This document describes the terms of use and privacy policy for the Agenda1.app website and the Agenda1 application available through the Apple Store and Google Play.

By using the Agenda1 website or application, you declare your agreement with these terms. If you do not agree with any of the conditions set forth herein, we recommend that you do not use the service.

1. Who We Are

Agenda1 is a scheduling platform primarily designed for schools, allowing authorized users (such as administration, teachers, students, or guardians, depending on each institution's configuration) to make and consult appointments.

2. Processing of Personal Data

Ensuring the confidentiality of personal data of our website and application users is important to Agenda1.

All personal data processed by Agenda1 will be used solely for the provision of scheduling services offered by the platform and will be protected in accordance with applicable data protection laws and regulations, including but not limited to:

Data Protection Framework by Jurisdiction:

European Union & United Kingdom:

  • General Data Protection Regulation (GDPR - Regulation EU 2016/679)
  • UK GDPR and Data Protection Act 2018 (for UK users)

United States:

  • California Consumer Privacy Act / California Privacy Rights Act (CCPA/CPRA) for California residents
  • Virginia Consumer Data Protection Act (VCDPA)
  • Colorado Privacy Act (CPA)
  • Other applicable state privacy laws

Australia:

  • Privacy Act 1988 and Australian Privacy Principles (APPs)

Canada:

  • Personal Information Protection and Electronic Documents Act (PIPEDA)

South Africa:

  • Protection of Personal Information Act (POPIA)

Other Jurisdictions: Users from other jurisdictions should refer to their local data protection authority and applicable privacy legislation.

The personal information collected may include, depending on service requirements and school configuration:

  • Name
  • Email address
  • Telephone and/or mobile number
  • School-related identification data (e.g., class, role, unit)
  • Other information strictly necessary for the use of the scheduling system

We do not use this information for third-party marketing purposes, data sales, or commercial profiling.

3. Navigation Data and Logs

The Agenda1.app website and its associated application do not collect navigation data for behavioral tracking, marketing profile creation, or information sales purposes.

The stored data is only that which is necessary to:

  • Enable the operation of the login and scheduling system
  • Ensure basic security, service integrity, and abuse prevention

We do not use navigation data from users or schools for purposes external to Agenda1's operation.

4. Access to Scheduling Data

Scheduling data is restricted to users belonging to the same school. This means that:

  • Users from one school do not have access to the scheduling data of another school.
  • Each institution has access only to information related to its own environment.

We do not sell, rent, or transfer scheduling data to third parties.

5. Data Sharing with Third Parties

Agenda1 does not sell, share, or transfer personal data or scheduling data to third parties for marketing, advertising, or any other commercial purpose.

Data may be shared only when:

  • There is a legal or regulatory obligation;
  • There is a court order or request from a competent authority;
  • It is strictly necessary for the technical operation of the service (for example, IT infrastructure providers), always with contracts that ensure adequate data protection.

6. Storage, Security, and Encryption

Agenda1 data is stored on infrastructure hosted on Amazon Web Services (AWS):

  • Database: User data, schedules, and configurations are stored in an AWS-managed database.
  • File storage: Customization images (backgrounds) are stored in Amazon S3 buckets, with access restricted by encrypted keys.

We adopt the following security practices:

  • Encryption of data at rest (in the database and S3) and in transit (during client-server communication via HTTPS).
  • Restricted access: S3 files are accessible only through encrypted access keys, without public URLs.
  • Isolated environments by configuration, preventing data from different institutions from mixing.
  • Access controls through authentication (username and password or other mechanisms adopted by the school).

Despite adopting good security practices, no system is 100% immune to risks. Therefore, we work continuously to maintain an adequate level of protection.

7. Use of Artificial Intelligence (AI)

Currently, Agenda1 does not have integration with Artificial Intelligence (AI) services for analysis, recommendation, or any other type of additional automated data processing.

Information processing is focused solely on providing the scheduling service.

8. Cookies and Similar Technologies

The Agenda1.app website may use strictly necessary cookies to:

  • Maintain active login sessions;
  • Ensure the basic operation of the application and authenticated areas.

We do not use cookies for the purpose of tracking user navigation on other websites, nor to build behavioral advertising profiles.

Users may, if they wish, control or disable cookies in their browser settings. However, this may affect the proper functioning of some features of the website or application.

9. Application Permissions

The Agenda1 application may request the following permissions on your device:

9.1 Camera Access

The application requests camera access exclusively for the QR Code reading functionality.

This functionality allows authorized users to perform quick actions, such as:

  • Identification of rooms or resources
  • Quick access to specific schedules
  • Other verification functionalities within the school environment

Important: Agenda1 does not capture, store, or transmit camera images for any other purpose. Camera access is used only in real-time for reading QR codes, without recording photos or videos.

9.2 Photo Library Access

The application may request access to the device's photo library exclusively to allow customization of Agenda backgrounds.

This functionality allows the user to:

  • Select an image from their gallery to use as a visual background in their agendas
  • Customize the visual experience of the application according to their preferences

9.3 Image Storage (AWS S3)

Images selected by the user for background customization are stored securely in Amazon S3 (Simple Storage Service) buckets.

We adopt the following security measures for these images:

  • Encrypted access: Images are accessible only through encrypted access keys
  • Restricted use: Images are loaded exclusively in the frontend application, without public exposure
  • User/school isolation: Each image is associated with the user's or school's context, preventing unauthorized access
  • No sharing: Customization images are not sold, transferred, or shared with third parties

Users may, at any time, remove customization images through the application settings.

10. Links to Third-Party Sites

Agenda1 may contain links to other websites that, in our view, may contain information or tools useful to our visitors.

Our privacy policy does not apply to third-party sites. When visiting another site from a link on Agenda1, users should read the privacy policy of the site being visited.

We are not responsible for the privacy policies or content of these third-party sites.

11. Data Retention and Deletion

Certain information is necessary to provide the services, so we can only delete this information after deletion of the user's or institution's account.

  • Scheduling data: Is maintained for a minimum period of 2 (two) years, and may be deleted or anonymized after this period, as part of database maintenance routines.

  • Account deletion: Users may request deletion of their account through our Contact page. After the request, the account will be permanently deleted from Agenda1 within 30 (thirty) days, except for cases of mandatory record retention provided for by law or regulation.

In the case of users or schools that have already made payments through the application, some information associated with transactions may be maintained in our database for the period necessary for:

  • Accounting purposes
  • Tax purposes
  • Compliance with legal obligations

12. Updates to These Terms

Use of Agenda1 assumes acceptance of this Privacy Agreement and these Terms of Use.

The Agenda1 team reserves the right to change this document at any time, without prior notice. Whenever there is a relevant update, we recommend that users consult this page again to stay informed about how we handle data.

The date of the last update may be indicated at the end of this document.

13. Contact

In case of questions, requests related to personal data, account deletion, or exercise of rights provided for under applicable data protection laws (including GDPR, CCPA, PIPEDA, Privacy Act 1988, POPIA, or other applicable legislation), users may contact us through our Contact page available on the Agenda1.app website.

Data Protection Authority References

Users may also contact their local data protection authority: