Privacy Policy

ClockinSync (“we,” “our,” or “us”) operates the ClockinSync Chrome extension and the website www.clockinsync.com (collectively, the “Service”). This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data.

By using the Service, you agree to the collection and use of information as described in this policy.

1. Information We Collect

1.1 Anonymous Device Identifier

When you first use the ClockinSync extension and accept the onboarding notice, a random identifier (UUID) is generated on your device. This identifier is not linked to your name, email, or any personal information. It is used solely to associate your device with free plan usage limits. You may opt out of transmitting this identifier to our servers via Settings > Usage Statistics.

1.2 Feature Usage Statistics

We collect anonymous, aggregate counts of feature usage per week, including the number of times you use the /time shortcode, page annotations, natural language input, and popup opens. These counts are used to enforce free plan limits and to understand which features are most valuable. No page content, URLs visited, or browsing history is included. You may disable usage reporting at any time via Settings > Usage Statistics. When disabled, usage is tracked locally on your device only (for plan limit enforcement) and is not transmitted to our servers.

1.3 Account Information

If you choose to sign in with Google, we collect and store your email address and display name as provided by Google's OAuth2 service. We do not access your Google contacts, calendar, Gmail, or any data beyond your basic profile information (email and name). Your Google OAuth token is used solely to verify your identity with Google's servers during sign-in and is not stored on our servers after verification.

1.4 Cloud Sync Data

If you voluntarily enable Cloud Sync in the extension settings, your timezone configurations, clock profiles, reminders (including titles and scheduled times), and preferences are transmitted to and stored on our server at api.clockinsync.com. When changes are made to your synced data, they are automatically pushed to the server so that your other devices receive the updates. You may also optionally store this data in your Google Drive application data folder, which is accessible only to ClockinSync and not to any other application. Cloud Sync is entirely opt-in and can be disabled at any time from Settings.

1.5 Payment Information

If you purchase a plan upgrade, payment is processed by Stripe, Inc. We do not receive, process, or store your credit card number, bank account details, or other financial information. We receive only a confirmation of payment, the amount paid, and your email address from Stripe for the purpose of activating your plan. Please refer to Stripe's Privacy Policy at https://stripe.com/privacy for details on how Stripe handles your payment data.

1.6 Page Content

The ClockinSync content script runs on web pages you visit to detect timezone expressions in text (such as “3:00 PM EST”). This text is analyzed entirely on your device using local pattern matching. No page content, URLs, form data, passwords, or browsing activity is ever transmitted to our servers. The content script does not read, access, or modify any form inputs, login credentials, or sensitive page data.

1.7 Website Analytics

Our website www.clockinsync.com uses Google Analytics to collect standard usage data, including your IP address, browser type, pages visited, time spent on pages, and referring URLs. This data is collected by Google and is subject to Google's Privacy Policy at https://policies.google.com/privacy. We use this information solely to understand website traffic and improve our website. Google Analytics data is not linked to your ClockinSync extension account or usage data. You may opt out of Google Analytics by installing the Google Analytics Opt-out Browser Add-on at https://tools.google.com/dlpage/gaoptout.

1.8 License and Configuration Polling

The extension periodically contacts our server (approximately every five minutes) to retrieve your current plan status, feature limits, and any active notifications from us. This request includes your authentication token and device identifier. This polling is necessary for the Service to function and cannot be independently disabled while the extension is installed.

2. How We Use Your Information

We use the information collected for the following purposes:

• Plan Enforcement: To determine and enforce the features and limits associated with your current plan (Free or Lifetime).
• Cloud Sync: To synchronize your timezone configurations, profiles, reminders, and preferences across your devices when you enable this feature.
• Product Improvement: To understand aggregate feature usage patterns and prioritize development of the most valuable features. Individual usage data is never reviewed in isolation.
• Payment Processing: To activate your plan after a successful payment processed by Stripe.
• Communications: To deliver in-app notifications about product updates, promotions, or service changes. You may dismiss these notifications, and frequency is controlled to avoid disruption.
• Account Management: To maintain your account, authenticate your sign-in sessions, and provide customer support.
• Website Improvement: To analyze website traffic and improve the content and performance of www.clockinsync.com.

