Timello
Privacy-first

Privacy Policy

Your data is yours. Here's exactly how we handle it.

TimelloLast updated: February 4, 2026

TL;DR — The important bits

  • We collect only what's needed to run the app (account info, task data, basic usage analytics).
  • We never sell your data. No ads, no trackers, no data brokers.
  • Your data is stored encrypted in EU servers (Supabase), GDPR compliant.
  • You can export or delete your data anytime.

Introduction

Welcome to Timello ("we," "our," or "us"). We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application Timello (the "App").

Please read this Privacy Policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Information You Provide

Account Information

When you create an account, we collect:

  • Email address
  • Name (if provided through OAuth)
  • Profile picture (if provided through OAuth)

Task Data

When you use the App, we collect:

  • Task names and descriptions you create
  • Time tracking data (start time, end time, duration)
  • Tags and categories you assign to tasks
  • Any notes or additional information you add to tasks

Information Collected Automatically

Usage Data

We may collect information about how you access and use the App:

  • App usage patterns
  • Features used
  • Error logs and crash reports

Device Information

We may collect:

  • Device type and model
  • Operating system version
  • Unique device identifiers
  • Time zone settings

Information from Third-Party Services

If you choose to sign in using a third-party service (Google, Apple, or Facebook), we receive:

  • Basic profile information (name, email, profile picture)
  • Authentication tokens

We do not access your contacts, calendar, or other personal data from these services.

How We Use Your Information

We use the information we collect to:

  • Provide the Service: Create and manage your account, store your tasks and time tracking data, sync data across your devices
  • Improve the App: Analyze usage patterns to improve features and user experience
  • Communicate: Send important updates about the App, respond to your inquiries
  • Security: Protect against unauthorized access and ensure the security of our services

Data Storage and Security

Where We Store Your Data

Your data is stored securely using Supabase, a secure cloud database service. Servers are located in the European Union, compliant with GDPR requirements.

How We Protect Your Data

We implement appropriate technical and organizational measures to protect your personal information:

  • Encryption in transit (TLS/SSL)
  • Encryption at rest
  • Secure authentication using industry-standard OAuth 2.0
  • Row-level security ensuring you can only access your own data
  • Regular security audits and updates

Data Sharing and Disclosure

We do not sell your personal information.

We may share your information only in the following circumstances:

Service Providers

We use third-party services to operate the App:

  • Supabase: Database and authentication services
  • OAuth Providers: Google, Apple, Facebook for authentication

These providers only access data necessary to perform their functions and are obligated to protect your information.

Legal Requirements

We may disclose your information if required by law or in response to valid legal requests by public authorities.

Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

Your Rights and Choices

Access and Portability

You can access your task data at any time through the App. You can export your data in PDF, Excel, or CSV format.

Correction

You can edit or update your tasks and profile information at any time within the App.

Deletion

You can delete individual tasks within the App. To delete your entire account and all associated data, please contact us at contact@timello.app.

Data Retention

We retain your data as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal purposes.

Children's Privacy

The App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information in compliance with applicable data protection laws.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by:

  • Posting the new Privacy Policy in the App
  • Updating the "Last updated" date

We encourage you to review this Privacy Policy periodically.

Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: contact@timello.app
Website: https://timello.app

Additional Rights for EU/EEA Residents (GDPR)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

  • Right to Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of how we use your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing of your data
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at contact@timello.app.

You also have the right to lodge a complaint with your local data protection authority.

Additional Rights for California Residents (CCPA)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

  • Right to Know: Request information about personal data we collect, use, and disclose
  • Right to Delete: Request deletion of your personal data
  • Right to Non-Discrimination: We will not discriminate against you for exercising your rights

We do not sell personal information to third parties.

To exercise these rights, contact us at contact@timello.app.

Still have questions?

We're happy to help with any privacy concerns.

Contact us