Q-Timer logoQ-Timer
Legal

Privacy Policy

We take your privacy seriously. This policy explains exactly what data we collect and why.

Effective date: June 8, 2026

Q-Timer ("we," "us," or "our") operates a time tracking and project management application. Because you entrust us with data about your work — including projects, tasks, and time records — we want to be fully transparent about how we handle that information.

1. Data We Collect

Account & Identity Information

  • Name, email address, and profile photo (obtained from your Google account upon sign-in);
  • Google account ID (used as your unique identifier);
  • Authentication tokens managed by Firebase Authentication.

Product Data

  • Projects, tasks, sub-tasks, time log entries, notes, and workspace configurations you create;
  • Planner and calendar entries, if you use those features;
  • App preferences and settings.

Usage & Technical Data

  • IP address, browser type and version, operating system, device identifiers;
  • Pages visited, features used, session timestamps, and error logs;
  • Performance and diagnostic data used to maintain service reliability.

Payment & Billing Data

  • Subscription plan, billing status, and transaction history;
  • Payment card details are collected and stored directly by Stripe — we do not store full card numbers on our servers.

2. How We Use Your Data

  • Providing the Service: Authentication, data sync, storage, and core app features;
  • Processing payments: Subscription billing, renewals, refunds, and receipts;
  • Customer support: Investigating issues, responding to requests, and troubleshooting;
  • Security & fraud prevention: Detecting abuse, protecting accounts, and enforcing our Terms of Service;
  • Product improvement: Analyzing usage patterns to improve features and performance (in aggregate or anonymized form where possible);
  • Legal compliance: Meeting obligations under applicable laws and responding to lawful requests from authorities.

3. Stripe & Payment Processing

We use Stripe to handle all payment transactions. When you subscribe to a paid plan, your payment information is submitted directly to Stripe and governed by Stripe's Privacy Policy.

Stripe may process your personal data for its own purposes, including payment processing, fraud detection, risk management, and regulatory compliance. We receive only a tokenized reference to your payment method, not your raw card details.

4. Firebase & Google Services

We use Google Firebase for authentication and data storage (Firestore). Your data is stored in Google's infrastructure and subject to Google's Privacy Policy. Firebase processes authentication events and stores your app data on our behalf under a data processing agreement.

5. Data Sharing

We do not sell your personal data. We share data only in the following circumstances:

  • Service providers: Stripe (payments), Google Firebase (database & auth), and any email delivery or analytics provider — each receives only the minimum data necessary;
  • Legal requirements: When required by law, court order, or to protect our legal rights or the safety of users;
  • Business transfer: In the event of a merger, acquisition, or sale of assets, your data may be transferred — we will notify you with reasonable advance notice.

6. Data Retention

We retain your data for as long as your account is active or as needed to provide the Service. If you delete your account, we will delete or anonymize your personal data within 90 days, except where we are required by law to retain it longer (e.g., billing records for tax compliance).

7. Security

We implement reasonable technical and organizational measures to protect your data, including:

  • Encryption in transit (HTTPS / TLS) and at rest (Firebase infrastructure);
  • Access controls limiting who within our team can access user data;
  • Regular review of third-party service security practices.

No system is completely secure. If you believe your account has been compromised, please contact us immediately at support@q-timer.com.

8. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you;
  • Correct inaccurate or incomplete data;
  • Delete your account and associated personal data;
  • Export your data in a portable format;
  • Object to or restrict certain processing activities;
  • Withdraw consent where processing is based on consent.

To exercise any of these rights, contact us at support@q-timer.com. We will respond within 30 days.

9. International Transfers

Your data may be processed in countries outside your own (including the United States, where Google and Stripe infrastructure is located). We rely on applicable legal mechanisms (such as Standard Contractual Clauses where required) to ensure adequate protection.

10. Children's Privacy

The Service is not directed at children under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

11. Cookies & Tracking

We use essential cookies and browser storage for authentication and session management. We may use analytics tools to understand aggregate usage patterns. We do not use tracking cookies for advertising.

12. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted here with a revised effective date. For significant changes, we will notify you by email or in-app notice at least 14 days before the changes take effect.

13. Contact Us

For any privacy-related questions, data requests, or concerns, please contact: support@q-timer.com