← slotiq

Privacy Policy

Last updated: February 2026

1. Who we are

Slotiq (slotiq.work) is an independent tool that helps professionals manage their Google Calendar availability automatically. It is operated by Enzo Santagata.

Contact: enzo.santagata@gmail.com

2. What data we collect

We collect only what is strictly necessary to provide the service:

  • Google account information — your email address and display name, provided via Google OAuth when you sign in.
  • Google Calendar access tokens — OAuth tokens that allow Slotiq to read and write events on your calendar on your behalf. These are encrypted and stored in our database.
  • Calendar events — we read your existing events to find free slots, and we create/delete [BOOKABLE] events. We do not store the content of your events.
  • Configuration data — your preferences (working hours, buffer times, meeting types) that you set in the app settings.

We do not collect: payment information, location data, device identifiers, or any data beyond what is listed above.

3. How we use your data

  • To authenticate you and maintain your session.
  • To access your Google Calendar and create/delete bookable slots according to your rules.
  • To store your preferences and apply them to future planner runs.

We do not use your data for advertising, profiling, or any purpose other than providing the service you signed up for.

4. Third-party services

Slotiq uses the following third-party services:

  • Google OAuth 2.0 and Google Calendar API — for authentication and calendar management. Your use of Google services is subject to Google's Privacy Policy.
  • Supabase — used as our database and authentication infrastructure. Data is stored on Supabase servers (EU region). See Supabase's Privacy Policy.
  • Vercel — hosts the frontend of Slotiq. See Vercel's Privacy Policy.
  • Google Cloud Run — hosts the Slotiq backend API.

5. Cookies and local storage

Slotiq uses:

  • Authentication cookies — set by Supabase to maintain your login session. These are essential for the service to function.
  • Local storage — used to store your session token and UI preferences (e.g., cookie consent).

We do not use advertising cookies, tracking pixels, or third-party analytics cookies.

6. Data retention

Your data is retained for as long as your account is active. You can delete your account and all associated data at any time by contacting us at enzo.santagata@gmail.com.

Google Calendar tokens can also be revoked at any time from your Google Account settings under "Third-party apps with account access".

7. Your rights (GDPR)

If you are located in the European Economic Area, you have the right to:

  • Access the personal data we hold about you.
  • Correct inaccurate data.
  • Request deletion of your data ("right to be forgotten").
  • Object to or restrict processing of your data.
  • Data portability — receive your data in a machine-readable format.

To exercise any of these rights, contact us at enzo.santagata@gmail.com. We will respond within 30 days.

8. Data security

We take reasonable technical measures to protect your data, including encryption of OAuth tokens at rest and HTTPS for all data in transit. However, no system is 100% secure and we cannot guarantee absolute security.

9. Changes to this policy

We may update this policy from time to time. We will notify you of significant changes by updating the date at the top of this page. Continued use of Slotiq after changes constitutes acceptance of the updated policy.

10. Contact

For any privacy-related questions or requests, contact: enzo.santagata@gmail.com

← Back to Slotiq