Privacy Policy

Here you can find how we collect, store, and use your personal data and other information you shared with us, and how you can change or delete your information from our website https://www.glozo.com (hereinafter — «our Platform»).

Please, read it carefully, because to use our services via our Platform, you need to accept this Privacy Policy (by accepting Terms & Conditions).

Who we are and how to contact us?

The https://www.glozo.com website is operated by GLOZO GLOBAL Inc. (hereinafter — our Company) is the data controller and is responsible for personal data on our Platform. You can contact us by email: services@glozo.com

Why do we collect your personal data and how do we use it?

We collect and use your personal data in order to:

  • provide, support, improve and develop more personalized services
  • analyze your content for spam, malware and illegal content — to improve the safety of our services and protect the users
  • measure performance — to understand how our services are used by our clients
  • contact you directly — for example, we may let you know about upcoming changes or improvements to our services. If you contact us, we'll keep a record of your request to help solve any issues you might be facing.

Which information do we collect?

  • personal information contained in the Contact Form if you sent it to us (first name, last name)
  • company name
  • e-mail
  • number of users
  • session statistics
  • approximate geolocation
  • browser and device information
  • advertisement source
  • conversion date and conversion page

How do we collect your personal data?

We use various technologies to collect and store information, including cookies, pixel tags, and local storage, such as browser web storage or application data caches, databases, and server logs.

Google User Data

How we use Google services

Our application uses Google Sign-In and Gmail API to provide email outreach and candidate engagement tracking functionality. By using these services, you grant us access to certain information from your Google account.

Google data we access and why

  • Google Sign-In (Authentication)
    • What we access: Your basic profile information (name, email address, profile picture)
    • Why we need it: To create and authenticate your account on our platform
    • How we use it: This information is used solely for authentication and to personalize your experience
  • Gmail API
    • What we access:
      • Ability to send emails on your behalf through Gmail (gmail.compose scope)
      • Ability to read emails in conversation threads where we sent messages (gmail.readonly scope)
    • Why we need it:
      • To enable our outreach sequence feature, which allows you to send personalized recruitment emails to candidates
      • To track candidate responses and measure engagement with your outreach campaigns
      • To provide analytics on email performance and candidate interest
    • How we use it:
      • We compose and send emails using your templates, add attachments you provide, and send them through your Gmail account on your behalf
      • We monitor conversation threads that originated from our platform to identify and track candidate replies
      • We extract reply content, sender information, timestamps, and engagement data for analytics and reporting
      • We store metadata about sent emails and received replies (subject, sender, timestamp, thread ID) to enable campaign tracking
    • What we don't do:
      • We do not read emails in conversations we didn't initiate through our platform
      • We do not access your personal correspondence or emails outside of recruitment campaigns
      • We do not read, access, or store emails from your inbox that are unrelated to our outreach sequences
      • We do not modify, delete, or move your emails
      • We do not access your contacts, calendar, or other Google services beyond Gmail

How we store Google data

  • Authentication tokens: We securely store your Google OAuth tokens (access token and refresh token) in our encrypted database. These tokens are necessary to maintain your authenticated session, send emails on your behalf, and check for candidate replies
  • Email content: We store the content of emails you compose through our platform (subject lines, email body, templates, attachments) to enable sequence functionality and campaign management
  • Sent email metadata: We store metadata about emails sent through our platform including timestamp, recipient email, campaign ID, Gmail message ID, and Gmail thread ID for tracking and analytics
  • Reply data: We store candidate replies to your outreach emails including reply content, sender information, reply timestamp, and thread information to enable engagement tracking and follow-up workflows
  • What we don't store: We do not store emails from your inbox that are unrelated to our platform's outreach campaigns

How we protect Google data

  • All Google OAuth tokens are encrypted in transit and at rest using industry-standard encryption
  • Access to user data is restricted to authorized personnel only and protected by strict access controls
  • We use industry-standard security practices including SSL/TLS encryption, secure cloud infrastructure, encrypted databases, and regular security audits
  • All data transmission between our servers and Google APIs is encrypted
  • We implement secure coding practices and regular security updates to protect against vulnerabilities
  • We do not share your Google data with third parties except as described in this policy

How we share Google data

We do not sell, rent, or share your Google user data with third parties for their marketing purposes. We only share your information in the following limited circumstances:

  • With your explicit consent
  • With service providers who help us operate our platform (e.g., Google Cloud Platform for hosting, database services, email delivery infrastructure) under strict confidentiality agreements and data processing agreements that limit their use of your data
  • When required by law to comply with legal obligations, court orders, governmental requests, or to protect our rights and safety

We do not allow any third parties to use your Google user data for their own purposes.

