Blue Sky Apps Privacy Policy

Last updated: April 17, 2025

This Privacy Policy describes how your personal information is collected, used, and shared when you visit blueskyapps.org or use any of our services or applications (the "Site" or "Services").

PERSONAL INFORMATION WE COLLECT

When you use our Site or Services, we collect information that helps us operate effectively and provide you with a better experience. This includes:

  • Device Information: We automatically collect technical details such as your web browser, IP address, time zone, and cookies installed on your device. We also gather data about how you interact with our website, including pages viewed, referring URLs, and general site activity.
  • Usage Information: When you interact with our apps or integrations (e.g., joining a meeting, activating a timer, or enabling AI features), we may collect metadata like app usage, meeting identifiers, timestamps, and selected settings.
  • Account Information: If you create an account or subscribe to a service, we collect your name, email address, and billing information. Sensitive payment data (such as credit card numbers) is handled securely by PCI-compliant payment processors like Braintree and is never stored on our servers.

We collect Device Information using the following technologies:

  • "Cookies" are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
  • "Log files" track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
  • "Web beacons," "tags," and "pixels" are electronic files used to record information about how you browse the Site.

Additionally when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information, email address, and phone number. We refer to this information as "Order Information." Sensitive payment information such as credit card numbers are not stored on our servers and are handled by our fully PCI compliant payment processors such as Braintree.

When we talk about "Personal Information" in this Privacy Policy, we are referring to Device Information, Usage Information, and Account Information.

FOR USERS OF VIDEOCONFERENCING INTEGRATIONS

Some Blue Sky Apps integrate with videoconferencing platforms such as Zoom, Google Meet, and Microsoft Teams. These integrations may use platform APIs to interact with your meetings after you have authorized access. We only access meeting-related data necessary for the core functions of the app—such as attendance tracking, displaying timers, or enabling AI note-taking—and never record or store audio, video, or chat content unless explicitly initiated by the user. We do not save or share video, audio, or chat communications from these meetings, except for actions specifically enabled by the user (for example, taking meeting attendance or enabling AI note-taking).

For users of Notetaker Apps, transcriptions and notes of meetings are stored and can be deleted by the user at any time.

In accordance with Zoom's App Marketplace Policy, we will delete your personal information when requested to do during uninstallation of our App(s) within the Zoom Marketplace. However, active subscriptions with BlueSky Apps will not automatically be cancelled just by installing our Zoom App(s). Please contact us at [email protected] if you have uninstalled a Zoom App and also wish to have your subscriptions paused or cancelled.

AI FEATURES AND DATA HANDLING

Some BlueSky Apps offer features powered by artificial intelligence, such as meeting transcription and automated note summarization. We handle AI-related data with the following practices:

  • Summarization and note-taking features may involve processing through third-party AI providers.
  • No user data is used to train AI models without the user's explicit consent.
  • Users may delete AI-generated data, including notes and transcripts, in accordance with our Data Retention policy (see below).

HOW DO WE USE YOUR PERSONAL INFORMATION?

We use the Order Information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, and providing you with invoices and/or order confirmations). Additionally, we use this Order Information to communicate with you, screen our orders for potential risk or fraud, and, when in line with the preferences you have shared with us, provide you with information relating to our products or services.

We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).

SHARING YOUR PERSONAL INFORMATION

We share your Personal Information with third parties to help us use your Personal Information, as described above. We also may use 3rd party analytics services such as Google Analytics to help us understand how our customers use the Site--you can read more about how Google uses your Personal Information here. You can also opt-out of Google Analytics here.

Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.

DO NOT TRACK

Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

YOUR RIGHTS

If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

Additionally, if you are a European resident we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.

California residents may also have rights under the California Consumer Privacy Act (CCPA), including access to, deletion of, and control over their personal information.

DATA RETENTION

We retain user data for as long as necessary to provide our services and support user functionality. This includes information related to your account, preferences, and app-specific functionality such as attendance data, meeting summaries, and transcripts. All user data is stored on secure servers located in the United States, with daily backups performed for reliability and recovery purposes. Users may request deletion of their data at any time, and such requests will be honored promptly in accordance with our data deletion procedures.

DATA SECURITY MEASURES

Blue Sky Apps is committed to maintaining the security and confidentiality of your data. We implement a variety of safeguards and best practices across our software development and infrastructure:

  • Secure Infrastructure: All data is hosted on secure U.S.-based servers with daily encrypted backups.
  • Penetration Testing: Third-party penetration tests are conducted to proactively identify and address vulnerabilities.
  • Secure Coding & SSDLC: Our developers follow a Secure Software Development Life Cycle (SSDLC) and OWASP-aligned secure coding practices.
  • Change Management: We use strict change control policies to ensure that all system modifications are tested, reviewed, and approved.
  • Vulnerability & Patch Management: Regular vulnerability scans and prompt patching are standard practice.
  • Disaster Recovery: We maintain a robust disaster recovery plan to ensure business continuity and rapid restoration of services in the event of disruption.

These measures are designed to protect your information from unauthorized access, disclosure, alteration, or destruction.

CHILDREN’S PRIVACY / COPPA COMPLIANCE

Our services are not directed to individuals under the age of 13, and we do not knowingly collect personal information from children. In accordance with the Children's Online Privacy Protection Act (COPPA), if we become aware that we have inadvertently collected personal data from a child under 13, we will take immediate steps to delete that information.

If you believe that a child under 13 may have provided us with personal information, please contact us at [email protected], and we will promptly investigate and address the issue.

CHANGES

We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.

CONTACT US

For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us by email at [email protected].