Privacy policy

Last updated: April 5, 2026

This Privacy Policy explains how Flipper FZCO ("we", "us", "our") collects, uses, stores, and shares personal information when you use BUSY and related services.

Who We Are

FLIPPER FZCO
 Dubai Silicon Oasis
 P.O. Box 451495
 Dubai, UAE
Email: privacy@flipper.net

Scope

This policy applies to:

  • website https://busy.app/

  • the BUSY mobile app

  • related cloud services

  • related support, synchronization, account, and integration services

Summary

We collect information you provide directly, information generated by your use of the Services, and limited information from third-party providers you choose to use.

If you choose to sign in with Google, Apple, Microsoft, or another supported identity provider, we may receive profile and authentication information from that provider.

If you choose to connect Google Calendar, we may receive calendar data and related connection metadata needed to provide user-facing calendar functionality.

We do not sell personal information. We do not sell Google user data. We do not use Google user data for advertising. We do not use Google user data to train generalized AI or machine learning models.

Information We Collect

Information you provide directly

We may collect:

  • name

  • email address

  • username

  • password-derived authentication credentials

  • support requests and other communications you send to us

Information collected automatically

We may collect:

  • IP address

  • browser and device information

  • operating system information

  • application version and diagnostics

  • usage and log data

Information from third-party login providers

If you choose to sign in with Google, Apple, Microsoft, or another supported provider, we may receive:

  • profile identifier

  • name

  • email address

  • profile picture

  • authentication metadata needed to support login

Google Calendar data

If you choose to connect Google Calendar, we may receive:

  • calendar identifiers and metadata

  • event titles

  • event descriptions

  • event locations

  • event start and end times

  • attendee data

  • reminder settings

  • synchronization metadata such as sync tokens or webhook identifiers

  • OAuth tokens necessary to maintain the Google Calendar connection

Some event content may contain sensitive or personal information depending on what you choose to store in your calendar.

How We Use Information

We use personal information to:

  • create and manage accounts

  • authenticate users

  • support sign-in via email/password and third-party identity providers

  • connect and maintain third-party integrations such as Google Calendar

  • read, synchronize, display, and process connected calendar data

  • generate reminder, scheduling, synchronization, and related user-facing functionality

  • provide, operate, maintain, and improve the Services

  • communicate with you about support, service updates, and security matters

  • detect, prevent, and investigate abuse, fraud, and unauthorized access

  • comply with legal obligations

  • protect the vital interests of individuals where necessary

Google User Data

If you connect Google Calendar, we use Google user data only to provide user-facing functionality requested by you, such as:

  • authentication and account linking

  • event display

  • synchronization

  • reminder-related features

We do not access Gmail, Google Drive, or other Google services unless you explicitly authorize a separate feature requiring separate access.

BUSY's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Legal Bases for Processing

Where applicable law requires a legal basis, we rely on one or more of the following:

  • consent

  • performance of a contract with you

  • legitimate interests in operating, securing, and improving the Services

  • compliance with legal obligations

  • protection of vital interests

Sharing of Information

We may share information with:

  • hosting, infrastructure, analytics, monitoring, and support providers

  • professional advisers where reasonably necessary

  • legal or regulatory authorities where required by law or where necessary to protect rights, safety, or security

  • a successor entity in connection with a merger, sale, financing, or acquisition

We do not sell your personal information.

Cookies and Tracking Technologies

We may use cookies and similar technologies to:

  • maintain security

  • keep you signed in

  • save preferences

  • support core site and app functionality

  • understand usage patterns through analytics tools, subject to applicable law

Third-Party Logins and Connected Accounts

If you use a third-party identity provider, we receive only the information needed to authenticate you and support your account.

If you connect Google Calendar, we use the data received only for the purposes described in this policy and those made clear to you in the product.

We do not control how third-party providers process your information on their own systems. Please review their own privacy policies.

Data Retention

We keep personal information for as long as reasonably necessary to:

  • provide the Services

  • maintain your account

  • support connected integrations

  • meet legal, security, fraud prevention, enforcement, and backup obligations

When information is no longer needed, we delete it, anonymize it, or securely isolate it until deletion is feasible.

Security

We use reasonable technical and organizational safeguards to protect personal information.

Google OAuth tokens and similar third-party integration credentials are stored only on backend systems and are not exposed to the frontend as persistent credentials. We also apply access controls and restricted logging practices to reduce the risk of unauthorized disclosure.

No method of transmission or storage is 100% secure.

Your Privacy Rights

Depending on where you live, you may have rights to:

  • access personal information

  • correct inaccurate information

  • delete personal information

  • restrict certain processing

  • request portability where applicable

  • withdraw consent where processing is based on consent

If account settings are available, you may use them to review or update information. You may also contact us at privacy@flipper.net

If you have connected Google Calendar, you may revoke access from your Google account permissions settings and request deletion of associated connection data, subject to limited retention required for legal, security, fraud prevention, or backup purposes.

Do Not Track

Because there is currently no uniform legal or technical standard for recognizing Do Not Track signals, we do not respond to them at this time.

U.S. State Privacy Rights

Residents of certain U.S. states may have additional rights under applicable law.

We do not sell personal information. We do not share Google user data for advertising purposes.

To exercise applicable rights, contact us at privacy@flipper.net.

International Rights

If you are located in the EEA, UK, Switzerland, Canada, Australia, or another jurisdiction with applicable privacy laws, you may have additional rights under applicable law.

Updates to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the date above and may provide additional notice where appropriate.

Contact

If you have questions about this Privacy Policy or our privacy practices, contact:

FLIPPER FZCO
 Dubai Silicon Oasis
 P.O. Box 451495
 Dubai, UAE
privacy@flipper.net