Effective January 1, 2020
Calendly LLC (“Calendly”, “We”, or “Us”) recognizes the importance of privacy. We want you to feel confident using our services, and this privacy notice (“Notice”) is to help you understand and describe how we collect, use, and disclose your information.
This Policy describes the following:
Throughout this document, we will use a few terms to describe various products and roles. All of the text, data, information, software, graphics, photographs and more that we and our affiliates may make available to you, plus our websites and any services, plug-ins, software, or applications (including Calendly Click, Calendly for Chrome, and Calendly for Firefox) that we may provide all together constitute the Calendly “Website.” “Calendly Users” are the people who have created a Calendly account, and “Calendly Invitees” are people who have scheduled a meeting with a Calendly User but may or may not have registered with Calendly. A “Calendly Viewer” is a person who visits the Calendly Website but may or may not be a Calendly User or Calendly Invitee.
We collect information about you directly from you and automatically through your use of our Website. We may combine information automatically collected with other information that we have collected about you including from publicly available sources.
In order to help you protect yourself and your information, we encourage you to provide only that information that is necessary for using our Website. For example, to schedule a meeting you may only need to provide us with a name, email address, date, and time.
Calendly is not directed to children under sixteen (16) years of age and we do not knowingly collect personal information from children under 16. If we discover that a child under 16 has provided us with personal information, we will promptly delete such personal information from our systems.
Calendly collects the following information, either directly from Calendly Users, Invitees, or Viewers, or through third parties regarding Users, Invitees, or Viewers.
We may use information that we collect about you, including personal information, to:
We do not sell your information to any third parties, or disclose it in exchange for money or other valuable consideration. We do not share your personal information with others except as indicated within this Notice, or when we inform you and give you an opportunity to opt-out of having your personal information shared.
We will never use Invitee data to send direct marketing via emails, SMS, physical mailings, or other similar communication channels to advertise or promote the use of our product and services or those of a third party.
We may share information we collect about you, including personal information, in the following ways:
We use other companies, agents or contractors (“Service Providers”) to perform services on our behalf or to assist us with providing services to you:
We may engage Service Providers to process credit card transactions or other payment methods. We may also engage Service Providers to provide services such as monitoring and developing Calendly services; aiding in communications, infrastructure and IT services; customer service; debt collection; analyzing and enhancing data. These Service Providers may have access to your personal or other information in order to provide these functions. In addition, some of the above-listed types of information that we request may be collected by third party providers on our behalf.
We may share information with Service Providers and government entities for legal, security, and safety purposes. This includes sharing information in order to enforce policies or contracts, address security breaches, and assist in the investigation of fraud, security issues, or other concerns.
We require Service Providers to agree to take reasonable steps to keep the personal information that we provide to them secure. We do not authorize them to use or disclose your personal information except in connection with providing their services.
We may disclose information to current or future affiliates or subsidiaries for research, marketing, and other purposes consistent with this Privacy Notice.
If you are using Calendly as a paid member of an organization or using your organization’s email domain (thereby representing yourself as a member of the organization), we may share your email address and plan information with an authorized agent of your company upon request in order for them to administer the account for the company.
Third Party Analytics Services. Some of the services used provide the ability to opt-out.
You may opt out of Google Analytics’ services using the Opt-Out feature on their website. The Google Analytics service is provided by Google Inc. You can opt-out from Google Analytics service from using your information by installing the Google Analytics Opt-out Browser tool: https://tools.google.com/dlpage/gaoptout. For more information on the privacy practices of Google, please visit the Google Privacy & Terms web page: https://www.google.com/policies/privacy.
We have taken reasonable steps to help protect the personal information we collect. More information on Calendly security and storage practices is available here: https://calendly.com/pages/security.
Calendly takes the security of your personal data very seriously. We work hard to protect the personal data that you provide from loss, misuse, and unauthorized access, or disclosure. Given the nature of communications and information processing technology, there is no guarantee that personal data will be absolutely safe from access, alteration, or destruction by a breach of any of our physical, technical, and managerial safeguards. Please visit our security and privacy page for additional information about our safety standards: https://calendly.com/pages/security.
You should take steps to protect against unauthorized access to your device and account by, among other things, choosing a unique and complex password that nobody else knows or can easily guess and keeping your log-in and password private. We are not responsible for any lost, stolen, or compromised passwords or for any activity on your account via unauthorized password activity.
