Privacy Policy

Welcome to Timewise. This Privacy Policy explains how Timewise ("we," "us," or "our") collects, uses, stores, and protects your personal information when you use our platform, website, and services (collectively, the "Service"). We are committed to protecting your privacy and handling your data responsibly.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with this policy, please do not use the Service.

01Information We Collect

We collect the following categories of information to provide and improve the Service:

Account Information

When you sign in with Google OAuth, we receive and store:

• Your name and email address from your Google profile
• Your Google profile picture URL
• A unique Google account identifier

Google Calendar Data

When you connect your Google Calendar, we access and store:

• Calendar names and metadata (calendar ID, time zone, color)
• Event details including titles, descriptions, dates, times, locations, and attendees
• Event status (confirmed, tentative, cancelled) and recurrence rules
• Calendar sharing and visibility settings

Payment Information

If you subscribe to a paid plan, payment processing is handled entirely by Stripe. We receive your email address associated with the payment but do not store credit card numbers, bank account details, or other sensitive financial information on our servers.

Usage and Technical Data

• Pages visited and features used within the Service
• Browser type, device information, and operating system
• IP address and approximate geographic location
• Referral source and session duration

02How We Use Your Information

We use the information we collect for the following purposes:

• Calendar aggregation and display: To sync, aggregate, and display your calendar events from multiple sources in a unified view
• Service operation: To authenticate your account, manage subscriptions, and provide customer support
• Scheduling features: To enable shared calendars, family scheduling, reminders, and other calendar management tools
• Service improvement: To analyze usage patterns and improve the performance, reliability, and features of the Service
• Communications: To send you service-related notifications, updates, and security alerts

03Google Calendar API — Limited Use Disclosure

Specifically, Timewise:

• Accesses Google Calendar data only to display and aggregate events — We read your calendars and events solely to provide the core functionality of the Service: displaying your events in a unified calendar view and enabling scheduling features.
• Stores calendar events in our database for sync and display — We persist your calendar data in our secure PostgreSQL database to enable fast loading, offline-capable sync, and a seamless user experience. Stored data includes event titles, times, descriptions, locations, and attendee information.
• Does NOT sell, share, or use calendar data for advertising — Your Google Calendar data is never sold to third parties, shared with advertisers, or used for any purpose other than providing the Service to you.
• Does NOT use calendar data for AI/ML training — Your calendar data is not used to train machine learning models or for any automated decision-making beyond the core calendar features.
• Allows you to revoke access at any time— You can disconnect your Google Calendar integration from the Service at any time. You may also revoke Timewise's access directly from your Google Account permissions page. Upon revocation, we will stop accessing your Google Calendar data and delete stored calendar data within 30 days.

04Data Storage and Security

We take the security of your data seriously and implement appropriate technical and organizational measures to protect it:

• Database:Your data is stored in a PostgreSQL database hosted on Vercel's infrastructure with encryption at rest
• Authentication tokens: Google OAuth tokens are stored securely and encrypted. We use industry-standard OAuth 2.0 protocols and never store your Google password.
• Transport security: All data transmitted between your browser and our servers is encrypted using TLS (HTTPS)
• Access controls: Access to production databases and infrastructure is restricted to authorized personnel only

While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security but will promptly notify affected users in the event of a data breach in accordance with applicable laws.

05Third-Party Services

We use the following third-party services to operate and improve the Service:

We do not share your personal data with these services beyond what is necessary to provide the Service. Each third-party service processes data in accordance with their own privacy policies.

06Data Retention and Deletion

We retain your data for as long as your account is active or as needed to provide the Service. Specifically:

• Account data: Retained while your account is active. Deleted within 30 days of account deletion request.
• Calendar data: Synced data is retained while your Google Calendar is connected. Deleted within 30 days after you disconnect or delete your account.
• Payment records: Transaction records are retained for up to 7 years as required by financial regulations and tax law.
• Usage analytics: Anonymized analytics data may be retained indefinitely to improve the Service.

To request deletion of your data, contact us at hello@timewise.nanocorp.app. We will process your request within 30 days and confirm deletion by email.

07Your Rights

You have the following rights regarding your personal data:

• Right to access: You can request a copy of the personal data we hold about you
• Right to rectification: You can request correction of inaccurate or incomplete data
• Right to deletion: You can request deletion of your personal data, subject to legal retention requirements
• Right to data portability: You can request your data in a structured, commonly used, machine-readable format
• Right to restrict processing: You can request that we limit how we use your data
• Right to object: You can object to our processing of your data for certain purposes
• Right to withdraw consent: You can withdraw consent for data processing at any time by disconnecting integrations or deleting your account

To exercise any of these rights, please contact us at hello@timewise.nanocorp.app. We will respond to your request within 30 days.

08Cookies and Tracking

Timewise uses the following types of cookies and tracking technologies:

• Essential cookies: Required for authentication and session management. These cannot be disabled as they are necessary for the Service to function.
• Analytics: We use a lightweight analytics script to track page views and understand how the Service is used. This data is anonymized and does not include personally identifiable information.

We do not use third-party advertising cookies or trackers. We do not participate in cross-site tracking or sell tracking data to third parties.

09GDPR Compliance

If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR):

Legal Basis for Processing

We process your personal data under the following legal bases:

• Consent: When you sign in and connect your Google Calendar, you consent to the collection and processing of your data as described in this policy.
• Contract performance: Processing is necessary to provide the Service you have requested, including calendar synchronization and display.
• Legitimate interest: We process certain data (such as usage analytics) to improve the Service, provided this does not override your rights and interests.

International Data Transfers

Your data may be transferred to and processed in the United States, where our hosting infrastructure is located. We ensure appropriate safeguards are in place for international data transfers in accordance with GDPR requirements.

Data Protection Officer

For GDPR-related inquiries or to exercise your rights under GDPR, contact us at hello@timewise.nanocorp.app. If you are not satisfied with our response, you have the right to lodge a complaint with your local data protection authority.

10Children’s Privacy

The Service is not directed to children under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at hello@timewise.nanocorp.app.

11Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

• Update the "Last updated" date at the top of this page
• Notify you by email at least 14 days before the changes take effect
• Where required by law, seek your consent to the updated policy

Your continued use of the Service after the effective date of a revised Privacy Policy constitutes your acceptance of the changes. We encourage you to review this page periodically.

12Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: