Privacy Policy

Last Updated: October 16, 2025

We're committed to protecting your privacy. Here's how we handle your data in plain English.

What Information We Collect

When you use Everytask, we collect:

  • Your account details: Email, name, and password
  • Your tasks: Everything you create in Everytask
  • Connected services: Access tokens when you link Google, Microsoft, Slack, or Apple accounts
  • Basic usage data: Which features you use and when (helps us improve the app)

How We Use Google Data

When you connect your Google account, we access:

Google Profile: Your email and name to identify your account

Google Tasks: We sync your Google Tasks with Everytask so you can manage everything in one place

  • We read your tasks, lists, due dates, and completion status
  • We sync changes both ways (Everytask ↔ Google Tasks)
  • We store this data securely so the app works offline

Google's Limited Use Policy: We follow Google's rules for handling your data. We only use it for the features you enable.

How We Use Your Information

We use your data to:

  • Run the app and sync your tasks
  • Send important updates about the service
  • Fix bugs and improve features
  • Keep your account secure

Who We Share Data With

We don't sell your data. Period.

We only share data when:

  • You explicitly give permission
  • Required by law (court order, subpoena)
  • Necessary for our hosting provider to run the service (they can't see your data)

How We Protect Your Data

  • All data encrypted in transit (HTTPS/TLS)
  • Database encryption at rest
  • Secure password hashing (bcrypt)
  • OAuth tokens encrypted and protected
  • Regular security updates

Your Rights and Control

You can:

  • Disconnect services: Unlink Google, Microsoft, etc. anytime from Settings
  • Export your data: Download all your tasks
  • Delete your account: Everything gets permanently deleted within 30 days
  • Access your data: Request a copy by emailing support@everytask.app

Data Retention

We keep your data while your account is active. When you disconnect a service, we delete those tokens immediately. When you delete your account, everything is permanently removed within 30 days.

Third-Party Services

When you connect external services (Google, Microsoft, Slack, Apple), you're granting us access according to their OAuth permissions. Each integration can be disconnected independently, which immediately revokes our access.

Updates to This Policy

We may update this policy occasionally. We'll notify you of major changes by email or in-app notification. Continued use means you accept the updates.

Questions?

Email us at support@everytask.app