Privacy Policy

This notice applies to any individual who accesses or uses the Service, whether as a registered user (a Customer) or as a recipient of messages sent through the Service. By using the Service you acknowledge that you have read and understood this Privacy Policy.

Personal Data means data, whether true or not, about an identifiable individual. The categories of Personal Data we may collect include: name, company name, business address, email address, telephone number, WhatsApp number, photograph, employment information, billing information, content of messages and conversations sent through the Service, calendar metadata, and usage analytics relating to the Customer's account.

We collect Personal Data either when you provide it voluntarily (with notification and your consent) or where permitted under applicable laws. We may collect, use, and disclose Personal Data for the following purposes:

• Performing our obligations in delivering the Service to you;
• Verifying your identity and managing your account;
• Handling queries, requests, complaints, and support tickets;
• Operating, monitoring, and improving the Service;
• Processing payments, invoices, and refunds;
• Sending service notifications, security alerts, and (where you have consented) promotional materials;
• Complying with legal, regulatory, audit, and risk-management obligations;
• Disclosing data to third-party service providers (such as cloud hosting, payment processors, and analytics providers) strictly to the extent required to provide the Service.

Where you connect a WhatsApp Business number, we process the content of conversations and contacts solely to provide and improve the Service for you. We do not use your WhatsApp conversation data to develop, improve, or train generalized machine-learning (ML) or artificial-intelligence (AI) models for any third party. AI processing is scoped to your workspace and governed by your account-level configuration.

Where you authorize the Service to access your Google Calendar, we use that access only to read availability and to create, update, or delete calendar events on your behalf at your direction. Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

We do not use Google Calendar API data to develop, improve, or train generalized machine-learning (ML) or artificial-intelligence (AI) models.

We do not:

• Use Google Calendar API data to train any AI/ML models, whether generalized or non-personalized.
• Transfer Google Calendar API data to third-party AI/ML tools for the purpose of developing or improving generalized AI models.
• Use Google Calendar API data beyond the functionalities required to provide our services as described in this Privacy Policy.

You may withdraw your consent for the collection, use, or disclosure of your Personal Data at any time by contacting our Data Protection Officer at support@clanai.sg. Processing a withdrawal request typically takes up to twenty-one (21) business days. Please note that withdrawing consent may affect our ability to provide the Service to you, and we may need to suspend or terminate your account as a result.

You may request access to, or correction of, the Personal Data we hold about you by contacting our Data Protection Officer in writing. A reasonable fee may apply to access requests. We will respond to requests within seven (7) business days where possible, and will notify you if we require additional time (typically not more than thirty (30) days).

We implement administrative, physical, and technical safeguards to protect Personal Data, including authentication and access controls, encryption of credentials and sensitive fields at rest, transport encryption, tenant-level data isolation, and audit logging. While we take these measures seriously, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security.

We rely on the Personal Data you provide to be accurate, complete, and up to date. Please notify us promptly of any changes by updating your account details or by contacting our Data Protection Officer.

We retain Personal Data only for as long as it is necessary to fulfil the purpose for which it was collected, or as required or permitted by applicable laws. When data is no longer required, we will take reasonable steps to delete or anonymize it.

Personal Data is generally stored within Singapore. Where we engage third-party service providers located outside Singapore (for example for cloud hosting or AI inference), we will obtain your consent where required and ensure that such transfers are subject to protection standards comparable to those required under the PDPA.

Our Data Protection Officer is the primary point of contact for any inquiries, feedback, or formal requests regarding this Privacy Policy or your Personal Data. You may contact the Data Protection Officer at support@clanai.sg.

This Privacy Policy applies in conjunction with any other notices, contractual clauses, and consent provisions that govern your use of the Service. We may revise this Privacy Policy from time to time without prior notice; the latest version will always be available on this page. Your continued use of the Service after changes become effective constitutes your acceptance of the revised policy.