Skip to main content
Travent

Privacy Policy

Last updated: 2026-06-29

1. Introduction and Who We Are

Travent is operated by Meged Solutions ("Travent", "we", "us"), based in Ramla, Israel. We are the data controller for the personal data described in this Policy. This Privacy Policy explains what personal data we process, why, on what legal basis, with whom we share it, and the rights you have. For any privacy question or to exercise your rights, contact us at Contact@Travent.ai. This satisfies our duty to identify the controller and its contact details under Section 11 of the Israeli Protection of Privacy Law and Article 13 of the GDPR.

2. Scope and Legal Frameworks

We process personal data in accordance with the Israeli Protection of Privacy Law, 5741-1981, as amended by Amendment No. 13 (in force since 14 August 2025), and the Privacy Protection (Data Security) Regulations, 5777-2017. Where we offer the Service to users in the European Economic Area (EEA) or the United Kingdom, we also comply with the EU General Data Protection Regulation (GDPR) and the UK GDPR. This Policy applies to the Travent application and our marketing website.

3. Our Role and What Stays in Your Google Calendar

Travent works on top of your own Google Calendar. When you create a Space, we create a dedicated, app-owned calendar inside your Google account and read its events live to display them in Travent. Your event content - titles, descriptions, dates, times, locations, and attendees - stays in your Google Calendar and is never copied to or stored on Travent's servers; for that content Google is the processor under your own Google account. We are the controller only for the limited account and Space data we actually store, described below. We also never store your Google login credentials or OAuth tokens - these are held by our authentication provider, Clerk.

4. Information We Collect

(a) Account data (via Google sign-in through Clerk): your name, email address, profile picture, and timezone. (b) Service data we store: the names and descriptions of Spaces you create, your subscription and follow relationships, and your in-app preferences. (c) Data we do NOT store: your event content (read live from Google Calendar) and your Google credentials/OAuth tokens (held by Clerk). (d) Data collected automatically: security and audit logs that record actions taken in the Service together with your IP address and browser user-agent, plus strictly necessary cookies. (e) Analytics and marketing data: with your consent we use Microsoft Clarity (session analytics) and Google Analytics on our website, and the Meta Pixel and Meta Conversions API for advertising measurement. The Meta Pixel runs on our public marketing pages, while the Meta Conversions API reports certain conversions server-to-server (including in-app events such as completing registration, upgrading to premium, and joining a Space). All of this is loaded or sent only after you accept the matching analytics or marketing cookies, as described in Sections 7 and 8.

5. Legal Bases for Processing

Under the GDPR we rely on: performance of a contract, to create your account and provide the Service (Article 6(1)(b)); your consent, for analytics and marketing cookies and the related tracking, which you may withdraw at any time (Articles 6(1)(a) and 7); our legitimate interests, to keep the Service secure, prevent abuse, and maintain audit logs (Article 6(1)(f)); and compliance with legal obligations (Article 6(1)(c)). Under Israeli law, processing is based on your consent and is limited to the purposes for which the data was provided, in line with Sections 1-2 and the purpose-limitation principle in Section 2(9) of the Protection of Privacy Law.

6. How We Use Your Information

We use your information only to: (a) provide, operate, and maintain Travent and your Spaces; (b) display and sync events from your Google Calendar and notify you about Spaces you follow; (c) communicate with you about your account and the Service; (d) secure the Service, prevent fraud and abuse, and keep audit logs; and (e) measure and improve the Service and, on our marketing pages, our advertising. We do not use your data for any purpose incompatible with the purpose for which it was collected.

7. Cookies and Consent

We use strictly necessary cookies to run the Service (for example, Clerk authentication and your saved consent choice). Analytics and marketing technologies that are not strictly necessary are loaded only after you opt in through our cookie banner, where you can accept or reject the Analytics and Marketing categories separately and change your choice at any time. Full details, including cookie names and lifetimes, are in our Cookies Policy.

8. Analytics and Advertising

Subject to your consent, we use: Microsoft Clarity, which records aggregated session analytics (mouse movements, clicks, scrolls, and page interactions) to help us find usability issues; Google Analytics, to understand website traffic; and the Meta Pixel together with the Meta Conversions API, to measure advertising performance and build remarketing audiences. The Meta Pixel runs in the browser only on our public marketing pages. The Meta Conversions API additionally sends certain conversion events directly from our servers, including events that occur inside the app, namely completing registration, upgrading to premium, and joining a Space via invitation. The data we send to Meta may include a hashed version of your email address and first name, a stable account identifier (your authentication user ID), your IP address, browser user-agent, and the Meta cookies _fbp and _fbc; identifiers are hashed before they leave our servers. We never send your calendar event content, Space names, or other content you create to Meta. Both the Pixel and the Conversions API operate only after you accept marketing cookies, and you can withdraw consent at any time through the cookie banner or by clearing these cookies.

