Privacy Policy

1. Introduction

Welcome to BillableDay ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our time tracking and task management service.

By using BillableDay, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

Account Information

When you create an account, we collect:

• Email address
• Name (if provided via Google OAuth)
• Profile picture (if using Google OAuth)

Service Data

As you use BillableDay, we store:

• Client information (names, hourly rates)
• Task details (titles, descriptions, due dates)
• Time entries (start times, durations, notes)
• Calculated revenue based on your hourly rates

Automatically Collected Information

We may collect certain information automatically, including:

• Browser type and version
• Device information
• IP address
• Usage patterns within the application

3. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve BillableDay
• Process and display your time tracking and revenue data
• Send you service-related communications
• Respond to your requests and support inquiries
• Protect against unauthorized access and abuse
• Analyze usage patterns to improve our service

4. Data Storage & Security

Your data is stored securely using Supabase, a trusted database platform with enterprise-grade security:

• All data is encrypted in transit (TLS 1.2+) and at rest
• Row-Level Security (RLS) ensures you can only access your own data
• Regular automated backups
• SOC 2 Type II compliant infrastructure

While we implement industry-standard security measures, no method of transmission over the Internet or electronic storage is 100% secure.

5. Google OAuth

When you sign in with Google:

• We receive only your email, name, and profile picture from Google
• We do not access your Google Calendar, Drive, or other Google services
• We do not store your Google password
• You can revoke access anytime via your Google account settings

6. Cookies & Tracking

We use minimal cookies necessary for the service to function:

• Session cookies: To keep you logged in
• Preference cookies: To remember your settings (e.g., privacy mode)

We do not use advertising cookies or sell your data to third parties.

7. Data Sharing

We do not sell, trade, or rent your personal information. We may share data only in these circumstances:

• Service providers: Supabase (database), Vercel (hosting)
• Legal requirements: If required by law or valid legal process
• Business transfers: In connection with a merger or acquisition
• With your consent: When you explicitly authorize sharing

8. Your Rights

You have the right to:

• Access: Request a copy of your data
• Export: Download your data in standard formats
• Correct: Update inaccurate information
• Delete: Request deletion of your account and data
• Privacy Mode: Hide financial amounts in the UI

To exercise these rights, contact us at support@billableday.com

9. Data Retention

We retain your data for as long as your account is active. If you delete your account:

• Your data will be permanently deleted within 30 days
• Backups containing your data are purged within 90 days
• Anonymized analytics data may be retained indefinitely

10. Children's Privacy

BillableDay is not intended for users under 16 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. We encourage you to review this policy periodically.