Privacy Policy

Last Updated: January 17, 2026

Scout Post ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Google Chat bot integration with Basecamp.

1. Information We Collect

1.1 Information You Provide

• Basecamp Account Information: When you connect your Basecamp account, we receive your Basecamp account ID and access token through OAuth 2.0.
• Google Workspace Information: We receive your Google Chat space ID and user information when you add Scout Post to a Google Chat space.

1.2 Information We Automatically Collect

• Thread Mapping Data: We store thread IDs to maintain conversation context between Basecamp and Google Chat. This includes:
  • Basecamp project IDs
  • Basecamp message/comment IDs
  • Google Chat thread IDs
• Usage Data: We collect basic usage statistics such as command usage frequency and error logs for service improvement.

1.3 Information We Do NOT Collect

• We do NOT store the content of your Basecamp messages
• We do NOT store the content of your Google Chat messages
• We do NOT read or analyze your conversations
• We do NOT share your data with third parties for marketing purposes

2. How We Use Your Information

We use the information we collect to:

• Provide the Service: Forward notifications between Basecamp and Google Chat, maintain conversation threading, and execute commands.
• Improve the Service: Analyze usage patterns to fix bugs, improve performance, and develop new features.
• AI Features: When you use AI-powered commands (/ai, /summarize, /suggest), we send your message content to Google's Gemini API for processing. This data is not stored by us or Google beyond the API request.
• Customer Support: Respond to your inquiries and provide technical support.
• Security: Detect and prevent fraud, abuse, and security incidents.

3. How We Store Your Information

3.1 Data Storage

• Infrastructure: All data is stored on Cloudflare's global network using Cloudflare Workers and KV storage.
• Encryption: All data is encrypted in transit (HTTPS) and at rest.
• Location: Data is stored on Cloudflare's edge network, which may include servers in multiple countries.

3.2 Data Retention

• Thread Mappings: Automatically deleted after 30 days of inactivity.
• OAuth Tokens: Stored securely as Cloudflare secrets until you disconnect your account.
• Usage Logs: Retained for 90 days for debugging and service improvement.

4. How We Share Your Information

We do not sell, trade, or rent your personal information. We may share your information only in the following circumstances:

• Service Providers:
  • Cloudflare (hosting and infrastructure)
  • Google Gemini API (AI features, when you use AI commands)
• Legal Requirements: If required by law, court order, or government regulation.
• Business Transfers: In connection with a merger, acquisition, or sale of assets (you will be notified).

5. Your Rights and Choices

5.1 Access and Control

• Disconnect: You can disconnect Scout Post from your Basecamp account at any time through Basecamp's settings.
• Remove from Chat: You can remove Scout Post from any Google Chat space at any time.
• Data Deletion: Contact us at [email protected] to request deletion of your data.

5.2 GDPR Rights (EU Users)

If you are in the European Union, you have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Object to processing of your data
• Request data portability
• Withdraw consent at any time

To exercise these rights, contact us at [email protected].

5.3 California Privacy Rights (CCPA)

California residents have the right to:

• Know what personal information we collect
• Know whether we sell or disclose personal information (we do not)
• Access your personal information
• Request deletion of your personal information
• Opt-out of the sale of personal information (not applicable, as we do not sell data)

6. Security

We implement industry-standard security measures to protect your information:

• HTTPS encryption for all data in transit
• Encryption at rest for all stored data
• OAuth 2.0 for secure authentication
• Regular security audits and updates
• Limited access to data (only necessary for service operation)

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

7. Children's Privacy

Scout Post is not intended for use by children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure that such transfers comply with applicable data protection laws, including:

• EU-US Data Privacy Framework (for EU users)
• Standard Contractual Clauses (where applicable)
• Adequate safeguards as required by GDPR

9. Third-Party Services

9.1 Basecamp

Scout Post integrates with Basecamp. Your use of Basecamp is governed by Basecamp's privacy policy and terms of service.

9.2 Google Workspace

Scout Post integrates with Google Chat. Your use of Google Workspace is governed by Google's privacy policy and terms of service.

9.3 Google Gemini API

When you use AI-powered commands, your messages are sent to Google's Gemini API for processing. This is governed by Google's AI Terms of Service and Privacy Policy.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy on this page
• Updating the "Last Updated" date
• Sending a notification through Scout Post (for significant changes)

Your continued use of Scout Post after changes become effective constitutes acceptance of the updated Privacy Policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: [email protected]
Support: [email protected]
Website: https://scoutpost.win

12. Data Protection Officer

For GDPR-related inquiries, you can contact our Data Protection Officer at:

[email protected]

This Privacy Policy is effective as of January 17, 2026. By using Scout Post, you acknowledge that you have read and understood this Privacy Policy.

← Back to Scout Post | Terms of Service | Support