Privacy Policy
This Privacy Policy describes how Kyo ("we", "us", or "our"), operated by Agencidev, collects, uses, and protects information when you use our workspace management application available at app.trykyo.com.
1. Information We Collect
We collect information you provide directly when you create an account or use the application:
- Name and email address
- Workspace and team data you enter (tasks, projects, deals, contacts, notes)
- Profile avatar (if uploaded)
We also collect certain information automatically:
- Authentication session tokens stored locally in your browser
- Basic usage data for error diagnostics
2. Google API Services
When you choose to connect your Google account, Kyo requests the following OAuth scopes:
- drive.readonly — to list and display your Google Drive files on the Canvas page
- documents.readonly — to list and display your Google Docs on the Canvas page
- userinfo.email — to record which Google account is connected to your workspace
This data is used solely to display your Drive files and Docs within the Kyo Canvas interface so you can open them in a new tab. We do not read, download, modify, or analyse the contents of your files.
We do not share Google user data with any third parties. Google access tokens are stored securely in our database and are only used to make API requests on your behalf within the application.
You can disconnect your Google account at any time from the Apps page inside Kyo. Disconnecting immediately removes your stored tokens from our database. You can also revoke access directly from your Google Account permissions page.
3. Third-Party Integrations
Kyo supports optional integrations with the following third-party services. All integrations are opt-in and can be disconnected at any time from the Apps page:
- Slack — a bot token is stored to send direct message notifications when tasks are assigned. We do not read Slack messages.
- Miro — an access token is stored to list and display your Miro boards on the Canvas page. We do not modify boards.
- Zapier — a webhook URL you provide is stored to trigger Zaps when automations fire.
Credentials for these integrations are stored securely in our database, scoped to your workspace, and used only to make authorised API calls on your behalf.
4. Data Storage and Security
All application data is stored in Supabase (PostgreSQL), hosted on infrastructure in the European Union. We use encrypted connections (HTTPS/TLS) for all data in transit. Access tokens for third-party integrations are stored at rest and accessible only to authenticated workspace admins.
We do not sell your data. We do not use your data for advertising.
5. Data Retention and Deletion
Your data is retained for as long as your workspace is active. You may request deletion of your account and all associated data at any time by contacting us at info@agencidev.com. Deletion requests are processed within 30 days.
6. Cookies and Local Storage
Kyo stores your authentication session in browser localStorage to keep you signed in. We do not use tracking cookies or third-party analytics.
7. Children's Privacy
Kyo is not directed at children under 13. We do not knowingly collect personal information from children under 13.
8. Changes to This Policy
We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page will reflect any changes. Continued use of Kyo after changes are posted constitutes acceptance of the revised policy.
9. Contact
If you have any questions about this Privacy Policy or how we handle your data, please contact us:
Agencidev
Email: info@agencidev.com
App: app.trykyo.com