How it worksfeedback

Operational notice

Privacy & Security

Can We Meet is designed to comply with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, and to follow privacy-by-design principles. This page is our operational privacy and security notice — it is not legal advice. Last updated 2026-07-04.

1. Who we are

Can We Meet ("we", "us") provides the meeting coordination service available at canwemeet.org. We act as the data controller for the personal data described in this notice.

If Can We Meet is not yet operated through an incorporated company, the current operator/controller is the individual project owner. We have not appointed a formal Data Protection Officer; our privacy contact is reachable at Hello@canwemeet.org.

2. What data we collect

3. Why we collect it

4. Our lawful basis under UK GDPR

We rely on more than one lawful basis depending on the purpose. Consent is used only for optional cookies, optional marketing, or diagnostic snapshots you actively choose to share.

PurposeDataLikely lawful basis
Creating and managing meetingsName, email, meeting title, availability, time, location, invite statusContract / steps requested by the user
Sending invites and confirmationsParticipant name/email, meeting details, invite statusContract / legitimate interests
Protected Meeting ModeMeeting title, generalised location, exact location, confirmation status, deletion statusContract / legitimate interests
Labs diagnostics and product improvementPrivacy-safe diagnostic events, error codes, browser/device type, pseudonymous session IDs, aggregated usage patternsLegitimate interests
Security, abuse prevention and admin audit logsSecurity logs, admin actions, reveal logs, limited technical metadataLegitimate interests / legal obligation where applicable
Optional analytics cookiesAnalytics identifiers or usage data, only where usedConsent
Responding to privacy requestsContact details, request details, correspondenceLegal obligation / legitimate interests

5. How Normal Mode works

Normal Mode is the default flow. You (or invitees) type into the chat; we store the meeting record so you can come back to it, share it, receive replies and confirm a time. Titles and locations remain as you enter them. We keep this data only as long as it is useful for Recents, editing and support — see Retention.

6. How Protected Meeting Mode works

Once deleted, we may no longer be able to retrieve or even identify a specific Protected Meeting — that is by design.

7. Labs diagnostics and product improvement

Labs helps us find bugs, understand failure patterns and improve the product. Labs learns from structure, errors and outcomes — not raw private meeting content.

Can We Meet uses AI to help draft messages and extract meeting details. We do not use raw Protected Meeting content for AI training or Labs learning by default, and we do not sell user data to third parties or provide it for training external AI models.

8. Cookies and similar technologies

We keep cookies and local-storage entries to a minimum. There are three groups:

9. Data retention and deletion

10. Who we share data with / subprocessors

We do not sell personal data. We use these categories of subprocessors:

A current subprocessor list is available on request from Hello@canwemeet.org. We only list providers we actually use.

11. International transfers

Some subprocessors may process data outside the UK/EEA. Where that happens, we rely on appropriate safeguards (such as the UK International Data Transfer Agreement or Addendum to the EU Standard Contractual Clauses) where required. We do not make unsupported claims about exact data location.

12. Security measures

13. Your rights

Under UK GDPR you can ask us to:

Many users aren't signed in. To act on your request, we may need enough information to locate the relevant meeting — for example the meeting link or invite email. Once Protected Meeting data has been deleted, we may no longer be able to retrieve or identify it.

14. How to contact us

Email our privacy contact at Hello@canwemeet.org. Please put "Privacy request" in the subject line.

15. How to complain to the ICO

Please contact us first — we'd like the chance to put things right. You also have the right to lodge a complaint with the UK Information Commissioner's Office (ICO) at ico.org.uk/make-a-complaint.

16. Changes to this notice

We may update this notice as the service and our subprocessors change. Material changes will be highlighted at the top of this page.