Privacy Policy

Last updated: December 18, 2025

1. Information We Collect

Account Information

When you create an account, we collect:

  • Name and email address
  • Password (stored securely using bcrypt hashing)
  • Phone number (optional, for SMS notifications)
  • Timezone preference

Usage Data

We automatically collect certain information when you use the Service:

  • IP address and browser user agent
  • Pages visited and features used
  • Session duration and activity timestamps
  • Device type and operating system

Location Data (Premium Feature)

If you enable geolocation features, we may collect your location to provide location-based task reminders. This is entirely optional and can be disabled at any time.

User Content

We store the content you create including projects, tasks, categories, locations, and templates.

2. How We Use Your Information

We use your information to:

  • Provide and maintain the Service
  • Send email notifications and daily digests (if enabled)
  • Send SMS reminders (if opted in, premium feature)
  • Process payments through Stripe
  • Improve the Service through analytics
  • Respond to support requests
  • Detect and prevent fraud or abuse

3. Information Sharing

We do not sell your personal information. We may share data with:

  • Service Providers: Stripe (payments), Postmark (email), Twilio (SMS), Sentry (error tracking)
  • Collaborators: Users you invite to share projects can see project and task data
  • Legal Requirements: When required by law or to protect our rights

4. Data Security

We implement industry-standard security measures:

  • Passwords are hashed using bcrypt
  • All data transmitted over HTTPS/TLS
  • Database access restricted to internal network only
  • Regular security audits and updates
  • Session tokens with automatic expiry (36 hours of inactivity)

5. SMS Communications

If you opt in to SMS notifications:

  • We record your opt-in timestamp and IP address for compliance
  • Messages are sent via Twilio
  • Standard message and data rates may apply
  • You can opt out at any time in your account settings

6. Cookies and Tracking

We use essential cookies for authentication and session management. We use Ahoy for analytics to understand how users interact with the Service. Analytics data is only accessible to administrators and staff.

7. Data Retention

We retain your data as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or business purposes.

8. Your Rights

You have the right to:

  • Access your personal data
  • Export your data in JSON format (premium feature)
  • Correct inaccurate information
  • Delete your account and associated data
  • Opt out of marketing communications
  • Disable location tracking

9. Demo Account

The demo account (demo@tasknibbler.com) is for demonstration purposes only. Data in the demo account is reset nightly and should not be used for real tasks. No emails are sent to the demo account.

10. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect personal information from children under 13.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service.

12. Contact Us

For privacy-related questions or to exercise your rights, contact us at privacy@tasknibbler.com.

← Back to Home