← Back to Home

Privacy Policy

Last updated: February 19, 2026

1. Introduction

Solid# ("SolidNumber," "we," "our," or "us") operates the AI business infrastructure platform available at solidnumber.com and related services (collectively, the "Service"). We are committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, disclose, and safeguard your information — including data obtained through Google Workspace integrations — when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree, please do not use the Service.

2. Information We Collect

2.1 Information You Provide

  • Name and contact information (email address, phone number)
  • Business information (company name, industry, business address)
  • Account credentials (email and password)
  • Payment and billing information (processed by our PCI-compliant payment processor)
  • Communications with our support team
  • Knowledge base content, CMS pages, and business data you create or upload

2.2 Information Collected Automatically

  • Log data (IP address, browser type, operating system, pages visited, timestamps)
  • Device information (device type, screen resolution, unique device identifiers)
  • AI agent interaction logs (conversation content between you and AI agents)
  • Feature usage analytics (which platform features you use and how often)
  • Cookies and similar tracking technologies (see Section 9)

2.3 Google User Data

When you connect your Google Workspace account to Solid#, we request access to the following Google user data through OAuth 2.0 authorization. You may grant or deny each permission during the consent flow:

  • Google Profile & Email (openid, email, profile scopes) — Your name, email address, and profile picture for account identification and display within Solid#
  • Gmail — Read-Only (gmail.readonly scope) — Read access to your email messages and metadata to sync communications with your CRM contacts within Solid#
  • Gmail — Send (gmail.send scope) — Ability to send emails on your behalf through Solid#'s communication tools (e.g., campaigns, customer replies, AI-drafted messages)
  • Google Calendar (calendar, calendar.events scopes) — Read and write access to your calendar to sync appointments, bookings, and scheduled events with Solid#'s booking system
  • Google Drive — App-Created Files (drive.file scope) — Access to files created by or opened with Solid#, including Google Docs, Sheets, and Slides generated through the platform. This scope does NOT grant access to your entire Drive

We only request the minimum permissions necessary to provide Solid#'s features. You can revoke Google access at any time from your Solid# Settings page or from your Google Account at myaccount.google.com/permissions.

3. How We Use Your Information

3.1 General Use

  • Provide, operate, and maintain the Service
  • Process transactions and send related billing information
  • Send administrative notifications (security alerts, account updates, service changes)
  • Respond to inquiries and provide customer support
  • Improve our services, develop new features, and fix bugs
  • Train and improve our AI models using anonymized and aggregated data only
  • Detect, prevent, and address fraud, abuse, and security issues
  • Comply with legal obligations

3.2 How We Use Google User Data

Google user data obtained through OAuth is used exclusively to provide and improve the user-facing features of Solid# that you initiate:

  • Gmail data is used to display email conversations in your CRM, send emails you compose or approve, and enable AI agents to draft customer communications on your behalf
  • Calendar data is used to sync appointments and bookings between Google Calendar and Solid#'s scheduling system
  • Drive data is used to create, read, and edit documents (Docs, Sheets, Slides) that Solid# generates for you — such as reports, proposals, and analytics exports
  • Profile data is used to identify your account, display your name and profile picture, and associate your Google Workspace with your Solid# company

We do not use Google user data for advertising, retargeting, or any purpose unrelated to providing or improving the Solid# Service. We do not use Google user data to train AI models. We do not use Google user data for credit assessment, lending, or insurance underwriting.

4. Data Sharing and Disclosure

We do not sell your personal information or Google user data to any third party. We do not sell data to data brokers, advertising networks, or analytics platforms.

We may share your information only in the following circumstances:

  • Service Providers — Third-party vendors who assist in operating our platform (hosting, infrastructure, monitoring). These providers are contractually bound to protect your data and use it only for the services they provide to us
  • Payment Processors — PCI-compliant payment processors to process your subscription and transaction payments. We do not store your full credit card number
  • AI Model Providers — When you use Solid#'s built-in AI features (not Google Workspace features), your prompts and business context may be sent to AI providers (OpenAI, Anthropic) solely to generate responses. These providers process data under their data processing agreements and do not use your data to train their models
  • Legal Requirements — When required by law, subpoena, court order, or government request, or to protect the rights, safety, or property of Solid#, our users, or others
  • Business Transfers — In connection with a merger, acquisition, or sale of assets, your data may be transferred to the acquiring entity. We will notify you via email or prominent notice on our website before your data becomes subject to a different privacy policy

4.1 Google User Data Sharing

Google user data (Gmail content, Calendar events, Drive files) is not shared with any third-party AI providers, advertising networks, data brokers, or any other third parties. Google user data is processed exclusively within Solid#'s own infrastructure to provide the features you requested. Specifically:

  • Gmail messages are not sent to OpenAI, Anthropic, or any third-party AI provider
  • Calendar events are not shared outside of Solid#
  • Drive file content is not shared outside of Solid#
  • Google user data is not used for advertising, retargeting, or profiling
  • Google user data is not sold, rented, or leased to any party

5. Google API Services — Limited Use Disclosure

Solid#'s use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

In accordance with Google's Limited Use requirements:

