Viewday Trust Center
We keep your calendars private, reliable, and always in your control.
Security Standards
- Google OAuth Only: We use secure tokens and never see, touch, or store your Google password.
- Encryption: Data is protected in transit via TLS 1.2+ and encrypted at rest (AES-256) via Supabase (hosted on AWS).
- Least Privilege: We request only the specific read-only scopes needed to sync your calendar events.
Privacy & Isolation
- Strict Logical Isolation: We enforce rigid database policies to ensure your calendar data is accessible only to your specific embeds.
- No Ad Sales: Your calendar data is yours. We do not sell user data to third parties or advertisers.
- Right to Delete: Disconnecting your account immediately invalidates tokens and purges cached event data.
Reliability
- Real-time Sync: Events sync instantly via secure WebSockets (Supabase Realtime).
- Uptime Monitoring: Our platform is hosted on Vercel's global infrastructure for high availability and low latency.
- Transparent Status: We communicate openly about maintenance or service interruptions.
Compliance & Responsibility
- GDPR & CCPA: Our architecture is designed to support data privacy rights, including data portability and the right to be forgotten.
- Infrastructure Compliance: Our platform is built on SOC 2 Type II and ISO 27001 certified infrastructure providers (AWS & Supabase).
- Disclosure: If you believe you have found a security vulnerability, please report it to security@viewday.app.
Contact
Have specific security questions or need to report an issue?
Reach our security team directly at security@viewday.app.
Built private.
Connect your Google Calendars with secure, read-only access, and real-time sync.
No credit card required