1. Introduction

Welcome to magic teams.AI, an AI-powered voice calling system designed to enhance your communication efficiency and automate tasks such as scheduling through integrations like Google Calendar. This Privacy Policy outlines how magic teams.AI, operated by Saphaare Labs Private Limited ("we," "us," or "our"), collects, uses, protects, and shares your personal information when you utilize our services ("Services"). We are committed to safeguarding your privacy and handling your data with transparency and integrity, in compliance with applicable data protection laws. This policy explains our practices, including those related to the data accessed via Google Calendar integration.

2. Information We Collect

We collect information to provide and improve our Services. The types of information we collect depend on how you use our Services:

• Account Information: When you register, we collect information such as your name, email address, phone number, and company details (if applicable).

• AI Voice Interaction Data:

  • Voice Recordings and Transcripts: We process voice recordings and generate transcripts of calls made or received through our AI system. This is core to our AI's functionality for tasks like understanding requests and providing responses. These may be used for service operation, quality assurance, and to improve our AI models, with appropriate safeguards.

  • Call Logs and Metadata: This includes phone numbers, call duration, date and time of calls, interaction records, and AI-generated summaries or outcomes.

• Information from Google Calendar Integration (with your explicit consent): If you choose to connect your Google Calendar, we will request your permission to access specific information to enable our AI to schedule appointments on your behalf. This includes:

  • To view your calendar and availability:

    • Your primary email address associated with the Google account.

    • Your basic profile information (name, profile picture – if public).

    • Your Google Calendar(s) to see events, their titles, start and end times, descriptions, attendees (if visible to you), event status (e.g., busy/free), time zones, and recurrence details. This allows our AI to identify free slots for scheduling.

    • We specifically request access to https://www.googleapis.com/auth/calendar.readonly (or similar read-only scopes) to view your calendar information for scheduling purposes.

  • To create and manage events in your calendar:

    • To book appointments, our AI needs permission to create new events, modify events it has created, or delete events it has created in your Google Calendar. This includes adding event titles, start and end times, descriptions, attendees (like the client being booked), and meeting links.

    • We specifically request access to https://www.googleapis.com/auth/calendar.events (or similar write scopes) to create and manage calendar events on your behalf.

  • OAuth Client ID: Our requests for Google user data are associated with our specific Google Cloud project Client ID, which will be visible during the OAuth consent flow.

• Technical and Usage Information:

  • IP address, device type, operating system, browser type, and version.

  • Usage patterns within our platform, feature utilization, and performance metrics.

• Cookies and Similar Technologies: We may use cookies and similar tracking technologies to enhance your experience, remember your preferences, and gather usage analytics.

  
  

  3. How We Use Your Information

  
  

  Your information is used for the following purposes:

  • To Provide and Improve Our Services:

    • To operate, maintain, and enhance our AI voice calling system and scheduling features.

    • To enable our AI to understand voice commands, interact intelligently, and perform tasks as requested.

    • Specifically for Google Calendar Integration:

      • To access your calendar availability to find suitable times for appointments based on your instructions.

      • To automatically create, update, or manage calendar events in your Google Calendar as directed by you or initiated by our AI based on your settings.

      • The use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements. We will only use access to read, write, modify, or control Google Calendar data (and any other Google user data) to provide or improve user-facing features that are prominent in our application's user interface.

    • To personalize your experience and customize our Services.

    • To analyze usage, troubleshoot issues, and improve the performance, accuracy, and features of our AI and overall platform.

  • Communication:

    • To send you service-related communications, such as updates, security alerts, and administrative messages.

    • To respond to your inquiries, provide customer support, and gather feedback.

  • Security and Compliance:

    • To protect the security and integrity of our Services, prevent fraud, and enforce our terms.

    • To comply with applicable legal obligations, regulations, and lawful requests from authorities.

    • To ensure AI interactions adhere to relevant guidelines, including disclosure of AI participation where required.

      
      

    4. Legal Basis for Processing Personal Data (e.g., for GDPR compliance)

    
    

    We process your personal data based on the following legal grounds:

    • Consent: Where you have given explicit consent for us to process your personal data for one or more specific purposes (e.g., for Google Calendar integration, marketing communications, processing of voice recordings where consent is the required basis).

    • Contractual Necessity: Where processing is necessary for the performance of a contract to which you are a party (i.e., to provide you with our Services as described in our Terms of Service).

    • Legitimate Interests: Where processing is necessary for our legitimate interests (e.g., to improve our Services, for security purposes, for analytics), provided these interests are not overridden by your data protection rights.

    • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.

      
      

    5. Data Sharing and Disclosure

    
    

    We do not sell your personal information. We may share your information in the following limited circumstances:

    • Service Providers: With trusted third-party vendors, consultants, and other service providers who perform services on our behalf (e.g., cloud hosting, data analytics, communication services). These providers are contractually obligated to protect your data and use it only for the purposes for which it was disclosed.

    • Legal Requirements: If required by law, subpoena, court order, or other governmental request, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.

    • Business Transfers: In connection with any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information.

    • With Your Explicit Consent: We may share your information with other third parties if you provide explicit consent to do so.

      
      

    6. Data Security

    
    

    We implement robust technical and organizational security measures designed to protect your personal information from unauthorized access, use, alteration, disclosure, or destruction. These measures include:

    • Encryption: Data is encrypted in transit (using SSL/TLS) and at rest.

    • Access Controls: Strict access controls and authentication mechanisms are in place to limit access to personal data to authorized personnel and systems.

    • Regular Audits: We conduct regular security assessments and vulnerability testing.

    • Incident Response: We have procedures in place to respond to and mitigate the impact of any data security incidents.

    • Data Minimization: We collect and process only the data necessary for the stated purposes.

    While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure.

    
    

    7. User Rights and Choices

    
    

    Subject to applicable law, you have certain rights regarding your personal information:

    • Right to Access: You can request access to the personal information we hold about you.

    • Right to Rectification: You can request correction of inaccurate or incomplete data.

    • Right to Erasure (Deletion): You can request the deletion of your personal information, subject to certain legal or legitimate operational retention needs. This includes voice recordings and call data.

    • Right to Restrict Processing: You can request that we restrict the processing of your personal information under certain conditions.

    • Right to Data Portability: You can request a copy of your data in a structured, commonly used, and machine-readable format.

    • Right to Object: You can object to our processing of your personal information under certain conditions, particularly for direct marketing.

    • Right to Withdraw Consent: Where we rely on your consent for processing (e.g., Google Calendar integration), you can withdraw your consent at any time. For Google Calendar, you can revoke our access via your Google account security settings (https://myaccount.google.com/permissions). Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.

    • Managing Privacy Settings: You can review and manage privacy settings within your magic teams.AI account dashboard.

    To exercise these rights, please contact us using the details provided in the "Contact Us" section.

    
    

    8. Data Retention

    
    

    We retain your personal information for as long as your account is active or as needed to provide you with our Services. We will also retain and use your information as necessary to comply with our legal obligations, resolve disputes, enforce our agreements, and for legitimate business purposes (e.g., AI model improvement, where data is appropriately anonymized or aggregated if retained longer term). Voice recordings may be subject to specific retention schedules and automatic deletion policies.

    
    

    9. International Data Transfers

    
    

    Your information may be transferred to, stored, and processed in countries other than your country of residence, including India (where our company is based) and other locations where our servers or service providers are located. These countries may have data protection laws that are different from those in your country. We will take appropriate safeguards to ensure that your personal data remains protected in accordance with this Privacy Policy and applicable law, such as by using Standard Contractual Clauses where required.

    
    

    10. Children's Privacy

    
    

    Our Services are not directed to individuals under the age of 16 (or the relevant age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected personal information from a child, we will take steps to delete such information promptly.

    
    

    11. Compliance with Specific Regulations

    
    

    • GDPR (General Data Protection Regulation): If you are in the European Economic Area (EEA), UK, or Switzerland, we comply with GDPR requirements regarding your personal data.

    • CCPA (California Consumer Privacy Act): If you are a California resident, you may have additional rights. [Consider adding a specific CCPA addendum or integrating more detailed CCPA rights here if a significant portion of your user base is from California.]

    • AI and Calling Regulations: We strive to comply with relevant regulations concerning AI-powered communications and automated calling, including necessary disclosures.

    
    

    12. Changes to This Privacy Policy

    
    

    We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or services. We will post any changes on this page

    (https://magicteams.ai/privacy-policy) with an updated "Last Updated" date. For material changes, we will provide more prominent notice, such as by email or through a notification on our platform. We encourage you to review this Privacy Policy periodically.

    
    

    13. Contact Us

    
    

    If you have any questions, concerns, or requests regarding this Privacy Policy, your personal information, or our data practices, please contact us at: magic teams.AI

    Operated by Saphaare Labs Private Limited

    4-137/3, Opp of Sundaram Street, Ravulapalem, Andhra Pradesh, 533238

    Email: [email protected]

    Website: https://magicteams.ai/