Legal

Privacy Policy

Effective date: 1 June 2026  ·  Last updated: 16 June 2026

The short version: We collect only what we need to run the service. We don't sell your data, we don't use it for advertising, and we don't share it with third parties beyond what's required to operate CitoQuote.

1. Who we are

CitoQuote ("we", "us", "our") provides an AI-powered quoting platform for service businesses. Our registered contact is support@citoquote.com. This policy explains how we collect, use, and protect personal data in connection with our website (citoquote.com) and application (app.citoquote.com).

2. What data we collect

Account holders (business owners)

Visitors who use your quote widget

Gmail and email inbox data (if you connect a mailbox)

Website visitors (citoquote.com)

3. How we use your data

We do not use your data or your visitors' data for advertising, profiling, or any purpose other than operating the service.

4. Third-party services

We use a small number of trusted third parties to run CitoQuote:

We do not sell, rent, or trade personal data with any third party.

5. Google API and Gmail data

CitoQuote's use of Gmail data is governed by the Google API Services User Data Policy, including the Limited Use requirements. Connecting your Gmail account is entirely optional.

What we access

What we do not do with Gmail data

Data retention

Revoking access

You can disconnect Gmail at any time from the Integrations page in your CitoQuote dashboard. You can also revoke access directly from your Google account at myaccount.google.com/permissions. Revoking access stops all further email reading and sending immediately.

6. Data retention

7. Your rights

If you are based in the UK or EU, you have the following rights under data protection law:

To exercise any of these rights, email us at support@citoquote.com. We will respond within 30 days.

8. Cookies

We use minimal cookies necessary to operate the service:

We do not use advertising or tracking cookies.

9. Security

All data is transmitted over HTTPS. Passwords are hashed and never stored in plain text. Payment data is handled entirely by Stripe and never passes through our servers. We take reasonable technical measures to protect your data, though no system is 100% secure.

10. Children

CitoQuote is not directed at children under 16. We do not knowingly collect personal data from anyone under 16. If you believe a child has provided us with personal data, contact us and we will delete it promptly.

11. Changes to this policy

We may update this policy from time to time. If we make material changes, we will notify account holders by email. The effective date at the top of this page will always reflect the most recent version.

12. Contact

If you have any questions about this policy or how we handle your data, please contact us at support@citoquote.com.