Privacy Policy for Plain To-Do

Last Updated: February 2025

Introduction

Plain To-Do (“we”, “our”, or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use the Plain To-Do mobile application (“the App”).

Information We Collect

Account Information

• Email address: Used for account creation, authentication, and password recovery.

Task Data

• Task names and categories: The tasks you create and how you organize them.
• Completion records: When you mark tasks as completed.
• Due dates and reminders: Any dates and reminders you set for your tasks.

Notion Sync Data

• Notion connection tokens: If you choose to enable Notion Sync, we store an authentication token to sync tasks between the App and your Notion workspace. This token only grants access to the specific Notion pages you authorize.

Technical Data

• Device type and OS version: Used for app compatibility and debugging.
• Crash reports and performance data: Collected through Expo/React Native error reporting to improve app stability.

How We Use Your Information

We use the information we collect to:

• Provide and maintain the App's core functionality (task management, categories, reminders).
• Authenticate your account and sync data across sessions.
• Sync tasks with Notion if you enable this optional feature.
• Process subscription purchases (handled by Apple via RevenueCat).
• Improve the App's performance and fix bugs.

We do not use your data for advertising, profiling, or sale to third parties.

Data Storage and Security

• Your data is stored securely on Supabase (PostgreSQL database) with Row Level Security (RLS) enabled, ensuring only you can access your own data.
• Data is transmitted over HTTPS/TLS encryption.
• Authentication is handled by Supabase Auth with secure token management.

Third-Party Services

The App uses the following third-party services:

• Supabase: Database hosting and authentication. Supabase Privacy Policy
• RevenueCat: Subscription management. RevenueCat Privacy Policy
• Apple App Store: Payment processing for subscriptions. Apple Privacy Policy
• Resend: Transactional email delivery (password resets, verification). Resend Privacy Policy
• Notion: Optional task syncing (only if you enable Notion Sync). Notion Privacy Policy

Data Sharing

We do not sell, trade, or share your personal data with third parties for marketing purposes. Data is shared only with the service providers listed above, solely for the purpose of operating the App.

Data Retention

• Your data is retained for as long as your account is active.
• You may request deletion of your account and all associated data at any time (see below).

Account Deletion

You can delete your account and all associated data by:

1. Going to Settings within the App.
2. Selecting Delete Account.
3. Confirming the deletion.

Upon deletion, all your task data, categories, reminders, Notion sync tokens, and account information will be permanently removed from our servers within 30 days.

Children's Privacy

The App is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy within the App and updating the “Last Updated” date.

Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at:

Email: [your-email@example.com]

This privacy policy is effective as of the “Last Updated” date above.