Clockbitz

Privacy Policy for Clockbitz

Effective Date: December 27, 2025

Last Updated: December 27, 2025

At Clockbitz ("we," "us," or "our"), we respect and value your privacy. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use the Clockbitz time-tracking application and related services (collectively, the "Service"). By accessing or using Clockbitz, you agree to the terms outlined in this Privacy Policy.

If you do not agree with this Privacy Policy, please do not use our Service.

1. Information We Collect

We collect information that you provide directly to us, as well as information automatically collected when you use our Service.

1.1 Personal Information You Provide

  • Account Information: When you create an account, we collect your email address and authentication credentials. If you choose to sign in via third-party services (GitHub or Google), we receive your email address and profile information from those services.
  • Profile Information: Your display name and any optional profile information you choose to provide.
  • User Content: All data you create and store in the app, including:
    • Time entries (start time, end time, duration)
    • Activities and sub-activities (names, colors, icons, hierarchical structure)
    • Goals (targets, time periods, metrics)
    • Notes attached to entries
    • Reports and analytics data
  • Payment Information: When you subscribe to a paid plan, payment processing is handled entirely by our third-party payment processor, Lemon Squeezy. We do not store or have access to your credit card details. We only receive subscription status information.
  • Communications: When you contact us via email or support forms, we collect your message content and contact information.

1.2 Automatically Collected Information

  • Usage Data: Information about how you interact with the Service, including pages visited, features used, and actions taken within the app.
  • Device Information: Device type, operating system, browser type and version, screen resolution, and IP address.
  • Local Storage: The app stores data locally in your browser's IndexedDB to enable offline functionality and improve performance. This data remains on your device and syncs with our servers when you're online.
  • Log Data: Server logs that may include IP address, access times, pages requested, and error reports.
  • Error Monitoring: We use Sentry for error monitoring and debugging, which collects technical error information (stack traces, device info, error context) but does not collect your personal content (time entries, activities, or notes).
  • Analytics: We use Simple Analytics, a privacy-friendly analytics service that does NOT collect personally identifiable information, does NOT use cookies, and is fully GDPR-compliant.

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Service Delivery

  • Providing, operating, and maintaining the Clockbitz Service
  • Creating and managing your account
  • Enabling offline functionality and data synchronization across your devices
  • Processing and managing your subscription
  • Sending transactional emails (account verification, password reset, subscription updates)

2.2 Service Improvement

  • Understanding how users interact with our Service
  • Identifying and fixing bugs and technical issues
  • Analyzing usage patterns to improve features and user experience
  • Developing new features and functionality

2.3 Communication

  • Responding to your inquiries and support requests
  • Sending important service announcements and updates
  • Notifying you of changes to our terms or policies

2.4 Legal and Security

  • Complying with legal obligations
  • Protecting against fraud, abuse, and security threats
  • Enforcing our Terms of Service
  • Resolving disputes

We do NOT use your data for targeted advertising or sell it to third parties.

4. Data Security

We take the security of your data seriously and implement appropriate technical and organizational measures to protect it:

  • Encryption: Data transmitted between your device and our servers is encrypted using industry-standard TLS/SSL protocols
  • Access Controls: Limited employee access to personal data on a need-to-know basis
  • Secure Infrastructure: Our hosting providers (Neon and Vercel) maintain SOC 2 compliance and implement robust security measures
  • Regular Monitoring: We use Sentry to monitor for security issues and system errors

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

4.1 Third-Party Service Providers

We use trusted third-party services to operate our business. These providers have access to your information only to perform specific tasks on our behalf and are obligated to protect it:

  • Neon (neon.tech): Database hosting and storage
  • Vercel (vercel.com): Application hosting and deployment
  • Lemon Squeezy (lemonsqueezy.com): Payment processing for subscriptions (does not share payment card details with us)
  • Sender (sender.net): Transactional email delivery
  • Cloudflare: Email routing and security
  • Sentry (sentry.io): Error monitoring and debugging (only receives error data, not your personal content)
  • Simple Analytics (simpleanalytics.com): Privacy-friendly analytics (no personal data collected, no cookies, GDPR-compliant)

5. How We Share Your Information

We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

5.1 Service Providers

As described in Section 4.1, we share information with third-party service providers who assist in operating our Service.

5.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., court orders, subpoenas, government agencies).

5.3 Business Transfers

If Clockbitz is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you before your information becomes subject to a different privacy policy.

5.4 With Your Consent

We may share your information with third parties when you explicitly consent to such sharing.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you with our Service. Specifically:

  • Account Data: Deleted immediately upon account deletion request with no recovery period. Once deleted, your account cannot be recovered.
  • User Content: Time entries, activities, and goals are retained until you delete them or your account is deleted
  • Backup Data: Deleted data may persist in backups for up to 30 days before permanent deletion
  • Subscription Data: Subscription history and billing information are retained as required for accounting and tax purposes
  • Legal Requirements: We may retain certain information longer if required by law or for legitimate business purposes (e.g., dispute resolution, fraud prevention)

You can request deletion of your account and all associated data at any time by contacting support@clockbitz.com or using the account deletion feature in the app.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

7.1 Access and Portability

  • Request a copy of the personal information we hold about you
  • Export your data in a machine-readable format (JSON or CSV)

7.2 Correction and Update

  • Update or correct your account information at any time through your account settings
  • Request correction of inaccurate data by contacting support

7.3 Deletion

  • Delete your account and all associated data at any time
  • Request deletion of specific data (note: some data may need to be retained for legal or legitimate business reasons)

7.4 Objection and Restriction

  • Object to certain processing of your data
  • Request restriction of processing in specific circumstances

7.5 Withdraw Consent

  • Where we rely on consent to process your data, you may withdraw consent at any time

7.6 Opt-Out of Communications

  • Unsubscribe from marketing emails (if any) via the link in the email
  • Note: We may still send transactional emails required for the Service (e.g., password resets, subscription updates)

To exercise any of these rights, please contact us at support@clockbitz.com. We will respond to your request within 30 days.

Note for EU/EEA/UK Users: You also have the right to lodge a complaint with your local data protection authority.

8. International Data Transfers

Clockbitz is operated from Belgium. Your information may be transferred to, stored, and processed in countries other than your own, including the European Union and the United States (where our hosting providers are located).

We ensure appropriate safeguards are in place for such transfers in compliance with applicable data protection laws, including:

  • Standard Contractual Clauses approved by the European Commission
  • Data processing agreements with service providers
  • Adequate security measures

9. Cookies and Tracking Technologies

Clockbitz uses minimal cookies and tracking technologies:

  • Essential Cookies: Required for authentication (Better Auth session cookies). These are necessary for the Service to function.
  • Local Storage: Browser IndexedDB for offline functionality and localStorage for some user preferences (stored locally on your device, never transmitted)
  • Analytics: Simple Analytics (cookie-free, GDPR-compliant, no personal data collected)

We do NOT use:

  • Advertising cookies
  • Third-party tracking cookies
  • Social media tracking pixels
  • Marketing or analytics cookies

You can control cookies through your browser settings, but disabling essential cookies may affect functionality.

10. Children's Privacy

Clockbitz is not intended for children under the age of 13 (or 16 in the European Economic Area). We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under the applicable age, we will take steps to delete that information promptly.

If you believe we have inadvertently collected information from a child, please contact us at support@clockbitz.com.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

  • We will update the "Last Updated" date at the top of this policy
  • For significant changes, we will notify you via email or through a prominent notice in the app
  • Continued use of the Service after changes become effective constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: support@clockbitz.com

Data Controller: Clockbitz, Belgium

We will respond to your inquiry within 30 days.