Privacy Policy

Introduction

SoftImply OU ("we", "us", "our"), a company registered in the Republic of Estonia, operates narada.live ("Service"). This Privacy Policy explains how we collect, use, share, and protect personal data when you use the Service, including when you book meetings or upload files through our booking forms.

Data We Collect

We collect different types of data depending on how you interact with the Service:

From registered users (organizers)

• Account data: name, email address, profile photo, organization details.
• Scheduling data: availability, event types, booking preferences, meeting details.
• Calendar data: event titles, times, attendees, and metadata from connected calendars.
• Communications: messages, support requests, and feedback you send us.
• Usage data: logs, device/browser information, pages viewed, and actions taken.
• Billing data: plan tier (Free, Standard, Team), payment status, and invoices (processed by our payment providers).

From meeting attendees (booking visitors)

• Booking data: your name, email address, timezone, and any notes you provide when booking a meeting.
• Custom form responses: answers to custom questions configured by the meeting organizer, which may include text, dates, selections, links, and other information.
• Uploaded files: documents and files you upload through booking forms, such as resumes, portfolios, or other materials requested by the organizer. Files are stored securely on Microsoft Azure cloud infrastructure.

How We Use Data

We process personal data to operate and improve the Service, including:

• Creating, managing, and fulfilling meeting bookings.
• Calendar syncing and availability calculations.
• Delivering uploaded files and form responses to the meeting organizer.
• Sending booking confirmations, reminders, and notifications.
• Account management and customer support.
• Fraud prevention, security, and abuse detection.
• Analytics and product improvement.

Legal Bases (EEA/UK)

We process personal data on the following legal bases under the GDPR:

• Consent: When you submit a booking form and check the consent box, you consent to the processing of your personal data including any uploaded files.
• Contract performance: Processing necessary to provide the scheduling service.
• Legitimate interests: Service security, fraud prevention, and product improvement.
• Legal obligations: Compliance with applicable laws and regulations.

File Uploads

When booking forms include file upload fields, any files you upload are:

• Stored securely on Microsoft Azure Blob Storage infrastructure.
• Associated with the specific meeting booking for which they were uploaded.
• Accessible to the meeting organizer through their dashboard.
• Subject to a maximum file size of 10MB per file.
• Limited to the following formats: PDF, JPEG, PNG, WebP, Word documents (.doc, .docx), and plain text (.txt).

You can request deletion of your uploaded files at any time by contacting us or the meeting organizer.

Sharing & Third Parties

We share data with service providers that help us operate the Service:

• Calendar providers: Google Calendar, Microsoft Outlook for calendar syncing.
• Conferencing: Zoom for creating meeting links.
• Cloud infrastructure: Microsoft Azure for hosting, data storage, and file storage.
• Email delivery: Azure Communication Services for sending notifications.
• Payments: Stripe for subscription billing.
• Analytics: Amplitude for product analytics.

We require these providers to protect your data and use it only for the services they provide to us. Your booking data and uploaded files are shared with the meeting organizer as necessary to fulfill the booking.

Data Retention

We retain personal data for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Meeting data and associated files are retained for the duration of the organizer's account. When an account is deleted, associated meeting data and files are removed within a reasonable timeframe.

Security

We implement reasonable technical and organizational measures to protect data, including encryption in transit (TLS/HTTPS), secure cloud storage, and access controls. However, no system is completely secure; we cannot guarantee absolute security.

Your Rights

Depending on your location (particularly in the EEA/UK under GDPR), you have the following rights:

• Access: Request a copy of the personal data we hold about you.
• Rectification: Request correction of inaccurate data.
• Erasure: Request deletion of your personal data, including uploaded files.
• Portability: Receive your data in a structured, commonly used format.
• Restriction: Request limitation of processing.
• Objection: Object to processing based on legitimate interests.
• Withdraw consent: Withdraw your consent at any time where processing is based on consent.

To exercise these rights, contact us at the email address below.

International Transfers

Data may be stored and processed in countries other than your own, including in Microsoft Azure data centers in the European Union. We take steps to ensure appropriate safeguards for international transfers where required, including standard contractual clauses.

Cookies & Analytics

We use cookies and similar technologies to operate the Service, remember preferences, and understand usage. We use Amplitude for product analytics. You can control cookies through your browser settings.

Children

The Service is not intended for children under 16, and we do not knowingly collect data from children under 16. If we learn that we have collected data from a child under 16, we will delete it promptly.

Changes

We may update this policy. We will post changes and update the "Last updated" date. If changes are significant, we will notify registered users by email.

Contact

Questions about data protection? Contact SoftImply OU at privacy@softimply.com.

SoftImply OU
Republic of Estonia