Privacy Policy
Effective date: March 21, 2026
This Privacy Policy describes how CoffeeChat (“we,” “us,” or “our”) collects, uses, discloses, and protects information when you use our websites, applications, and related services (collectively, the “Services”). By using the Services, you agree to this Privacy Policy. If you do not agree, please do not use the Services.
1. Who we are
CoffeeChat provides scheduling and networking tools that help individuals share availability and arrange meetings (including coffee chats and one-on-one conversations). The data controller responsible for your personal information is the organization operating CoffeeChat. For privacy-related requests, see Contact us below.
2. Information we collect
We collect information in the following categories, depending on how you use the Services.
2.1 Information you provide
- Account data: such as name, email address, password or authentication credentials (stored using industry-standard hashing where applicable), and profile settings.
- Profile and booking data: such as public profile information (for example, bio, title, tags, languages, meeting preferences), availability, timezone, and messages or notes you choose to enter in the product.
- Communications: such as support requests or feedback you send to us.
2.2 Information collected automatically
- Usage data: such as pages or screens viewed, approximate timestamps, and interactions with features.
- Device and log data: such as browser type, operating system, IP address, and diagnostic logs used to secure and operate the Services.
- Cookies and similar technologies: we may use cookies, local storage, and similar technologies for authentication, preferences, security, and analytics. You can control cookies through your browser settings; disabling certain cookies may limit functionality.
2.3 Information from third parties
- Calendar providers: if you connect Google Calendar or another provider, we may receive calendar metadata, event availability, and tokens needed to sync scheduling features, in accordance with the permissions you grant.
- Sign-in providers: if you authenticate through a third party (for example, Google), we may receive basic profile information from that provider as permitted by your settings.
3. How we use information
We use personal information to:
- Provide, maintain, and improve the Services (including scheduling, profiles, notifications, and integrations).
- Authenticate users, prevent fraud and abuse, and protect the security of our systems.
- Communicate with you about the Services, including transactional messages and (where permitted) product updates.
- Comply with legal obligations and enforce our terms.
- Analyze usage in aggregate or de-identified form to understand product performance.
4. Legal bases (EEA, UK, and similar jurisdictions)
Where applicable privacy laws require a legal basis, we rely on one or more of the following:
- Contract: processing necessary to provide the Services you request.
- Legitimate interests: securing the Services, improving features, and supporting users, balanced against your rights.
- Consent: where we ask for consent (for example, certain cookies or marketing communications), you may withdraw consent at any time.
- Legal obligation: where we must process data to comply with the law.
5. How we share information
We do not sell your personal information. We may share information as follows:
- Service providers: vendors that assist us with hosting, analytics, email delivery, security, and similar functions, subject to contractual confidentiality and security obligations.
- Public profile features: information you choose to display on a public booking page may be visible to visitors who have the link.
- Meeting participants: when someone books time with you (or you book with another user), we may share limited information needed to coordinate the meeting (such as names, times, and messages you include in the booking flow).
- Legal and safety: when required by law, legal process, or to protect rights, safety, and security.
- Business transfers: in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate safeguards.
6. Data retention
We retain personal information for as long as necessary to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods may vary based on the type of data and how you use the product. When data is no longer needed, we delete or de-identify it in accordance with our internal policies, subject to legal requirements.
7. Security
We implement technical and organizational measures designed to protect personal information against unauthorized access, alteration, disclosure, or destruction. No method of transmission or storage is completely secure; we encourage you to use strong passwords and protect your account credentials.
8. International transfers
We may process information in countries other than where you live. Where required, we use appropriate safeguards (such as standard contractual clauses approved by regulators) for transfers of personal information across borders.
9. Your rights and choices
Depending on your location, you may have rights to:
- Access, correct, or update your personal information.
- Request deletion or restriction of certain processing.
- Object to processing based on legitimate interests.
- Data portability, where technically feasible.
- Withdraw consent where processing is based on consent.
- Lodge a complaint with a supervisory authority.
California residents may have additional rights under the CCPA/CPRA (such as the right to know, delete, and correct certain information, and to opt out of “sale” or “sharing” as defined by law). CoffeeChat does not sell personal information for monetary consideration. To exercise rights, contact us using the information below.
10. Children’s privacy
The Services are not directed to children under 13 (or the minimum age required in your jurisdiction), and we do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps to delete it.
11. Third-party services
The Services may link to or integrate with third-party websites and services (including calendar providers and authentication providers). Their collection and use of information is governed by their own privacy policies. We encourage you to review those policies before connecting accounts or sharing data.
12. Changes to this policy
We may update this Privacy Policy from time to time. We will post the updated version on this page and update the effective date. If changes are material, we will provide additional notice as required by law (for example, via email or an in-product message).
13. Contact us
If you have questions about this Privacy Policy or wish to exercise your privacy rights, contact us at privacy@coffeechat.click.