Your control over Google data

You can revoke our access to your Google account at any time by:

  • Visiting your Google Account Permissions page
  • Removing Glozo from the list of connected apps
  • Contacting us at services@glozo.com to request data deletion

When you revoke access or delete your account:

  • We will immediately stop accessing your Gmail account
  • We will delete your Google OAuth tokens within 30 days
  • We will delete or anonymize associated email campaign data within 30 days, except where we are required to retain it for legal, security, or financial record-keeping purposes
  • You can request immediate deletion of all your data by contacting us at services@glozo.com

Compliance with Google API Services User Data Policy

Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.We commit to the following:

  • Limited Use: We only use Google user data for the purposes explicitly described in this privacy policy (authentication, sending recruitment emails, tracking candidate replies)
  • No Ads: We do not use Google user data for serving advertisements
  • No Third-Party Transfer: We do not transfer Google user data to third parties except as necessary to provide our core services (e.g., cloud hosting), for security purposes, or as required by law
  • Human Access: We do not allow humans to read your Google user data unless:
    • We have your explicit permission for support purposes
    • It's necessary for security purposes (e.g., investigating abuse)
    • It's required for compliance with applicable law
  • Secure Handling: We handle all Google user data with appropriate security measures including encryption, access controls, and secure storage

How long do we store your personal data?

We retain data according to the following schedule:

  • Google OAuth tokens: Retained while your account is active, deleted within 30 days of account closure or permission revocation
  • Email campaign data: Retained while your account is active for analytics and reporting, deleted or anonymized within 30 days of account closure
  • Account data: Retained while your account is active
  • Legal and security data: Some data may be retained longer when reasonably necessary for legitimate business or legal purposes, such as security, fraud prevention, abuse prevention, or financial record-keeping
  • Communication records: We store information on direct communications with our Company for customer support purposes

How do we protect your security on our Platform?

To protect you and our Company from unauthorized access, alteration, disclosure, or destruction of information:

  • we use encryption to keep your data private while in transit using SSL/TLS
  • we encrypt sensitive data at rest in our databases
  • we review information on collection, storage, and processing to prevent unauthorized access to our systems
  • we restrict access to personal information to our employees, contractors, and agents who need that information to perform their services for us. Anyone with this access is subject to strict contractual confidentiality obligations
  • we implement regular security audits and updates to protect against vulnerabilities
  • we use secure cloud infrastructure with industry-leading security practices

Do we share your personal data?

We do not share the information you provided to us with third parties, except in the following cases:

  • with your consent
  • when we use the services of other companies or persons (e.g., cloud hosting providers, database services, analytics providers, customer support tools). In this case, we only share your personal data with third parties as reasonably necessary to enable them to perform their services for us and under conditions of non-disclosure agreements and data processing agreements
  • when it is reasonably necessary to:
    • meet any applicable law, regulation, legal process, or enforceable governmental request
    • enforce applicable Terms & Conditions, including investigation of potential violations
    • detect, prevent, or otherwise address fraud, security, or technical issues
    • protect against harm to the rights, property, or safety of our Company, our users, or the public as required or permitted by law

We may share non-personally identifiable information publicly and with our partners — such as publishers, advertisers, developers, or rights holders. For example, we share information publicly to show trends in the general use of our services. We also allow specific partners to collect information from your browser or device for advertising and measurement purposes using their own cookies or similar technologies.

How can you edit or delete your data from our Platform?

Due and when data protection law applies to the processing of your information, you can exercise your right to request access to, update, remove, and restrict the processing of your information. You also have the right to object to the processing of your information or export your information to another service.

To manage your Google data specifically:

  • Revoke Gmail access: Visit Google Account Permissions and remove Glozo
  • Request data deletion: Contact us at services@glozo.com
  • Export your data: Contact us at services@glozo.com to request a copy of your data

When you delete your data, we follow a deletion process to make sure that your data is safely and completely removed from our servers or retained only in anonymized form. We try to ensure that our services protect information from accidental or malicious deletion, and for this reason, there may be delays in when the copies you deleted are entirely deleted from our active and backup systems.

Data deletion timeline:

  • Google OAuth tokens: Deleted within 30 days
  • Campaign data: Deleted or anonymized within 30 days
  • Backup systems: May take up to 60 days to be completely removed from all backup systems

If you have any questions about this Privacy Policy, you can contact us by email: services@glozo.com. You can contact your local data protection authority if you have concerns regarding your rights under local law.

This Privacy Policy was most recently updated on: November, 1st, 2025.

Glozo© 2025
Privacy PolicyTerms & Conditions