Privacy Policy - Time Audit

Last updated 10/07/2025.

Who we are

Our website address is: https://timeauditapp.com.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Payment Processing

TimeAudit uses Stripe, a third-party payment processor, to handle subscription payments. When you make a payment:

– Stripe collects and processes your payment information (credit card details, billing address)

– TimeAudit does not store or have access to your full payment card information

– Stripe’s privacy policy applies to payment data: https://stripe.com/privacy

– We store your Stripe customer ID and subscription status to manage your account

For more information about how Stripe handles your payment data, please review Stripe’s privacy policy.

iOS Mobile Application Data Collection

iOS Mobile Application

When you use the TimeAudit iOS mobile application, we collect the following information:

Account Information:

– Email address and name (required for account creation)

– Timezone preference

– Authentication tokens (stored securely in iOS Keychain, never transmitted)

Time Tracking Data:

– Calendar events imported from your Google Calendar

– Ratings (1-10 scale) you assign to time entries

– Comments and notes you add to events

– Category assignments for organizing your time

Productivity Metrics:

– Daily tasks and metrics you create

– Completion status of your metrics

– Historical completion data

Onboarding and Preferences:

– Onboarding progress and completion status

– User preferences and survey responses collected during onboarding

All data collected through the iOS app is stored securely on our servers and is accessible through your account.

Push Notifications

TimeAudit iOS app uses push notifications to:

– Remind you to rate completed time entries

– Provide productivity updates and progress notifications

You can control notification preferences at any time through:

– iOS Settings > TimeAudit > Notifications

– Within the TimeAudit app settings

We do not use push notifications for marketing purposes. Notification data is processed locally on your device and is not transmitted to third parties.

iOS Application Security

The TimeAudit iOS app implements the following security measures:

– Authentication tokens are stored in iOS Keychain, which provides hardware-encrypted storage

– All API communications use HTTPS/TLS encryption

– No sensitive data is stored in app files or UserDefaults

– The app follows Apple’s App Transport Security requirements

Your data is transmitted securely to our servers, which are protected by industry-standard security measures including encryption at rest and in transit.

iOS App Data Retention

Data collected through the iOS app is retained as follows:

– Account information: Retained while your account is active

– Time tracking data (events, ratings, comments): Retained until you delete your account or specific data

– Productivity metrics: Retained until you delete your account or specific metrics

– Onboarding data: Retained to improve user experience, can be deleted upon account deletion

You can delete your account and all associated data at any time through:

– The Profile section in the iOS app

– By contacting support at [your support email]

Upon account deletion, all data is permanently removed from our servers within 30 days, except where we are legally required to retain certain information.

Exercising Your Rights Through the iOS App

You can exercise your data rights in the following ways:

– **View Your Data**: All your data is accessible through the TimeAudit iOS app

– **Edit Your Data**: Update your profile, events, ratings, and metrics directly in the app

– **Delete Your Data**:

– Delete individual events, ratings, or metrics within the app

– Delete your entire account from the Profile section

– **Export Your Data**: Request a copy of your data by contacting support at support [at] timeauditapp . com

– **Opt-Out of Notifications**: Manage notification preferences in iOS Settings or app settings

GDPR compliance:

– Right to access: Contact support to receive a copy of your data

– Right to rectification: Edit your data directly in the app

– Right to erasure: Delete your account through the app

– Right to data portability: Request data export in machine-readable format

– Right to object: Opt-out of non-essential data processing

Google API

Time Audit App’s use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.

How we Use Google API Data

Time Audit imports events from your Google calendar. We do not make any changes to your information in Google. When using Time Audit all of the ratings and comments you make on events are stored on Time Audit’s servers.

Time Audit stores details on how to retrieve events from Google, which you can cancel at anytime.

We do not share your information with anyone. You can delete your account and Google events from our servers from the profile section in your account.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

We do not sell your personal information to third parties. We may share your data only in the following limited circumstances:

– **Service Providers**: We use third-party services that help us operate the app:

– Stripe (payment processing) – see Payment Processing section above

– Google Calendar API (calendar data import) – see Google API section above

– Hosting and infrastructure providers (data storage and processing)

– **Legal Requirements**: We may disclose information if required by law, court order, or government regulation

– **Business Transfers**: In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction

All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

Contact Us About Privacy

If you have questions about this privacy policy or wish to exercise your privacy rights, please contact us:

Email: support [at] timeauditapp.com

Website: https://timeauditapp.com

We will respond to privacy inquiries within 30 days.

Children’s Privacy

TimeAudit is not intended for users under the age of 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately and we will delete that information.

If you are between 13 and 18 years old, you must have your parent’s or guardian’s permission to use TimeAudit.

International Users and GDPR Compliance

If you are located in the European Economic Area (EEA), United Kingdom, or other jurisdictions with similar data protection laws, you have additional rights under the General Data Protection Regulation (GDPR):

– Right to access your personal data

– Right to rectification of inaccurate data

– Right to erasure (“right to be forgotten”)

– Right to restrict processing

– Right to data portability

– Right to object to processing

– Right to withdraw consent

To exercise these rights, please contact us at support [at] timeauditapp.com. We will respond within one month.

Our legal basis for processing your data:

– Contractual necessity: To provide the TimeAudit service

– Legitimate interests: To improve our service and prevent fraud

– Consent: For optional features like push notifications

Changes to This Privacy Policy

We may update this privacy policy from time to time. When we make changes:

– We will update the “Last Updated” date at the top of this policy

– For significant changes, we will notify you through:

– Email notification (if you have an account)

– In-app notification

– Prominent notice on our website

Your continued use of TimeAudit after changes become effective constitutes acceptance of the updated policy.