Privacy policy

Last updated: Septempber 2025

Privacy Policy

Last Updated: January 9, 2026

At Advicly, we are committed to protecting your professional data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our platform.

1. Information We Collect

  • Account Information: Email, name, and profile picture provided via Google or Microsoft OAuth.

  • Calendar Data: To provide meeting summaries, we access your calendar events, attendee lists, and meeting descriptions.

  • Meeting Content: We process audio/video recordings, transcripts, and AI-generated summaries of your meetings.

  • Client Management Data: Information you manually enter about your clients, including business types, todos, and pipeline stages.

  • Payment Data: Handled securely by Stripe. We do not store credit card numbers on our servers.

2. How We Use Your Data

  • To synchronize your professional calendar and identify relevant meetings.

  • To generate AI-driven summaries, action items, and transcripts using OpenAI.

  • To facilitate client management and business tracking.

  • To process subscriptions and prevent fraud.

3. Google OAuth Scopes & Data Usage

Advicly requests the following scopes to function:

  • openid/auth.userinfo: To create and manage your account.

  • calendar / calendar.events: To read your schedule, identify meetings to record, and write follow-up notes back to your calendar.

  • Note: We do not sell your calendar data or use it for advertising. It is used strictly to provide the Advicly automation service.

4. Third-Party Processors (Sub-processors)

We share data with the following partners to provide our service:

  • Supabase: Database and authentication hosting.

  • OpenAI: AI analysis of transcripts (Data is retained for 30 days for abuse monitoring).

  • Recall.ai: Meeting recording and transcription services.

  • Stripe: Secure payment processing.

  • Google/Microsoft: Calendar synchronization.

5. Data Security

We implement industry-standard security, including:

  • Encryption: Data is encrypted in transit (TLS 1.3) and at rest (AES-256).

  • Row-Level Security (RLS): Our database is architected so that your data is only accessible to your authenticated account.

6. Your Rights & Data Deletion

Under GDPR and CCPA, you have the right to access or delete your data.

  • Deletion: You may request account deletion by contacting support. Upon deletion, your records are removed from our active database. Please note that some financial records may be retained by Stripe for legal/tax compliance.

7. Contact Us

For privacy-related inquiries, please contact: contact@advicly.co.uk