Privacy Policy

1. Information We Collect

We collect information that you provide directly to us, information generated during your use of the Service, and technical data from your device.

• Personal Information: Includes your name, email address, password, and payment information when you subscribe to a paid plan.
• User Content: Any data you input into the Service, such as tasks, notes, financial entries, and goals.
• Usage Data: Information about how you interact with our Service, such as feature usage, clicks, and session duration.
• Technical Data: Includes your IP address, browser type, operating system, and cookie data.

2. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Performance of a Contract: To provide and maintain the Service as described in our Terms of Service.
• Legitimate Interests: For purposes such as improving the Service, security, and fraud prevention.
• Consent: For specific purposes where we request your consent, such as using your User Content to train global AI models. You may withdraw your consent at any time.

3. How We Use Your Information

Your information is used to: provide, operate, and maintain the Service; improve, personalize, and expand the Service; understand and analyze how you use the Service; develop new products and features; communicate with you for customer service and marketing purposes; and process transactions.

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information with the following third parties:

• Service Providers: We engage third-party companies (e.g., cloud hosting, payment processors) to help us provide the Service. These providers are bound by confidentiality obligations.
• Legal Compliance: We may disclose your information if required by law, subpoena, or other legal process.

5. Data Retention and Security

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. We implement robust technical and organizational measures to protect your data, including encryption in transit and at rest.

6. Your Data Rights (GDPR & CCPA)

You have certain rights regarding your personal data, including the right to access, correct, update, or request deletion of your data. You can exercise these rights through your account settings or by contacting us directly. Residents of the EEA and California may have additional rights afforded to them under their respective regulations.

7. International Data Transfers

Your information may be transferred to, and maintained on, computers located outside of your state, province, or country. We ensure that such transfers comply with applicable laws and that your data is protected by appropriate safeguards.

8. Children's Privacy

Our Service is not directed to individuals under the age of 13. We do not knowingly collect personal data from children under 13. If we become aware that we have, we will take steps to delete such information.