Privacy Policy for Time Tracker

Last Updated: December 16, 2024

Introduction

Time Tracker ("we", "our", or "the app") is a time tracking application that helps you log and track time spent on projects. This Privacy Policy explains how we collect, use, store, and protect your information when you use our mobile application.

Developer Information

App Name: Time Tracker
Developer: Light of Data
Contact: info@lightofdata.earth

Information We Collect

1. Account Information

When you sign in to Time Tracker using Google Sign-In, we collect:

• Your Google account email address
• Your Google account profile name
• Your Google account profile picture (if available)
• A unique user identifier provided by Google

2. Time Tracking Data

The app collects and stores the following information you create:

• Projects: Project names, descriptions, client associations, and hourly rates
• Clients: Client names and contact information you enter
• Tasks: Task names and project associations
• Time Entries: Start times, end times, descriptions, and associated projects/tasks
• Settings: Your app preferences and configuration

3. Calendar Data (Optional)

If you choose to enable calendar synchronization:

• Calendar Access: We access your Google Calendar or Outlook Calendar (only if you explicitly enable this feature)
• Calendar Events: We read and write calendar events to sync with your time entries
• Calendar Metadata: Calendar IDs and event IDs to maintain synchronization

The app uses calendar data solely to:

• Create calendar events from your time entries
• Update calendar events when you modify time entries
• Delete calendar events when you delete time entries
• Import time entries from calendar events you select

Calendar sync is opt-in and can be disabled at any time in Settings.

4. Technical and Device Information

We may collect:

• Device type and operating system version (for app compatibility)
• App version information
• Error logs and crash reports (to improve app stability)

5. Anonymous Usage Analytics (Optional)

To help us understand how the app is used and improve the user experience, we may collect anonymous usage data through Firebase Analytics:

• App Interactions: Which screens you visit, buttons you click, and features you use
• Usage Patterns: How long you spend in the app and how often you use certain features
• Performance Data: App launch times, response times, and technical performance metrics
• Anonymous Device Information: Device model, OS version, language, and region (for compatibility and localization)

Important:

• This data is collected anonymously and is not linked to your personal identity or account
• You can opt out of analytics collection at any time in the app Settings
• No time tracking data, project names, client information, or calendar data is included in analytics

6. Local Storage

The app uses local storage on your device to:

• Cache data for offline functionality
• Store app preferences and settings
• Enable offline time tracking

How We Use Your Information

We use the collected information to:

1. Provide Core Functionality: Enable time tracking, project management, and reporting features
2. Synchronization: Sync your data across your devices using PowerSync and Supabase
3. Calendar Integration: Sync time entries with your external calendars (when enabled)
4. Offline Functionality: Allow you to track time without an internet connection using local caching
5. Authentication: Verify your identity using Google Sign-In
6. Improve the App: Analyze anonymous usage patterns to understand which features are most valuable, identify usability issues, fix bugs, and improve performance
7. Product Development: Use aggregated, anonymous analytics to guide feature development and prioritization

Data Storage and Security

Storage Location

Your data is stored:

• Cloud Database: Supabase (a secure PostgreSQL-based backend service)
• Local Device: Cached data using PowerSync (SQLite-based) for offline access and synchronization
• Calendar Providers: Google Calendar or Outlook (only if you enable calendar sync)

Security Measures

We implement industry-standard security practices:

• Encryption in Transit: All data transmitted between your device and our servers uses HTTPS/TLS encryption
• Authentication: Secure authentication via Google Sign-In OAuth 2.0
• Database Security: Supabase provides row-level security and encrypted storage
• Access Control: Your data is associated with your unique user ID and is not accessible to other users

Data Retention

• Active Accounts: Data is retained as long as your account is active
• Account Deletion: If you delete your account, all associated data will be permanently deleted from our servers within 30 days
• Local Data: Cached data on your device is deleted when you uninstall the app or clear app data

Data Sharing and Third Parties

We Do NOT

• Sell your personal information to third parties
• Share your data with advertisers
• Use your data for marketing purposes
• Access your calendar data without your explicit permission

Third-Party Services We Use

1. Google Sign-In: For secure authentication (Google Privacy Policy)
2. Supabase: For cloud data storage and synchronization (Supabase Privacy Policy)
3. PowerSync: For offline data synchronization between your device and cloud database (PowerSync Privacy Policy)
4. Firebase Analytics: For anonymous usage analytics (Firebase/Google Privacy Policy)
5. Google Calendar API: Only when you enable calendar sync (Google API Services User Data Policy)
6. Microsoft Graph API: Only when you enable Outlook calendar sync (Microsoft Privacy Statement)

Each third-party service has its own privacy policy governing their use of your information.

Your Rights and Choices

Access and Control

You have the right to:

• Access Your Data: View all your time tracking data within the app
• Edit Your Data: Modify or update your projects, clients, tasks, and time entries
• Delete Your Data: Delete individual entries or request complete account deletion
• Export Your Data: Export your time tracking data (functionality may vary by version)

Calendar Sync Control

You can:

• Enable or disable calendar synchronization at any time in Settings
• Revoke calendar access permissions through your Google or Microsoft account settings
• Choose which calendars to sync with

Analytics Control

You can:

• Opt out of anonymous usage analytics at any time in the app Settings
• When opted out, no analytics data will be collected or sent to Firebase Analytics
• Your choice is stored locally and respected across all app sessions

Disable Google Sign-In

To revoke Time Tracker's access to your Google account:

1. Visit your Google Account settings: https://myaccount.google.com/permissions
2. Find "Time Tracker" in the list of apps
3. Click "Remove Access"

Children's Privacy

Time Tracker is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately, and we will delete that information.

International Data Transfers

Your data may be stored and processed in servers located in different countries where Supabase operates. By using the app, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make changes:

• We will update the "Last Updated" date at the top of this policy
• Significant changes will be communicated through the app or via email
• Your continued use of the app after changes constitutes acceptance of the updated policy

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

• Notify affected users within 72 hours of discovering the breach
• Provide details about what information was compromised
• Explain steps we are taking to address the breach
• Advise you on actions you can take to protect yourself

Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:

Email: support@lightofdata.earth

Legal Compliance

This app complies with:

• GDPR (General Data Protection Regulation) for users in the European Union
• CCPA (California Consumer Privacy Act) for users in California
• Google Play Developer Policies
• Google API Services User Data Policy (for Google Sign-In and Calendar API usage)

Your GDPR Rights (for EU users)

Under GDPR, you have the right to:

• Request access to your personal data
• Request correction of your personal data
• Request erasure of your personal data
• Object to processing of your personal data
• Request restriction of processing your personal data
• Request data portability
• Withdraw consent at any time

To exercise these rights, please contact us using the information above.

Consent

By using Time Tracker, you consent to this Privacy Policy and agree to its terms.