Privacy Policy

Effective date: 12 April 2026

Paige ("Paige", "we", "us", or "our") is operated by Sarge's Solutions, registered in Singapore. This Privacy Policy explains how we collect, use, store, and share your information when you use our website at paigebuddy.com, our Telegram bot, and related services (collectively, the "Service").

By using the Service, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use the Service.

1. Information We Collect

1.1 Account Information

When you sign up, we collect your name and email address through our authentication provider (Clerk). If you sign in with Google, we receive your Google account email and profile information as authorised by your Google account settings.

1.2 Google Calendar Data

When you connect a Google Calendar account, we request the following OAuth scopes:

  • calendar.readonly — to read your calendar events
  • calendar.events — to create, modify, and delete events on your behalf
  • calendar.freebusy — to check your availability
  • userinfo.email — to identify your Google account

We do not store your Google Calendar data in our own databases. Calendar event data (including event titles, descriptions, times, locations, and attendee information) is fetched on-demand from Google's API each time you make a scheduling request and is used solely to generate a response. Calendar data may appear within conversation history (see section 1.4) as part of the assistant's responses, and is subject to the same 30-day automatic deletion policy.

We do not sell, rent, or share your Google Calendar data with any third party for advertising, marketing, or any purpose unrelated to providing the Service.

1.3 Telegram Data

When you interact with our Telegram bot, we receive and store your Telegram chat ID, username, and display name. We also process the content of messages you send to the bot in order to respond to your requests.

1.4 Conversation Data

We store conversations between you and the Paige assistant to maintain context within a session and to improve the quality of responses. This includes text messages and any images you send (such as screenshots of scheduling requests). Images are processed to extract text but are not stored long-term.

1.5 User Preferences and Profile

Over time, Paige builds a profile of your scheduling preferences and interaction patterns (such as preferred meeting times or communication style) to personalise the Service. This profile is derived from your conversations and is stored separately from raw message history.

1.6 Payment Information

If you subscribe to a paid plan, payment processing is handled entirely by Stripe. We do not receive or store your credit card number or full payment details. We store only your Stripe customer identifier and subscription status to manage your plan.

1.7 Guest and Visitor Data

If a Paige user grants you guest access to their bot, we collect your Telegram chat ID, username, display name, and any email address you provide. Guests can only see the calendar owner's free/busy status or event details depending on the access level the owner has granted.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain the Service, including reading and writing to your Google Calendar, answering scheduling queries, and managing meeting requests
  • Personalise your experience by learning your scheduling preferences over time
  • Process payments and manage your subscription
  • Send you service-related notifications (such as daily briefings and event reminders via Telegram)
  • Monitor and improve the reliability and performance of the Service
  • Comply with legal obligations

3. Third-Party Service Providers

We use the following categories of third-party service providers to operate the Service. These providers process your data only as necessary to perform their functions and are bound by their own privacy policies:

3.1 AI and Language Model Providers

To generate intelligent responses, your conversation content is sent to third-party AI language model providers. Because calendar data is fetched in real time to answer your queries, it may be included in the conversation context sent to these providers. These providers process the data solely to generate responses and do not use your data to train their models. We select providers based on their privacy and security practices and may change providers from time to time.

3.2 Infrastructure and Hosting

The Service is hosted on Cloudflare. Your data is processed and stored on Cloudflare's infrastructure, including their Workers and Durable Objects platforms.

3.3 Authentication

We use Clerk for user authentication and session management. Clerk processes your email address, name, and authentication credentials.

3.4 Payment Processing

We use Stripe to process payments. When you subscribe to a paid plan, your payment information is collected and processed directly by Stripe in accordance with Stripe's Privacy Policy.

3.5 Analytics and Monitoring

We use LangFuse to monitor the performance and reliability of our AI assistant. Conversation data (including messages and responses) may be sent to LangFuse for operational monitoring and debugging purposes.

4. Data Retention

  • Google Calendar data is not stored independently. It is fetched on-demand from Google and only persists as part of conversation history, which is automatically deleted after 30 days.
  • Conversation history is automatically deleted after 30 days.
  • User preferences and profile data are retained for as long as your account is active.
  • Google OAuth tokens are stored in encrypted form (AES-256-GCM) for as long as the Google account remains connected. You may disconnect a Google account at any time through the dashboard, which deletes the associated tokens.
  • Meeting requests are retained for as long as your account is active.
  • Guest records are retained until the account owner removes the guest.

5. Data Security

We take reasonable measures to protect your information, including:

  • Encrypting Google OAuth tokens at rest using AES-256-GCM authenticated encryption
  • Transmitting all data over HTTPS/TLS
  • Verifying webhook signatures for incoming requests from Telegram and Stripe
  • Storing secrets (API keys, encryption keys) in Cloudflare's secrets management system, separate from application code

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Your Rights and Choices

6.1 Access and Deletion

You may request access to, correction of, or deletion of your personal data by contacting us at contact@paigebuddy.com. We will respond to your request within 30 days.

6.2 Revoking Google Calendar Access

You may disconnect any Google Calendar account at any time through the Paige dashboard. You may also revoke Paige's access directly from your Google Account permissions page. Upon revocation, we will delete the associated OAuth tokens. Note that events already created by Paige on your calendar will remain on your Google Calendar.

6.3 Deleting Your Account

To delete your account and all associated data, please contact us at contact@paigebuddy.com. Upon account deletion, we will remove your personal data, Google account connections, conversation history, preferences profile, guest records, and meeting requests.

7. Google API Services User Data Policy

Paige's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We only use Google user data to provide and improve the Service's calendar-related features.
  • We do not use Google user data for advertising or to serve ads.
  • We do not sell Google user data to third parties.
  • We do not use Google user data to determine creditworthiness or for lending purposes.
  • Access to Google user data is limited to the practices and purposes disclosed in this Privacy Policy.

8. Children's Privacy

The Service is not intended for use by anyone under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information.

9. International Data Transfers

Sarge's Solutions is based in Singapore. Your data may be processed and stored in locations outside your country of residence, including in jurisdictions where our infrastructure and service providers operate. By using the Service, you consent to the transfer of your data to these locations.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by posting the updated policy on this page and updating the effective date. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us at:

Sarge's Solutions
Email: contact@paigebuddy.com