Time Tracker App

Privacy Policy

Last updated: May 25, 2026

{{COMPANY_NAME}} (“we”, “us”, or “our”) operates Time Tracker App. This policy explains how we collect, use, and protect your information.

1. Information We Collect

Information you provide

  • Account information: email address, full name, password
  • Workspace data: workspace name, projects, clients, tags
  • Time entries: descriptions, durations, timestamps, notes
  • Billing information: handled by Stripe — we do not store payment card data

Information collected automatically

  • Usage data: pages visited, features used, actions taken
  • Technical data: IP address, browser type, operating system
  • Cookies: session tokens for authentication

2. How We Use Your Information

  • To provide and improve the Time Tracker App service
  • To process payments via Stripe
  • To send transactional emails (welcome, trial reminders, payment receipts)
  • To send AI-generated weekly summaries (if opted in)
  • To detect and prevent fraud or abuse
  • To comply with legal obligations

3. AI Features and Data

When you use AI features (project suggestions, weekly summaries), your time entry descriptions and project names are sent to Anthropic's API for processing. We do not use your data to train AI models. AI features can be disabled in your notification preferences.

4. Data Sharing

We do not sell your personal data. We share data with:

  • Supabase — database and authentication provider
  • Stripe — payment processing
  • Resend — transactional email delivery
  • Anthropic — AI features (opt-in)
  • Vercel — hosting and infrastructure

5. Data Retention

Your data is retained while your account is active. Upon account deletion, your data is removed within 30 days. Audit logs are retained for 90 days for Business plan workspaces.

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Correct inaccurate data
  • Request deletion of your data
  • Export your data in a machine-readable format
  • Opt out of non-essential communications

Contact us at {{SUPPORT_EMAIL}} to exercise these rights.

7. Security

We use industry-standard security measures including HTTPS encryption, row-level security on all database tables, and Supabase's built-in auth security. Passwords are hashed and never stored in plaintext.

8. Cookies

We use strictly necessary cookies for authentication sessions. We do not use advertising or tracking cookies.

9. Children

The service is not directed to children under 13. We do not knowingly collect data from children.

10. Changes

We may update this policy. We will notify you of significant changes by email. Continued use after changes constitutes acceptance.

11. Contact

Questions or concerns? Contact our privacy team at {{PRIVACY_EMAIL}}.