Privacy Policy Parrot application

Privacy Policy Parrot application

Last updated: 13 May 2026

Parrot Consulting ("we", "us", "our") operates the Parrot platform, an AI-powered RFP and knowledge management system. This Privacy Policy explains how we collect, use, and protect information when you use Parrot, including when you connect third-party cloud storage accounts.

1. Information We Collect

1.1 Account Information

When you access Parrot, we collect basic account information including your name, email address, and role within your organisation. This information is provided by your organisation's administrator.

1.2 Documents and Files

When you use Parrot's Knowledge Base (Brains) feature, documents you upload or sync from connected cloud storage are stored on Parrot's secure servers for the purpose of AI-powered document analysis and search.

1.3 Google Drive Integration

If you choose to connect a Google Drive account, Parrot requests read-only access to your Google Drive (drive.readonly scope). We use this access solely to:

  • Copy selected files from your chosen Google Drive folder to Parrot's Knowledge Base
  • Detect when files have been removed from the remote folder

We do not modify, delete, or share your Google Drive files. We do not access any files outside the folder you explicitly select during setup. You manage user access yourself; users you give access to view this data, will have access; that is outside the controle of Parrot Consulting

1.4 Usage Data

We may collect technical usage data such as login timestamps and feature usage for operational and security purposes. We do not use this data for advertising.

2. How We Use Your Information

We use the information we collect to:

  • Provide and operate the Parrot platform
  • Process and index documents for AI-powered search and analysis
  • Sync documents from connected cloud storage on the schedule you configure
  • Send notifications related to document processing and sync status
  • Maintain the security and reliability of the platform

3. Data Storage and Security

All data is stored on servers located within the European Economic Area (EEA). We implement appropriate technical and organisational measures to protect your data against unauthorised access, loss, or disclosure, including:

  • Encryption of data at rest and in transit (TLS 1.3+)
  • Encrypted storage of third-party OAuth tokens and credentials
  • Role-based access controls limiting data access to authorised personnel

4. Data Sharing

We do not sell, rent, or share your personal data or document content with third parties, except:

  • AI processing: Document content may be sent to OpenAI or Google's AI APIs for the purpose of generating embeddings and answering queries. These providers process data under their own privacy policies and data processing agreements.
  • Legal obligations: We may disclose data if required by law or to protect the rights and safety of our users.

5. Google API Scopes — Limited Use Disclosure

Parrot's use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

  • We access Google Drive only with the drive.readonly scope
  • We use this access only to copy documents into the Parrot Knowledge Base as directed by the user
  • We do not use Google user data to serve advertisements or for any purpose unrelated to the core Parrot service
  • We do not allow humans to read your Google Drive data unless you have given explicit permission or it is required for security investigation

6. Data Retention

Documents synced from Google Drive or uploaded manually are retained for as long as your organisation's account is active and the document has not been deleted. When a document is deleted (either manually or because it was removed from the remote source), it is permanently removed from all Parrot storage within a reasonable period (<24 hrs).

OAuth tokens for connected accounts are stored in encrypted form and are deleted immediately upon disconnection.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing

Requests can be submitted to your organisation's Parrot administrator or directly to us at the contact address below.

8. Cookies

Parrot uses session cookies strictly necessary for authentication. We do not use tracking or advertising cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of material changes via the platform or by email. Continued use of Parrot after changes constitutes acceptance of the updated policy.

10. Contact

For privacy-related questions or requests, please contact:

Parrot Consulting
Email: [email protected]
Website: https://parrot.consulting