We retain the personal data we collect for so long as is reasonably necessary to fulfill the purposes for which the data was collected, to perform our contractual and legal obligations, and for any applicable statute of limitations periods for the purposes of bringing and defending claims.
Our Website may contain links to third-party websites and applications. Subject to your opt-out preferences (see Your Rights and Choices), we may also use third-party advertisers, ad networks, and other advertising, marketing, and promotional companies, to serve advertisements on our websites. Any access to and use of such linked websites and applications is not governed by this Notice but instead is governed by the privacy policies of those third parties. We do not endorse these parties, their content, or any products and services they offer, and we do not endorse these parties, their content, or any products and services they offer, and we are not responsible for the information practices of such third-party websites or applications.
Our application and database servers are located with Amazon Cloud Services in the United States. Amazon Cloud Services has certified with the Department of Commerce that it adheres to the Privacy Shield Principles under the EU-U.S. Privacy Shield framework and the Swiss-U.S. Privacy Shield framework.
If you are an individual located in the European Economic Area, the United Kingdom, Canada or another jurisdiction outside of the United States with laws and regulations governing personal data collection, use, and disclosure that differ from United States laws, please be aware that information we collect (including through the use of methods such as Cookies and other web technologies) will be processed and stored in the United States or in other countries where we or our third-party services providers have operations. By submitting your personal information to Calendly and using Calendly, you expressly consent to having your personal data transferred to, processed, and stored in the United States or another jurisdiction which may not offer the same level of privacy protection as those in the country where you reside or are a citizen.
In connection with the operation of its Website, Calendly may transfer your personal information to various locations, which may include locations both inside and outside of the European Economic Area. Calendly complies with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework, as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union and/or Switzerland, to the United States. Under the Privacy Shield Framework, Calendly is responsible for the processing of personal data it receives and subsequently transfers to a third party acting as an agent on its behalf. Calendly complies with the Privacy Shield Principles for all onward transfers of personal data from the EU, including the onward transfer liability provisions. Calendly has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this Notice and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.
With respect to personal data received or transferred pursuant to the Privacy Shield Framework, Calendly is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.
We do not currently recognize or respond to browser-initiated Do Not Track signals as there is no consistent industry standard for compliance.
This Notice is current as of the Effective Date set forth above. This Notice may change if there is a material change to the way information is handled at Calendly, or to clarify our policy or adjust clerical errors. If any changes are made, we’ll post them on this page, so please be sure to check back periodically. If you continue to use Calendly after those changes are in effect, you agree to the revised Notice.
Effective date: December 31, 2019
This Privacy Notice for California Residents (“California Notice”) supplements the Calendly Privacy Notice. It applies solely to Calendly Users, Viewers, and Invitees who live in the State of California (“California Residents”). Calendly adopts this notice to comply with the California Consumer Privacy Act of 2019 and any subsequent amendments (“CCPA”). All terms used in this California Notice have the same meaning as when used in the CCPA.
Calendly collects information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“personal information”). In particular, our Website may have collected the following categories of personal information from Users, Invitees, and Viewers within the last twelve months, for the purpose of establishing, maintaining, and supporting the services that we provide through our Website:
Calendly Obtains the Categories of Personal Information Listed Above from the Following Categories of Sources
We may use or disclose the personal information we collect for one or more of the following business purposes:
We may disclose your personal information to a third party for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing your contract.
We disclose your personal information for a business purpose to the following categories of third parties:
In the preceding twelve (12) months, we have not sold any personal information.
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
You have the right to request that we delete any of your personal information that we have collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.
We may deny your deletion request if retaining the information is necessary for us or our service providers to:
To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by reaching out to firstname.lastname@example.org.
Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable California Resident request for access or data portability twice within a 12-month period.
The request must:
We will attempt to respond to California Resident requests in as timely a fashion as possible. In the event of delays over 60 days, we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. Any disclosures we provide will only cover the 12-month period preceding the verifiable receipt of a California Resident’s request. The response we provide will explain the reasons we cannot comply with a request, if applicable.
We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before fulfilling your request.
In accordance with the CCPA’s requirements, we will not discriminate against you for exercising any of your CCPA rights.
We reserve the right to amend this privacy notice at our discretion and at any time and will notify you by email or through a notice on our website homepage.
If you have any questions or comments about this notice, our Privacy Statement, the ways in which we collect and use your personal information, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact us at: email@example.com.