9. Data Sharing and Sub-Processors

We do not sell your personal data. We share data only with service providers (sub-processors / holders) that process it on our behalf, or where required by law: Clerk (authentication and Google OAuth); Neon (account and Space database, hosted in the EU); Vercel (application hosting); Google (Google Calendar and sign-in); Microsoft (Clarity analytics); and Meta (advertising measurement on our marketing pages, subject to consent). We may also disclose data to comply with a legal obligation, to protect our rights, safety, or property, or in connection with a merger or acquisition. Their privacy policies: Clerk (https://clerk.com/privacy), Google (https://policies.google.com/privacy), Neon (https://neon.tech/privacy-policy), Vercel (https://vercel.com/legal/privacy-policy), Microsoft Clarity (https://privacy.microsoft.com/en-us/privacystatement), and Meta (https://www.facebook.com/privacy/policy).

10. International Data Transfers

Your account and Space data is stored in the European Union (Frankfurt, Germany) via Neon. Some of our providers (such as Clerk, Microsoft, and Meta) may process data in other countries, including the United States. Where personal data is transferred outside the EEA, the UK, or Israel, we rely on appropriate safeguards under Chapter V of the GDPR, such as the European Commission's Standard Contractual Clauses or an adequacy decision. You may request more information about these safeguards using the contact details below.

11. Data Security

Both a controller and its processors are responsible for securing personal data under Section 17 of the Protection of Privacy Law and the Data Security Regulations, 5777-2017. We apply security measures appropriate to an intermediate ("benonit") security level, including encryption of data in transit (HTTPS/TLS), secure authentication, role-based access controls, and access and audit logging. No method of transmission or storage is completely secure, but we work to protect your data against unauthorized access, alteration, disclosure, or destruction.

12. Data Breach Notification

We document security events as required by Regulation 11 of the Data Security Regulations, 5777-2017. In the event of a severe security incident affecting our database, we will notify the Israeli Privacy Protection Authority's Registrar without delay and will inform affected individuals where required or directed. For users protected by the GDPR, we will notify the competent supervisory authority within 72 hours where the breach is likely to result in a risk to your rights, in line with Articles 33-34.

13. Data Retention

We retain your account and Space data for as long as your account is active. If you delete your account, we delete the associated personal data within 30 days, except where we must retain limited data to meet a legal obligation or to resolve disputes. Security and audit logs (including IP address and user-agent) are retained for up to 12 months and then deleted or anonymized. Event content is governed by your Google Calendar retention, not by us.

14. Your Rights

You can: access the personal data we hold about you (Section 13 of the Protection of Privacy Law; GDPR Article 15); correct or delete it (Section 14; GDPR Articles 16-17); restrict or object to certain processing (GDPR Articles 18 and 21); receive a copy in a portable format (GDPR Article 20); and withdraw consent to analytics or marketing at any time without affecting prior processing (GDPR Article 7(3)). To exercise any of these, contact us at Contact@Travent.ai; we respond within the timeframes required by law. If you believe your rights have been infringed, you may complain to the Israeli Privacy Protection Authority (https://www.gov.il/he/departments/the_privacy_protection_authority) and, if you are in the EEA or UK, to your local data protection supervisory authority (GDPR Article 77).

15. Children's Privacy

Travent is not directed to children under the age of 16 (or the minimum age of digital consent in your country), and we do not knowingly collect their personal data. If you believe a child has provided us with personal data, please contact us and we will delete it.

16. Data Protection Officer and Registration

Based on our activities, Travent is not required to appoint a Data Protection Officer under Section 17B1 of the Protection of Privacy Law (we do not fall within the statutory categories), and database registration is not required under Section 8A. We have nonetheless designated a privacy contact, reachable at Contact@Travent.ai, to handle privacy inquiries and requests.

17. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on the Service and updating the date above. Your continued use of the Service after such changes constitutes acceptance of the updated Policy.

18. Governing Law

This Privacy Policy is governed by the laws of the State of Israel, and any dispute is subject to the exclusive jurisdiction of the competent courts in Ramla, Israel. This does not deprive you of mandatory data-protection rights available under the law of your country of residence.

19. Contact Us

If you have any questions about this Privacy Policy or our data practices, or to exercise your rights, please contact us at Contact@Travent.ai.