This Privacy Policy explains how Veora collects, accesses, uses, stores, shares, and protects information when you use our website, software, applications, integrations, AI agents, and related services (the "Service").

1. Scope

This Privacy Policy applies to information processed by Veora in connection with the Service, including information from connected Google Workspace accounts, Gmail, Google Calendar, Google Drive, Google Docs, Google Sheets, Google Slides, CRM systems, messaging tools, and other services authorized by users or their organizations.

2. Information We Process

Depending on your configuration, permissions, and use of the Service, Veora may process:

Account information, such as name, business email address, organization, role, settings, authentication status, and integration configuration;

Gmail messages, threads, labels, headers, recipients, timestamps, attachments where authorized, and related metadata;

Google Calendar events, attendees, descriptions, times, locations, conferencing details, and related metadata;

Google Drive files, folders, permissions, metadata, and file content where authorized;

Google Docs, Sheets, and Slides content created, selected, updated, or authorized by the user;

CRM, messaging, sales workflow, customer relationship, and business process information connected to the Service;

Prompts, instructions, workflow rules, generated outputs, user approvals, and actions performed through the Service;

Security, audit, device, usage, log, diagnostic, and support information.

3. How We Use Information

Veora uses information to:

Provide, operate, maintain, and secure the Service;

Connect to authorized Google Workspace and other third-party services;

Read relevant communication, calendar, document, and workflow context requested by the user;

Prepare account briefs, meeting briefs, call notes, workflow summaries, follow-up suggestions, and recommendations;

Create, update, organize, and manage user-requested Google Docs, Sheets, Slides, Drive files, and other business materials;

Draft, prepare, organize, and send communications when requested or explicitly approved by the user or configured by the user's organization;

Schedule, update, and manage calendar events requested by the user;

Provide customer support, troubleshoot issues, detect abuse, protect security, and maintain audit logs;

Improve reliability, usability, performance, and security of the Service, subject to the restrictions in this Privacy Policy.

4. Google User Data

If you connect Google services, Veora may access Google user data that you authorize through Google OAuth permissions. This may include Gmail, Google Calendar, Google Drive, Google Docs, Google Sheets, Google Slides, and related metadata, depending on the scopes authorized by the user or organization.

Veora uses Google user data solely to provide user-requested and user-facing functionality, including reading relevant context, preparing briefs and notes, generating follow-up drafts, creating calendar events, creating or updating documents, organizing Drive materials, and supporting user-approved sales and workflow operations.

Veora does not:

Sell Google user data;

Use Google user data for advertising purposes;

Build advertising profiles using Google user data;

Transfer Google user data to third parties except as necessary to provide or secure the Service, comply with law, or act at the user's direction;

Use Google user data to train generalized artificial intelligence or machine learning models.

Veora's use and transfer of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.

5. Gmail Data

Where authorized, Veora may read Gmail messages, threads, labels, and metadata to identify relevant business context for user-requested workflows, such as meeting preparation, account briefs, follow-up recommendations, and response drafting.

Where authorized, Veora may draft, create, modify, or send emails only when requested by the user, explicitly approved by the user, or configured by the user's organization as part of an approved workflow. Veora does not send emails automatically unless the user or organization has enabled such workflow and permissions.

6. Google Calendar Data

Where authorized, Veora may read Google Calendar events and metadata to understand meeting context, upcoming meetings, attendees, agenda items, and scheduling needs. Veora may create or update calendar events when requested by the user or configured by the user's organization.

7. Google Drive, Docs, Sheets, and Slides Data

Where authorized, Veora may access, create, update, organize, and manage Google Drive files and Google Docs, Sheets, and Slides content to provide user-requested functionality. Examples include creating meeting notes, proposal drafts, pipeline trackers, account plans, call summaries, presentations, and workflow documents.

8. AI Processing

Veora uses artificial intelligence technologies, including large language models and related processing systems, to generate drafts, summaries, recommendations, workflow actions, notes, and other outputs.

Customer content, including Google Workspace data, is processed only as necessary to provide requested functionality, maintain security, troubleshoot, and support the Service. Veora does not use Google Workspace data to train generalized AI or machine learning models.

AI outputs may be inaccurate or incomplete. Users are responsible for reviewing outputs before relying on them or sending them externally.

9. Sharing and Subprocessors

Veora may share information with trusted service providers and subprocessors that help operate, host, secure, monitor, support, and improve the Service. These may include cloud infrastructure providers, database providers, authentication providers, AI model providers, monitoring and logging providers, analytics providers, email providers, and customer support tools.

Veora requires subprocessors to process information only as necessary to provide services to Veora and subject to appropriate confidentiality and security obligations.

Veora may also disclose information when required by law, to protect rights and security, in connection with a corporate transaction, or at the direction of the user or organization.

10. Data Retention

Veora retains information only for as long as necessary to provide the Service, maintain account functionality, comply with legal or contractual obligations, resolve disputes, enforce agreements, protect security, maintain audit logs, and support backups and business continuity.

Retention periods may vary depending on the type of data, account settings, customer configuration, legal requirements, and operational needs.

11. Data Deletion and Revocation

Users may revoke Google Workspace access at any time through their Google Account permissions, through Service settings where available, or by contacting Veora.

Users may request deletion of account data and connected Google Workspace data by contacting Veora at the email address below. Deletion requests are subject to legal, security, backup, audit, dispute resolution, and operational requirements.

When Google access is revoked, Veora will stop accessing new Google user data through that connection. Certain previously processed data may remain for a limited period where necessary to provide the Service, maintain security, comply with law, or complete deletion and backup cycles.

12. Security

Veora maintains administrative, technical, and organizational safeguards designed to protect information. Security measures may include:

Encryption in transit;

Encryption at rest where appropriate;

Role-based access controls;

Authentication and authorization controls;

Least-privilege access principles;

Audit logging and monitoring;

Incident response processes;

Vendor and subprocessor review;

Security policies and procedures aligned with SOC 2 principles.

No method of transmission or storage is completely secure. Veora cannot guarantee absolute security.

13. Human Access to Customer Data

Veora limits human access to Customer Data to personnel or authorized service providers who need access to operate, secure, support, troubleshoot, or improve the Service; comply with law; investigate abuse; or respond to user requests. Access is limited by role and subject to confidentiality and security obligations.

14. Your Rights and Choices

Subject to applicable law and account configuration, you may have rights to:

Access information associated with your account;

Correct inaccurate information;

Request deletion of information;

Export information where available;

Disconnect integrations;

Revoke Google permissions;

Object to or restrict certain processing where applicable.

Requests may be submitted using the contact information below. If your account is managed by an organization, Veora may refer your request to that organization or require authorization from the organization administrator.

15. International Data Transfers

Information may be processed in the United States and other jurisdictions where Veora or its service providers operate. Veora takes reasonable steps to protect information during international processing and transfers in accordance with applicable law.

16. California Privacy Rights

California residents may have rights under applicable California privacy laws, including rights to know, access, correct, delete, and limit certain uses of personal information. Veora does not sell personal information and does not use Google user data for advertising purposes.

17. Children

The Service is intended for business use and is not directed to children. Veora does not knowingly collect personal information from children under 13.

18. Changes to this Privacy Policy

Veora may update this Privacy Policy from time to time. Updated versions will be posted with a revised effective date. Continued use of the Service after an updated Privacy Policy becomes effective means that information will be processed as described in the updated policy.

19. Contact

Veora, Inc.

2810 North Church Street

Wilmington, DE 19802

United States

Email: alex@veora.io