Skip to content

Privacy Policy

Last updated: February 19, 2026

1. Introduction

ActionTree (“we”, “our”, or “us”) operates the actiontree.app website and platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.

2. Information We Collect

Account Information

When you create an account, we collect your email address, name, and password. If you sign up via a third-party provider (e.g., Google), we receive your name, email, and profile picture from that provider.

Connected Services

When you connect third-party services (e.g., Google Calendar, Google Sheets), we store encrypted OAuth tokens to access those services on your behalf. We only request the minimum scopes necessary for the features you enable.

Conversation Data

When visitors interact with your ActionTree pages, we process conversation messages to provide AI-powered responses. Conversation content may be sent to third-party AI providers (e.g., Anthropic) for processing.

Usage Data

We automatically collect information about how you interact with our service, including page views, clicks, device type, browser type, and IP address.

3. How We Use Your Information

  • To provide, maintain, and improve our service
  • To process AI-powered conversations on your behalf
  • To execute connected service actions (calendar bookings, spreadsheet updates)
  • To send transactional emails (account verification, notifications)
  • To analyze usage patterns and improve the platform
  • To detect, prevent, and address technical issues or abuse

4. Data Sharing

We do not sell your personal information. We share data only with:

  • AI Providers — Conversation content is sent to AI model providers (e.g., Anthropic) to generate responses.
  • Connected Services — Data is sent to third-party services you explicitly connect (e.g., Google Calendar, Google Sheets).
  • Infrastructure Providers — We use Vercel (hosting), Supabase (database), and SendGrid (email) to operate the service.
  • Legal Requirements — We may disclose information if required by law or to protect our rights.

5. Data Security

We implement industry-standard security measures. OAuth tokens are encrypted with AES-256-GCM before storage. Data is transmitted over HTTPS. Database access is controlled via row-level security policies. However, no method of electronic transmission or storage is 100% secure.

6. Data Retention

We retain your account data for as long as your account is active. Conversation data may be retained to provide conversation history and analytics. You may request deletion of your data at any time by contacting us.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Export your data in a portable format
  • Disconnect third-party services at any time from your dashboard

8. Cookies

We use essential cookies to maintain your authentication session. We do not use third-party tracking cookies or advertising cookies.

9. Children's Privacy

Our service is not directed to individuals under 13. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the “Last updated” date.

11. Contact Us

If you have questions about this Privacy Policy, contact us at privacy@actiontree.app.