Privacy Policy
Effective date: June 10, 2026
Last updated: June 10, 2026
Crono is an AI scheduling assistant for professionals and teams. This policy explains what personal data we collect, why we collect it, and how you can exercise your rights.
The data controller is Crono AI Inc., a Delaware corporation ("Crono," "we," "our," or "us"). Our registered mailing address is available on request. For privacy questions, write to privacy@cronohq.com.
This policy is published in English. Translations may be provided for convenience, but the English version governs in the event of any conflict.
1. Data we collect
Account data. When you register, we collect your name, work email address, and a hashed password. If you sign in through Google or Microsoft, we receive your name and email from that provider.
Calendar data. When you connect a Google or Microsoft calendar, we access your calendar events, availability, and meeting details. We use this information to schedule meetings on your behalf. We request only the permissions necessary for this purpose.
Email content. Crono operates through email. When a scheduling request is sent to your Crono address, we receive and process the email to take scheduling actions. This may include names, email addresses, and the subject matter of meeting requests.
Contact information. We store the names and email addresses of people you schedule meetings with, to the extent these appear in calendar events or scheduling threads.
Preferences. We store the scheduling preferences and rules you configure, such as available hours, meeting types, and buffer times.
Usage data. We collect standard usage information: features used, session duration, browser and device type, and IP address. We use this to maintain and improve the service.
Support communications. If you contact our support team, we retain those communications.
Payment data. Payment card details are handled directly by Stripe and are not stored on our systems. We retain your subscription status and billing history.
2. How we use your data
We use your data to:
- Provide the scheduling service you have signed up for
- Act on scheduling requests sent to your Crono address
- Send transactional emails such as confirmations, reminders, and account notices
- Detect and prevent fraud, abuse, and security incidents
- Understand how the service is used and improve it
- Comply with legal obligations
We do not sell your personal data. We do not use your calendar or email data to train AI models.
Google API data. Crono's use of data received from Google APIs — including the calendar.events, openid, and userinfo.email scopes — complies with the Google API Services User Data Policy, including the Limited Use requirements. We do not use Google user data for advertising, and we do not transfer it to third parties except as necessary to provide the service.
3. Legal basis for processing (EEA and UK)
| Purpose | Legal basis |
|---|---|
| Providing the service | Performance of contract (Art. 6(1)(b) GDPR) |
| Security and fraud prevention | Legitimate interests (Art. 6(1)(f) GDPR) |
| Product analytics | Legitimate interests (Art. 6(1)(f) GDPR) |
| Marketing communications | Consent (Art. 6(1)(a) GDPR) |
| Legal compliance | Legal obligation (Art. 6(1)(c) GDPR) |
4. Sharing your data
We share data only as follows:
Subprocessors. We use third-party services to operate Crono. See our Subprocessors page for the full list. Each subprocessor is bound by a data processing agreement.
Legal requirements. We may disclose data if required by law, court order, or government authority, or to protect the rights and safety of our users or others.
Business transfers. If Crono is acquired or merged with another entity, your data may transfer as part of that transaction. We will notify you before this happens.
We do not share your data with advertisers or data brokers.
5. International data transfers
Crono and most of our subprocessors are based in the United States. If you are located in the EEA or UK, your data is transferred to the US under the EU-US Data Privacy Framework, Standard Contractual Clauses, or equivalent safeguards.
EEA/UK representative: An EEA/UK representative will be appointed before Crono is marketed in the EEA or UK.
6. Data retention
We retain your data for as long as your account is active. When you delete your account, we delete your personal data within 30 days, except where we are required to keep it longer for legal or regulatory reasons. You can export your data at any time before deletion.
7. Your rights
Depending on where you live, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate data
- Delete your data
- Export your data in a portable format
- Restrict or object to certain processing
- Withdraw consent at any time, where processing is based on consent
To exercise any of these rights, email privacy@cronohq.com. We will respond within 30 days.
If you are in the EEA, you have the right to lodge a complaint with your local data protection authority.
8. Cookies
We use cookies and similar technologies to keep you signed in and to understand how the service is used. You can manage cookie preferences through your browser settings or our cookie consent tool.
9. Children
Crono is a business tool for professionals aged 18 and older. We do not knowingly collect data from anyone under 16.
10. Changes to this policy
We will notify you by email or in-app notice at least 30 days before any material changes take effect. The "last updated" date at the top of this page reflects the most recent revision.
11. Contact
privacy@cronohq.com
Crono AI Inc., registered mailing address available on request