1. Who We Are
Breazyleads is a trading name of BreazyLabs B.V., registered with the Dutch Chamber of Commerce (KvK) under number 96623055, with registered address at Professor van der Scheerstraat 201, 2035AM Haarlem, the Netherlands. We operate an AI-assisted B2B CRM and outreach platform.
For privacy questions contact us at info@breazylabs.com.
2. Data We Collect
We collect the following categories of personal data:
- Account data: name, email address, phone number, and company name provided during registration.
- Usage data: IP address, browser type, pages visited, and click behaviour, collected via cookies and analytics tools.
- Scheduling data: information you provide when booking a meeting through our scheduling system.
- Google Workspace data (only when you connect a Google account — see Section 4):
- Gmail: sender and recipient addresses, email subject lines, email body content, and send/receive timestamps — used exclusively to send emails on your behalf and to track replies within the CRM.
- Google Calendar: event titles, attendee lists, start/end times, and meeting links — used exclusively to create, read, and sync calendar events for scheduling and meeting tracking within the CRM.
- Google profile: your Google account email address and display name, used to identify the connected mailbox.
3. How We Use Your Data
- To provide, operate, and improve the Breazyleads CRM platform.
- To send outreach emails on your behalf via Gmail (only when you have connected your Google account and explicitly initiated an outreach sequence).
- To read your Gmail inbox for reply detection and thread tracking within your CRM sequences.
- To create and read Google Calendar events for scheduling meetings and tracking meeting activity in the CRM.
- To process and follow up on demo requests and contact form submissions.
- To measure website traffic and ad campaign performance via analytics.
- To communicate with you about our services, where you have given consent.
4. Google Workspace Data — Limited Use
Breazyleads' use of data obtained from Google APIs (Gmail, Google Calendar, and Google account profile) is limited to the practices described in this Privacy Policy and complies with the Google API Services User Data Policy, including the Limited Use requirements.
Specifically, we commit to the following:
- We use Gmail and Calendar data solely to provide CRM features to you — sending outreach emails, tracking replies, and managing calendar events. We do not use this data for any other purpose.
- We do not transfer or sell Gmail or Calendar data to third parties, except where necessary to provide the service (e.g., our infrastructure providers operating under a Data Processing Agreement), or as required by law.
- We do not use Gmail or Calendar data for serving advertisements, credit scoring, market research, or any purpose unrelated to operating the CRM.
- We do not allow humans to read your Gmail or Calendar data unless you have explicitly requested support that requires it, or as required for security incident investigation, and only after your consent.
5. AI and Machine Learning — No Training on Google Data
Breazyleads does notuse data obtained through Google Workspace APIs — including Gmail content, Google Calendar events, or any other data accessed via a user's connected Google account — to develop, train, fine-tune, or otherwise improve any generalised artificial intelligence or machine learning model.
Any AI features within Breazyleads (such as email draft suggestions) operate solely on data provided directly by you in that interaction and are not built using historical Gmail or Calendar data harvested from connected accounts.
6. Legal Basis for Processing
We process personal data on the following legal bases under the GDPR:
- Consent: for non-essential cookies and marketing communications, and for accessing Google Workspace data when you connect your Google account.
- Contract performance: to deliver the CRM service you have subscribed to.
- Legitimate interests: for website analytics and fraud prevention, where your interests do not override ours.
- Legal obligation: where required by applicable law.
7. Data Sharing and Third Parties
We never sell your personal data. We share data only with:
- Infrastructure and hosting providers that store and process data on our behalf, under mandatory Data Processing Agreements.
- Analytics providers (Google Analytics, Meta Pixel) for website traffic measurement — these receive anonymised or pseudonymised usage data only, not Google Workspace content.
- Law enforcement or regulators where we are legally required to disclose data.
8. Data Retention and Deletion
- Account data is retained for the duration of your account and deleted within 30 days of account closure.
- Google Workspace data (Gmail and Calendar content) is accessed in real time to perform CRM actions. Any cached data (e.g., sent email logs, meeting records stored in the CRM) is retained for as long as your Google integration is active. When you disconnect your Google account, all OAuth tokens are immediately revoked and access to your Google data ceases. Stored CRM records referencing that data are deleted within 30 days upon request.
- Contact data of non-customers (e.g., demo requests) is deleted no later than 2 years after the last point of contact.
- Website analytics data is retained in accordance with Google Analytics and Meta Pixel default retention settings.
9. Cookies and Tracking
Our website uses the following cookies and similar technologies:
- Essential cookies: required for authentication and core platform functionality.
- Google Analytics / Google Ads: for measuring website traffic and conversion performance.
- Meta Pixel: for tracking conversions from Facebook and Instagram advertising.
You can refuse or delete non-essential cookies via your browser settings.
10. Security
We apply appropriate technical and organisational measures to protect your personal data against loss, misuse, and unauthorised access. Google OAuth tokens are stored encrypted at rest and transmitted over TLS. Access to production systems is restricted to authorised personnel only.
11. Your Rights (GDPR)
Under the General Data Protection Regulation you have the following rights:
- Right of access to your personal data.
- Right to rectification of inaccurate data.
- Right to erasure ("right to be forgotten").
- Right to restriction of processing.
- Right to data portability.
- Right to object to processing based on legitimate interests.
- Right to withdraw consent at any time (including by disconnecting your Google account within the app).
To exercise any of these rights, email info@breazylabs.com. You also have the right to lodge a complaint with the Dutch Data Protection Authority (autoriteitpersoonsgegevens.nl).
12. Changes to This Policy
We may update this Privacy Policy from time to time. The most current version is always published at this URL with the date of the last revision. We will notify you of material changes via email or an in-app notice.
13. Contact
BreazyLabs B.V. · Professor van der Scheerstraat 201 · 2035AM Haarlem · Netherlands
KvK: 96623055
Email: info@breazylabs.com
© 2026 BreazyLabs B.V. All rights reserved. ·
Back to app