humans to read this data unless we have your affirmative consent for specific messages, it is necessary for security purposes (such as investigating abuse), to comply with applicable law, or our use is limited to internal operations with data aggregated and anonymized.

5. How we use information

Provide, operate, and maintain the Services and the scheduling/calendar features you request.
Authenticate you and secure your account.
Calculate availability, create and manage bookings, and synchronize events with your calendar.
Send transactional communications (e.g., booking confirmations, reminders, account notices).
Provide customer support and respond to your requests.
Detect, prevent, and address fraud, abuse, security incidents, and technical issues.
Comply with legal obligations and enforce our Terms of Service.

We do not sell your personal information. We share information only as follows:

Service providers (sub-processors) — cloud hosting (Microsoft Azure), database, email/notification delivery, and analytics providers who process data on our behalf under contractual confidentiality and security obligations.
With your direction — for example, sharing booking details with the invitees or hosts of a meeting you schedule.
Legal & safety — when required by law, regulation, legal process, or to protect the rights, property, or safety of users, the public, or imatic.ai.
Business transfers — in connection with a merger, acquisition, or sale of assets, subject to this Policy.

Google user data is never shared with third parties except as strictly necessary to provide the features above, and always consistent with the Limited Use requirements in Section 4.

7. Data retention

We retain personal information for as long as your account is active or as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce our agreements. Google OAuth tokens and synced calendar data are retained only while your Google connection is active; when you disconnect Google or delete your account, the associated Google user data and tokens are deleted from our active systems within 30 days, except where retention is required by law.

8. Revoking access & requesting deletion

You are always in control of your data. You can:

Disconnect Google inside imatic.ai — open Settings → Integrations and remove the Google connection. This revokes our access and removes stored Google tokens.
Revoke access from your Google Account — visit myaccount.google.com/permissions and remove imatic.ai. Google will immediately stop our access.
Delete your account & data — email hello@imatic.ai and we will delete your account and the personal data we hold, subject to legal retention requirements, within 30 days.

9. Security

We apply administrative, technical, and physical safeguards to protect your information, including encryption in transit (TLS) and at rest, encryption of stored OAuth tokens, role-based access controls, audit logging, and the principle of least privilege. No method of transmission or storage is completely secure, but we work continuously to protect your data and to promptly address any incidents.

10. International data transfers

We are based in India and use cloud infrastructure that may process data in India and other regions. Where personal data is transferred across borders, we rely on appropriate safeguards consistent with applicable data protection laws.

11. Your rights

Depending on your location, you may have rights to access, correct, delete, or port your personal data, to object to or restrict certain processing, and to withdraw consent. We honour these rights under India’s Digital Personal Data Protection Act, 2023, and, where applicable, the EU/UK GDPR. To exercise any right, contact hello@imatic.ai. You also have the right to lodge a complaint with your local data protection authority.

12. Cookies

We use strictly necessary cookies and similar technologies to keep you signed in, remember your preferences, and secure the Services. We may use limited analytics to understand usage and improve the product. You can control cookies through your browser settings.

13. Children

The Services are not directed to children under 16, and we do not knowingly collect personal data from children. If you believe a child has provided us data, contact us and we will delete it.

14. Changes to this Policy

We may update this Policy from time to time. When we make material changes, we will update the “Last updated” date above and, where appropriate, notify you. Your continued use of the Services after changes take effect constitutes acceptance of the revised Policy.

15. Contact us

Vizionsys Technologies Private Limited
CIN: U72900KA2021PTC151348
Bengaluru, Karnataka, India
hello@imatic.ai