1. Introduction
Morrow ("we," "our," or "us") provides an AI-powered meeting preparation assistant that helps professionals prepare for upcoming meetings. This Privacy Statement explains how we collect, use, disclose, and safeguard your information when you use our service.
2. Information We Collect
2.1 Information You Provide
- Account information (name, email address)
- Calendar authentication credentials (OAuth tokens)
- Focus areas and goals you create
- Notes and reflections you add to meetings
2.2 Information We Access from Third Parties
- Google Calendar / Microsoft Outlook: Calendar events (title, time, attendees, location)
- We only access calendar data - we do NOT access your emails, files, or other content
- Calendar data is synced periodically to keep meeting information current
2.3 Automatically Collected Information
- Usage data (features used, pages visited)
- Device and browser information
- IP address and session data
3. How We Use Your Information
We use your information to:
- Provide meeting preparation briefs and insights
- Sync your calendar data to show upcoming meetings
- Generate AI-powered suggestions and analysis
- Track your focus areas and progress
- Improve our service and develop new features
- Communicate with you about your account
4. AI Processing
We use Anthropic's Claude AI to analyze your calendar data and generate meeting briefs. When we send data to Anthropic:
- Data is transmitted securely via encrypted connections
- Anthropic does not train models on your data
- Data is not retained by Anthropic beyond the immediate processing
- See Anthropic's privacy policy at: https://www.anthropic.com/privacy
5. Data Security
We implement appropriate technical and organizational measures to protect your data:
- Data encrypted in transit (TLS/SSL) and at rest (AES-256)
- Secure database hosting with Render.com (SOC 2 Type II certified)
- Application hosting with Vercel (SOC 2 Type II certified)
- OAuth 2.0 authentication with automatic token refresh
- Regular security updates and monitoring
6. Data Sharing and Disclosure
We do NOT sell your personal information. We may share data with:
- Service Providers: Anthropic (AI processing), Render (database), Vercel (hosting)
- Legal Requirements: When required by law or to protect rights and safety
- Business Transfers: In connection with a merger, acquisition, or sale of assets
All service providers are contractually obligated to protect your data and use it only for providing services to us.
7. Your Rights and Choices
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update or correct your information
- Deletion: Request deletion of your account and all associated data
- Export: Download your data in a portable format
- Revoke Access: Disconnect calendar access at any time
To exercise these rights, contact us at privacy@morrow.app or use the account settings in the application.
8. Data Retention
We retain your data for as long as your account is active or as needed to provide services. When you delete your account:
- All personal data is permanently deleted within 30 days
- Calendar access tokens are immediately revoked
- Backups are purged within 90 days
9. International Data Transfers
Your data may be transferred to and processed in the United States and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers.
10. Children's Privacy
Morrow is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe we have collected such information, please contact us immediately.
11. Changes to This Privacy Statement
We may update this Privacy Statement from time to time. We will notify you of material changes by email or through the application. Continued use after changes constitutes acceptance of the updated statement.
12. Contact Us
If you have questions about this Privacy Statement or our data practices, contact us:
- Email: privacy@morrow.app
- Support: support@morrow.app
13. For IT Administrators
If you are reviewing this application for enterprise deployment, please see our IT Administrator Guide for technical details about permissions, security, and admin consent.