timefeed.ai (the "Service") values your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use the Service, as well as the rights you have over that data.
1. Data We Collect
In order to provide the Service, we collect the following types of data:
- Account data: the email address, display name, and avatar you provide at registration, along with the time zone and language preferences you select in settings. Passwords are stored after hashing, and we cannot access your original password.
- Content you create: the calendar descriptions (prompts) you enter, the AI-generated calendar and event content, the list of calendars you follow, and the reports you submit.
- Usage records: usage records of the AI features (including prompt snapshots, statistics about generated results, and error messages), used for service operations, usage management, and troubleshooting.
- Payment data: if you subscribe to a paid plan, payments are processed by the third-party payment service Stripe. We do not store your credit card number and retain only your subscription status and Stripe customer identifier.
- Notification settings: the notification preferences you configure, and any webhook URL you provide yourself (if applicable).
2. How We Use Your Data
The data we collect is used only for the following purposes:
- To provide, maintain, and improve the core features of the Service (creating, syncing, and subscribing to AI calendars).
- To verify your identity and keep you signed in.
- To send account-related notification emails (such as email verification, password reset, and event notifications).
- To process paid subscriptions and billing.
- To monitor service usage, prevent abuse, and resolve technical issues.
We do not sell your personal data, nor do we use it for marketing unrelated to the Service.
3. Third-Party Services
The Service uses the following third-party services, and certain data is sent to them to the extent necessary to provide the Service:
- Google Gemini API: the calendar descriptions (prompts) you enter are sent to Google's AI service to generate calendar content. Please avoid including sensitive personal data in your prompts.
- Google Cloud: the Service is hosted on the Google Cloud platform, and the avatar images you upload are stored in Google Cloud Storage.
- Resend: used to send system emails (such as email verification and notification emails), using your email address when sending mail.
- Stripe: the payment processor for paid plans; data you provide to Stripe during payment (such as credit card information) is handled by Stripe in accordance with its privacy policy.
- Google Analytics: used to understand aggregate, anonymized usage of the Service (such as page views and traffic sources) so that we can improve it. Google Analytics sets cookies and processes a truncated form of your IP address. We do not use it for advertising or cross-site ad tracking.
4. Cookies and Sign-In State
The Service uses cookies to maintain your sign-in state and basic preferences, and analytics cookies (via Google Analytics) to measure aggregate, anonymized usage so we can improve the Service. We do not use third-party advertising or cross-site ad-tracking cookies.
5. Data Retention and Deletion
Your account data and the content you create are retained for as long as your account exists. When you delete your account or specific content, the related data is removed from the database; some records required for operations (such as anonymized usage statistics) may be retained for a reasonable period.
6. Your Rights
Under applicable personal data protection laws, you may:
- Inquire about or request to review the personal data we hold about you.
- Request correction or supplementation of your personal data (most data can be edited directly on the Settings page).
- Request deletion of your account and personal data.
- Request that we stop collecting, processing, or using your personal data.
To exercise the rights above, please contact us using the contact details below.
7. Data Security
We take reasonable technical and administrative measures to protect your data, including encryption in transit (HTTPS), hashed password storage, and access controls over internal systems. However, no method of transmission or storage over the internet can be guaranteed to be absolutely secure, so please keep your account password safe.
8. Policy Updates
We may amend this Policy from time to time. In the event of material changes, we will notify you through an in-app announcement or email. The amended Policy takes effect upon publication, and the latest version will always be posted on this page.
9. Contact Us
If you have any questions about this Privacy Policy or how your personal data is handled, please contact us at [email protected].