Privacy Policy

AIAutomatex is a Google Review Reply Automation platform developed by Sarvodaya Infotech. It connects to your Google Business Profile via Google's official OAuth 2.0 API to help business owners automatically reply to customer reviews on Google Maps / Google Business.

By using AIAutomatex, you authorize our application to access specific Google API scopes on your behalf, as described in this Privacy Policy. This policy explains exactly what data we access, how we use it, and how we protect it — in full compliance with Google API Services User Data Policy and Google OAuth 2.0 Policies.

We collect only what is necessary to provide the service:

A. Google Account Information (via OAuth)

• Your name, email address, and profile picture (from Google Sign-In)
• Google Business Profile details (business name, locations)
• Customer reviews posted on your Google Business listing
• Existing review replies (to avoid duplicate responses)

B. Account & Usage Data

• Account credentials (name, email, hashed password if not using Google Sign-In)
• Subscription plan and billing information (processed via secure payment gateway)
• Auto-reply templates you create within the platform
• Service usage logs (for debugging and improving performance)

C. Technical Data

• IP address, browser type, operating system
• Cookies and session identifiers (for authentication only)

What we do with your Google data:

• Read reviews: We fetch reviews from your Google Business Profile to display them in your dashboard and determine which reviews need a reply.
• Post replies: We submit automated or manually approved replies to your Google Business reviews on your behalf, using your authorized token.
• Improve service: We may use anonymized, aggregated data to improve reply quality and system performance. We never use raw Google user data for advertising, profiling, or selling to third parties.

What we do NOT do with your Google data:

• We do not sell or rent your Google data to any third party.
• We do not use Google data for advertising or marketing targeting.
• We do not allow humans to read your data unless you request support and explicitly grant permission.
• We do not use Google data for any purpose unrelated to providing the AIAutomatex service.

All data, including Google OAuth tokens, is stored on secure servers hosted in India (or an equivalent GDPR-compliant region). We use:

• Encryption at rest: All sensitive data including OAuth tokens is encrypted using AES-256.
• Encryption in transit: All communication between your browser, our servers, and Google APIs is secured via HTTPS / TLS 1.2+.
• OAuth token handling: Refresh tokens are stored securely and access tokens are short-lived (1 hour). Tokens are used solely to call Google APIs on your behalf.
• Database security: Databases are not publicly accessible. Access is restricted to authorized personnel only.

We do not sell your personal data or Google data to any third party. We may share data only in the following limited circumstances:

• Service Providers: Trusted vendors (e.g., payment processors, email providers, cloud hosting) who assist in operating our platform, bound by confidentiality agreements.
• Legal Compliance: If required by law, court order, or government authority.
• Business Transfer: In the event of a merger or acquisition, users will be notified before data is transferred.
• With Your Consent: We may share data in any other way only with your explicit prior consent.

We store your personal information for as long as your account is active or as needed to provide the service.

• Account data is retained until you delete your account.
• Google OAuth tokens are deleted immediately when you disconnect your Google account or revoke access from Google Account Permissions .
• Review data (fetched reviews and replies) is retained for up to 90 days after account deletion for audit purposes, then permanently deleted.
• Logs are retained for a maximum of 12 months.

How to delete your data:

• Log in → Account Settings → Delete My Account, or
• Email us at ishu.b@sarvodayainfotech.com with subject "Data Deletion Request"
• Revoke Google access at any time: myaccount.google.com/permissions

You have full control over your data:

• Access: Request a copy of all data we hold about you.
• Correction: Update or correct your personal information in Account Settings.
• Deletion: Request permanent deletion of your account and associated data.
• Disconnect Google: Revoke AIAutomatex's access to your Google account at any time via Google Account Settings — this will immediately stop all automated replies.
• Opt-Out: You may turn off automated replies at any time from the dashboard without deleting your account.
• Portability: Request an export of your data in a machine-readable format.

To exercise any of these rights, contact us at ishu.b@sarvodayainfotech.com. We respond to all requests within 7 business days.

We implement industry-standard security measures to protect your data:

• HTTPS / TLS encryption for all data in transit
• AES-256 encryption for all sensitive data at rest
• OAuth 2.0 tokens are never stored in plain text
• Regular security audits and vulnerability assessments
• Access to user data is restricted to authorized personnel only
• Multi-factor authentication available for admin accounts

AIAutomatex is intended for use by business owners and professionals only. Our service is not directed at children under the age of 13. We do not knowingly collect personal information from children. If we become aware that a child under 13 has provided personal information, we will delete it immediately.

If you believe a child has provided us with personal information, please contact us at ishu.b@sarvodayainfotech.com.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make material changes:

• We will update the "Last Updated" date at the top of this page.
• We will notify registered users via email at least 14 days before the change takes effect.
• For significant changes affecting Google data use, we will ask for your renewed consent.

Continued use of AIAutomatex after the effective date of any updated Privacy Policy constitutes your acceptance of the changes.