Privacy Policy

1. Introduction

This Privacy Policy describes how the TimeTracker application ("App", "we", "us") collects, uses, stores, and protects data from users ("you", "your"). The App is a time tracking and project management application for teams.

This Privacy Policy applies to all platforms (iOS, Android, Web, and Desktop) and online access to the App.

2. Data Controller

Simon Kroismayr
For inquiries, please contact us at the information provided in Section 15.

3. Data Collected

3.1 Authentication Data

• Google Sign-In: Email address, name, profile picture
• Firebase Authentication: Email, password (hashed), user ID
• Authentication tokens and session data

3.2 User Profile and Account Data

• Full name
• Email address
• Profile picture
• Device information (manufacturer, model, OS version)
• User preferences and settings
• Timezone and language preferences

3.3 Time Tracking and Project Data

• Work time entries and timestamps
• Project names and descriptions
• Team information
• Tasks and their status
• Activity logs
• QR code scan data (for project identification)

3.4 Media and Files

• Uploaded images and videos
• Audio messages and voice memos
• Compressed image versions
• Video thumbnails
• File metadata (size, type, upload time)

3.5 Analytics and Usage Data

• Firebase Analytics: Page views, feature usage, errors/crashes
• App opening events
• Feature usage frequency and duration
• User flow analysis
• Error and exception logs

4. Data Storage and Cloud Services

4.1 Firebase Services

Your data is processed in the following Google Firebase services:

• Firebase Authentication: Secure user authentication
• Cloud Firestore: NoSQL database for user, project, and time data
• Firebase Storage: Cloud storage for images, videos, and files
• Firebase Cloud Functions: Serverless functions for backend logic
• Firebase Messaging: Push notifications
• Firebase Analytics: Usage analytics
• Firebase App Check: Security verification and fraud prevention

Google Firebase Privacy: https://firebase.google.com/support/privacy

4.2 Encryption

• Data transmission: SSL/TLS encryption
• Data at rest: Firebase encryption
• Sensitive data: Additional application-level encryption

5. Purpose of Data Processing

We use the collected data for the following purposes:

1. Providing App Functionality

• User management and authentication
• Time tracking and project management
• Team collaboration and communication
• Data synchronization across devices

2. Improving the App

• Error identification and fixing
• Performance monitoring
• Feature usage analytics
• User behavior analysis

3. Notifications

• Time-based reminders
• Team notifications
• Important app updates
• Only with user consent

4. Customer Support

• Fixing technical issues
• User support and help
• Account management

6. Data Security

We implement the following security measures:

• Encrypted Transmission: SSL/TLS for all data transfers
• Secure Authentication: Industry-standard authentication protocols
• Access Control: Role-based access and permissions
• Regular Audits: Security testing and vulnerability assessments
• Staff Training: Privacy awareness and security training
• Incident Response: Data breach response plan
• Firebase Security: Google manages additional infrastructure security

Note: Despite these measures, no system can guarantee 100% security.

7. User Rights

7.1 Right to Access

The right to know what data we store about you.

7.2 Right to Rectification

The right to correct inaccurate or incomplete data.

7.3 Right to Erasure ("Right to be Forgotten")

The right to have your data deleted, under certain conditions.

7.4 Right to Data Portability

The right to receive your data in a structured, common format.

7.5 Right to Object

The right to object to processing of your data.

Requesting Rights:

Contact us at: timetracker.track@gmail.com
We will respond within 30 days.

8. Data Deletion and Retention

8.1 Retention Policies

• Active User Accounts: Data stored as long as app is used
• Deleted Accounts: User data deleted within 30 days
• Backup Data: May exist for up to 90 days after deletion
• Analytics Data: Firebase Analytics retains data for 14 months
• Logs: Server logs retained for up to 30 days

8.2 Account Deletion

Users can delete their account:

1. In app settings
2. By email request to: timetracker.track@gmail.com

9. Children and Minors

The TimeTracker App is not intended for persons under 13 years of age. We do not knowingly collect data from children under 13 years old.

If we learn that we have collected data from a child under 13 years of age, we will delete it as quickly as possible.

10. Third-Party Privacy Policies

The app uses the following third-party services with their own privacy policies:

• Google Firebase: https://policies.google.com/privacy
• Google Sign-In: https://policies.google.com/privacy
• Firebase Analytics: https://support.google.com/analytics/answer/9019185

11. Changes to This Privacy Policy

We may update this Privacy Policy at any time. Important changes will:

• Be made with at least 30 days' notice
• Be displayed in the app
• Be published on our website

Last Update: January 2026

12. Contact Us

For privacy inquiries, complaints, or concerns, please contact:

Privacy Contact:
Email: timetracker.track@gmail.com
Response Times:
Simple inquiries: 7-10 days
Privacy requests: 30 days (legally required)

---

End of Privacy Policy
This Privacy Policy is effective as of January 25, 2026