  • We limit our use of Google user data to providing and improving user-facing features of Solid# that are prominent in the application's user interface
  • We do not transfer Google user data to third parties except as necessary to provide or improve user-facing features, for security purposes, to comply with applicable laws, or as part of a merger/acquisition with explicit user consent
  • We do not allow humans to read Google user data unless we have your affirmative agreement, it is necessary for security purposes (e.g., investigating abuse), it is necessary to comply with applicable law, or the data is aggregated and anonymized for internal operations
  • We request only the minimum Google API scopes necessary to implement the features you use

6. Data Security

We implement industry-standard security measures to protect your data, including Google user data:

  • Encryption in Transit — All data transmitted between your browser and our servers is encrypted using TLS 1.3
  • Encryption at Rest — All stored data is encrypted using AES-256 encryption
  • OAuth Token Security — Google OAuth access tokens and refresh tokens are encrypted using Fernet symmetric encryption (AES-128-CBC) before storage. Tokens are never stored in plain text
  • Multi-Tenant Data Isolation — Each customer's data is isolated at the database level using company-level row-level security. No customer can access another customer's data
  • PCI DSS Level 1 Compliance — Payment data is handled through PCI-compliant processors. We do not store full credit card numbers
  • Rate Limiting — API endpoints, including Google Workspace endpoints, are rate-limited to prevent abuse (e.g., 30 requests per minute for AI generation)
  • Prompt Injection Protection — All user inputs to AI systems are scanned for prompt injection attacks before processing
  • Regular Security Audits — We conduct regular security audits and penetration testing of our infrastructure

7. Data Retention and Deletion

7.1 General Data Retention

We retain your account data and business information for as long as your account is active. If you close your account, we will delete your personal information within 30 days, except where we are required to retain it for legal, tax, or regulatory purposes (typically up to 7 years for financial records).

7.2 Google User Data Retention

Google user data is handled as follows:

  • OAuth Tokens — Encrypted access and refresh tokens are stored for as long as your Google Workspace is connected. When you disconnect Google from Solid# or revoke access, tokens are deleted immediately
  • Gmail Data — Email message content is fetched on-demand from Google's servers and is not permanently stored in Solid#. CRM-synced metadata (sender, subject, date) is retained while your account is active
  • Calendar Data — Calendar events synced to Solid# are retained while your account is active. Disconnecting Google removes the sync
  • Drive Files — Files created by Solid# remain in your Google Drive (owned by you). Solid# stores only file metadata (ID, name, creation date) for reference. Disconnecting Google removes this metadata from Solid#

7.3 How to Delete Your Data

You can request deletion of your data by:

  • Disconnecting Google Workspace from Settings → Integrations (removes all Google data and tokens)
  • Revoking Solid#'s access from your Google Account permissions page
  • Emailing privacy@solidnumber.com to request full account deletion
  • Closing your Solid# account from Settings → Account

8. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access — Request a copy of the personal information we hold about you
  • Correction — Request correction of inaccurate or incomplete personal information
  • Deletion — Request deletion of your personal information, subject to legal retention requirements
  • Portability — Request export of your data in a machine-readable format (JSON, CSV)
  • Opt Out — Opt out of marketing communications at any time via unsubscribe links or account settings
  • Withdraw Consent — Withdraw consent for optional data processing at any time, including disconnecting Google Workspace
  • Restrict Processing — Request restriction of processing in certain circumstances
  • Object — Object to processing based on legitimate interests

To exercise any of these rights, contact us at privacy@solidnumber.com. We will respond within 30 days.

9. Cookies and Tracking

We use cookies and similar technologies for the following purposes:

  • Essential Cookies — Required for authentication, session management, and security (cannot be disabled)
  • Analytics Cookies — Help us understand how users interact with the Service so we can improve it
  • Preference Cookies — Remember your settings and preferences (language, display options)

We do not use advertising or retargeting cookies. You can manage cookie preferences through your browser settings. Disabling essential cookies may prevent you from using the Service.

10. Third-Party Services

Our platform integrates with the following categories of third-party services. Each service has its own privacy policy:

  • Google Workspace (Gmail, Calendar, Drive) — governed by Google's Privacy Policy
  • AI Providers (OpenAI, Anthropic) — used for Solid#'s built-in AI features only, not for processing Google user data
  • Payment Processors — PCI-compliant processors that handle billing transactions
  • Infrastructure Providers — Cloud hosting and monitoring services

We encourage you to review the privacy policies of any third-party services you connect to Solid#.

11. Children's Privacy

The Service is designed for business use and is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete that information promptly.

12. International Data Transfers

Your information, including Google user data, may be transferred to and processed on servers located in the United States. If you are accessing the Service from outside the United States, your data will be transferred to the U.S., where data protection laws may differ from those in your jurisdiction. By using the Service, you consent to such transfer. We ensure appropriate safeguards are in place, including encryption in transit and at rest, to protect your data during transfer.

13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes — especially changes to how we use Google user data — we will notify you by posting the updated policy on this page, updating the "Last updated" date, and, where appropriate, sending a notification via email or an in-app banner. Your continued use of the Service after such changes constitutes acceptance of the updated policy.

14. Contact Us

If you have questions or concerns about this Privacy Policy, how we handle your data, or how we use Google user data, please contact us:

Solid# (SolidNumber)

Email: privacy@solidnumber.com

Website: https://solidnumber.com

Privacy Policy | Solid#