Privacy Policy

Last updated: June 8, 2026

What We Collect

When you use Knock, we collect:

  • Account info: Your Google account email and name when you sign in
  • Calendar availability: Read-only access to your Google Calendar (event start/end times and your own RSVP status) to automatically show your door as Busy or Available. We never read or display event titles, descriptions, or attendees.
  • Meeting links: Permission to create calendar events on your behalf, used only to generate a Google Meet link when you let a visitor in. The temporary event is deleted immediately after the link is created.
  • Knock data: Visitor names, messages, and timestamps when someone knocks on your door
  • Usage data: Basic analytics to improve the service

How We Use It

  • To provide the Knock service (notifications, availability, meeting links)
  • To show your availability status based on calendar events
  • To generate a Google Meet link when you approve a visitor
  • To notify you when someone knocks
  • To improve and maintain the service

What We Don't Do

  • We don't sell your data to anyone
  • We don't share your calendar details with visitors (only Available/Busy/Away status)
  • We don't store your Google password
  • We don't access more calendar data than needed

Google API Services — Limited Use

Knock's use and transfer of information received from Google APIs to any other app will adhere to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • We use your Google Calendar data only to provide the user-facing features described above (availability status and Meet link generation).
  • We do not transfer or sell this data to third parties, except as needed to provide the service, comply with the law, or as part of a merger.
  • We do not use this data for advertising.
  • We do not allow humans to read this data unless we have your consent for specific support, the data is needed for security purposes or to comply with the law, or it is aggregated and anonymized.
  • We do not use Google user data to develop, improve, or train generalized AI or machine-learning models.

Data Storage

Your data is stored securely using Convex (our database provider). OAuth tokens are encrypted at rest. We retain knock history for 30 days, then automatically delete it.

Your Rights

You can:

  • Disconnect your Google Calendar at any time
  • Delete your account and all associated data
  • Export your data upon request

Cookies

We use essential cookies for authentication only. No tracking cookies or third-party advertising.

Contact

Questions? Email us at privacy@officedoor.co

Back to Home