Profound.ly
Terms of ServiceSign Up

Privacy Policy

Last updated: March 28, 2026

1. Introduction

Profound.ly ("we," "our," or "us") operates the Profound.ly Booking platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

2. Information We Collect

Account Information

When you create an account, we collect your name, email address, and a username that you choose for your booking URL.

Google Calendar Data

When you connect your Google Calendar, we access your calendar's free/busy information to determine available booking slots, and we create calendar events on your behalf when bookings are confirmed. We store encrypted OAuth tokens to maintain this connection. We do not read, store, or share the content of your calendar events beyond free/busy status.

Booking Information

When a client books a session, we collect their name and email address to facilitate the booking and send calendar invitations.

3. How We Use Your Information

  • To provide and maintain the Service, including scheduling and calendar integration
  • To create and manage your account
  • To generate available time slots based on your calendar and availability settings
  • To create Google Calendar events when bookings are confirmed
  • To send booking confirmations and calendar invitations to both parties
  • To display booking records in the admin dashboard

4. Google API Services User Data Policy

Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we:

  • Only request access to the Google Calendar scopes necessary for the Service to function
  • Use calendar free/busy data solely to determine available booking slots
  • Use calendar event creation solely to add confirmed bookings to your calendar
  • Do not sell, lease, or share your Google data with third parties
  • Do not use your Google data for advertising purposes
  • Store OAuth tokens securely and encrypted in our database

5. Data Storage and Security

Your data is stored securely using Supabase, which provides encryption at rest and in transit. Google OAuth tokens are stored encrypted and are never exposed to client-side code. We use industry-standard security measures to protect your personal information.

6. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share information only in the following circumstances:

  • With Google, as necessary to provide calendar integration (via Google Calendar API)
  • With booking participants (your name and the client's name/email are shared via calendar invitations)
  • If required by law or to protect our legal rights

7. Data Retention and Deletion

You may disconnect your Google Calendar at any time from your dashboard, which will remove your stored OAuth tokens. You may request deletion of your account and all associated data by contacting us at brian@profound.ly.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Disconnect your Google Calendar integration at any time
  • Revoke our access to your Google account via your Google Account permissions

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at brian@profound.ly.