Back to home

Privacy Policy

Last updated: March 16, 2025

STIVO operates the STIVO CRM platform (https://stivo.io and associated domains). This policy describes how we collect, use, store, and protect information when you use our service, including integrations with Gmail and Google Calendar.

1. Data controller

STIVO
Email: cto@stivo.io

2. Data we collect

We collect the data necessary to provide the CRM service:

• Account data: name, email, phone, dealership name.
• CRM data: customers, leads, vehicles, and commercial operations you enter in the platform.
• Gmail data (only if you connect your account): access to send emails on your behalf from the CRM panel, more conveniently and without opening another tab. We do not read, store, or analyze the content of your inbox beyond what is necessary to send the messages you explicitly compose and send.
• Google Calendar data (only if you connect your account): access to create, read, and modify events in your calendar, in order to schedule appointments with customers directly from the CRM and keep everything centralized in one panel.

3. Use of Gmail and Google Calendar data

Integrations with Gmail and Google Calendar serve a specific purpose:

• Gmail: Allow you to send emails to your customers from the CRM without switching applications. Messages are sent only when you decide; we do not send emails on your behalf automatically or without your explicit consent.
• Google Calendar: Allow you to create and manage customer appointments from the CRM, synced with your Google calendar, so you don't have to open another tab and everything stays centralized.

We do not use Gmail or Google Calendar data for advertising, resale, credit analysis, or any purpose other than described. We comply with the Google API Services User Data Policy.

4. Legal basis and purpose of processing

We process your data to:

• Provide the CRM service and contracted features.
• Manage the commercial relationship and support.
• Comply with legal obligations.

The legal basis is contract performance and, where applicable, your consent (e.g., when connecting Gmail or Calendar).

5. Dedicated databases and isolation

Each user has a dedicated, individual database. Your dealership data — customers, leads, vehicles, emails, appointments, and all private information — is isolated and segregated. No one else has access to your data: not other users, not third parties. Only you and the people authorized on your account can view and manage it.

6. Storage and security

Data is stored on secure servers within the European Union or with providers offering adequate guarantees. We apply technical and organizational measures to protect data against unauthorized access, loss, or alteration.

7. Data retention

We retain data while you maintain an active account and for the time necessary to comply with legal obligations. Gmail and Calendar access tokens are stored securely and you can revoke them at any time from your account settings or from your Google account.

8. Sharing and third parties

We do not sell or rent your personal data. We only share information with:

• Providers necessary for the service (hosting, email, etc.) under contract.
• Google, when you use Gmail and Calendar integrations, per their terms.
• Authorities when required by law.

9. Your rights

You may exercise your rights of access, rectification, erasure, restriction, portability, and objection by contacting cto@stivo.io. You may also file a complaint with the competent data protection authority (AEPD in Spain).

10. Cookies and similar technologies

We use cookies and similar technologies for the operation of the site and platform, per our configuration. You can manage cookie preferences in your browser.

11. Changes to this policy

We may update this policy. Material changes will be communicated by email or notice on the platform. We recommend reviewing it periodically.

12. Contact

For questions about privacy or the use of your data: cto@stivo.io