Privacy Policy
Last updated: April 2026
BuzzBot is operated by Becker Capital Ventures LLC (“we,” “us,” or “our”). This policy explains exactly what personal data we collect when you use the BuzzBot iPhone app and related services, why we collect it, how we store it, and your rights regarding that data.
Our approach is simple: collect only what is necessary to make the app work, encrypt sensitive credentials, and delete data when it is no longer needed.
What we collect
Account information
When you sign in with Apple, we receive your Apple-generated user identifier and, if you choose to share it, your name and email address. We use your email address only to send transactional messages (account notices, support replies). We do not send marketing email.
Your BuzzBot phone number
We store the Twilio phone number assigned to your account. This number is necessary to route intercom calls to BuzzBot on your behalf.
Your forwarding number
To forward unresolved intercom calls to your real phone, we store the number you provide as your fallback. This number is encrypted at rest and is shared with Twilio only for the purpose of completing a forwarded call.
Gmail OAuth credentials
When you connect your Gmail account, we receive OAuth 2.0 access and refresh tokens from Google. These tokens are encrypted with AES-256-GCM before being written to our database. The encryption key is stored separately from the database. We use these tokens solely to query Gmail for delivery confirmation emails on your behalf — we do not read, store, index, or transmit any email content.
BuzzBot's use of Gmail data complies with the Google API Services User Data Policy, including the Limited Use requirements. Specifically: Gmail data is used only to provide the delivery-detection feature within BuzzBot. We do not use Gmail data for advertising, we do not allow humans to read your Gmail data, and we do not transfer Gmail data to third parties except as necessary to operate the app (e.g., confirming a delivery name to trigger a buzzer action).
Call metadata
When BuzzBot handles an intercom call, we log:
- Timestamp of the call
- Outcome (auto-buzzed, manually approved, denied, or forwarded)
- The carrier or matched service name that triggered the outcome (e.g., “UPS”)
- Call duration
This metadata powers the activity feed in your app. We retain it for 90 days and then automatically delete it. We do not store any audio from intercom calls.
App settings
We store preferences you configure in the app, such as active hours schedules. This data is used solely to determine how BuzzBot should handle incoming calls.
Push notification tokens
We store your device's APNs token to deliver lock-screen notifications to your iPhone. These tokens are anonymous device identifiers provided by Apple and do not contain personal information.
What we never collect
- We never store email content. BuzzBot queries Gmail for the presence of delivery confirmation emails from known carriers. We do not store, index, cache, or log any email body content, subject lines, or sender addresses.
- We never record call audio. BuzzBot processes intercom calls in real time and sends a DTMF tone to open the door when appropriate. No audio is stored after a call ends.
- We never read personal email. Gmail queries are filtered to known shipping carrier senders. We do not access personal, financial, or any other non-delivery email.
- We never sell your data. Your information is not sold, rented, licensed, or shared with advertisers or data brokers under any circumstances.
- We never use your data for advertising. We do not build advertising profiles and we do not use any data from BuzzBot for targeted advertising.
How data is stored and secured
BuzzBot uses a PostgreSQL database hosted on infrastructure within the United States. All connections to the database use TLS encryption in transit.
Gmail OAuth tokens are encrypted at the application layer using AES-256-GCM before storage. The encryption key is stored separately from the database. This means that even a full database breach would not expose your Gmail credentials in usable form.
Your forwarding phone number is also encrypted at rest.
Third-party services
Twilio
BuzzBot uses Twilio Programmable Voice to provision phone numbers, handle intercom calls, and perform call forwarding. When a call is processed, Twilio has access to the caller's phone number and the in-transit audio of the call. Twilio's privacy policy is available at twilio.com/legal/privacy.
Google (Gmail API)
BuzzBot accesses Gmail through Google's OAuth 2.0 API. Google's data handling is governed by their privacy policy at policies.google.com/privacy.
Apple (Sign in with Apple / APNs)
Authentication is handled via Sign in with Apple. Push notifications are delivered via Apple's APNs infrastructure. Apple's privacy policy is available at apple.com/legal/privacy.
Data retention
| Data type | Retention |
|---|---|
| Call metadata | 90 days, then automatically deleted |
| Gmail OAuth tokens | Until you disconnect Gmail or delete your account |
| Account & phone numbers | Until you delete your account |
| APNs token | Until you delete your account or uninstall the app |
When you delete your BuzzBot account, all associated data — including your phone numbers, Gmail tokens, call history, and settings — is permanently deleted within 30 days. You can request deletion at any time by emailing support@buzzbotdoorapp.com.
Your rights
Depending on your location, you may have the following rights:
- Access: Request a copy of the personal data we hold about you.
- Correction: Request correction of inaccurate data.
- Deletion: Request deletion of your data (“right to be forgotten”).
- Portability: Request your data in a portable format.
- Restriction: Request that we restrict processing of your data in certain circumstances.
California residents (CCPA): You have the right to know what personal information we collect, to request deletion of your personal information, and to opt out of the sale of your personal information. We do not sell personal information. To exercise your rights, contact us at the address below.
To exercise any of your rights, contact us at support@buzzbotdoorapp.com. We will respond within 30 days.
Children
BuzzBot is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, please contact us and we will delete it promptly.
Changes to this policy
If we make material changes to this privacy policy, we will notify you via the app and update the “last updated” date above. Continued use of BuzzBot after changes are posted constitutes acceptance of the revised policy.
Contact
Becker Capital Ventures LLC
Privacy inquiries: support@buzzbotdoorapp.com