3. Information Sharing and Disclosure

We do not sell, rent, trade, or otherwise share your personal information with third parties, except in the following limited circumstances:

• Service Providers: We use Stripe for payment processing and Google for authentication and optional Drive storage. These providers receive only the minimum data necessary to perform their functions and are bound by their own privacy policies.
• Legal Requirements: We may disclose information if required by law, regulation, legal process, or governmental request.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction. We will notify users via email or prominent notice before any such transfer.

We do not serve advertisements in the ClockinSync extension or on our website. We do not share data with advertising networks or data brokers.

4. Data Storage and Security

Your data is stored on secure servers operated by our hosting provider. We employ industry-standard security measures, including encrypted data transmission (HTTPS/TLS) for all communications between the extension and our servers, and access controls to limit who can access user data.

Authentication tokens are stored locally in your browser's extension storage (chrome.storage.local), which is accessible only to the ClockinSync extension. Passwords are never collected or stored by ClockinSync.

While we strive to protect your information, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security.

5. Data Retention

• Feature Usage Statistics: Aggregated on a weekly basis. Raw usage data is automatically deleted after 90 days.
• Anonymous Accounts: Anonymous device accounts with no activity for 90 days are automatically deleted along with all associated data.
• Account Data: Retained for the duration of your account. When you delete your account, all associated data (usage logs, sessions, sync data, feature overrides, payment records, and notification history) is permanently deleted.
• Cloud Sync Data: Retained as long as you have Cloud Sync enabled. When you disable Cloud Sync or delete your account, sync data is removed from our servers.
• Payment Records: Retained for the period required by applicable tax and financial regulations, typically seven years.
• Website Analytics: Retained according to Google Analytics' default data retention settings (14 months) unless configured otherwise.

6. Your Rights and Choices

6.1 Opt Out of Usage Statistics

You may disable anonymous usage reporting at any time via the extension Settings > Usage Statistics toggle. When disabled, usage counts are tracked locally only for plan limit enforcement and are not sent to our servers.

6.2 Disable Cloud Sync

You may disable Cloud Sync at any time from the extension Settings. When disabled, your data remains local to your device and is not transmitted to our servers or Google Drive.

6.3 Delete Your Account

To delete your account and all associated server-side data, contact us at [email protected]. We will process deletion requests within 30 days. Signing out of the extension clears all local data from your device.

6.4 Access Your Data

You may request a copy of the data we hold about you by contacting [email protected]. We will respond within 30 days.

6.5 Cookie and Analytics Opt-Out

Our website uses cookies for Google Analytics. You may opt out by installing the Google Analytics Opt-out Add-on, using your browser's cookie settings, or using a content blocker.

6.6 European Economic Area (EEA) Residents

If you are located in the EEA, you have additional rights under the General Data Protection Regulation (GDPR), including the right to access, rectify, erase, restrict processing, object to processing, and port your data. Our legal basis for processing is legitimate interest (product improvement and plan enforcement) and contract performance (providing the Service). To exercise these rights, contact [email protected].

6.7 California Residents

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete it, and the right to opt out of sale. We do not sell personal information. To exercise these rights, contact [email protected].

7. Children's Privacy

ClockinSync is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information promptly. If you believe a child under 13 has provided us with personal information, please contact us at [email protected].

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. By using the Service, you consent to the transfer of your information to these countries. We take appropriate safeguards to ensure your data is protected in accordance with this Privacy Policy.

9. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party service you interact with.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the “Last updated” date at the top of this page and may notify you via an in-app notification in the extension. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

• Email: [email protected]
• Website: www.clockinsync.com