// PRIVACY POLICY

> Last Updated: June 2025

This Privacy Policy defines the information acquired by Timekeeper (the "App") from users and how it is handled.

[1] INFORMATION COLLECTED

The App collects the following information:

> Device ID (UUID)
> Stripe payment token (purchase_token)
> Usage data (usage time, etc., all stored locally)

[!] The App does NOT collect personally identifiable information such as email addresses or phone numbers.

[2] PURPOSE OF USE

Collected information is used for the following purposes:

> License purchase status and temporary unlock (Day Pass) management
> Implementation of usage time restriction features
> Statistical analysis for app improvement (anonymous)

[3] DATA STORAGE & MANAGEMENT

> UUID and usage information are stored on the user's device (SharedPreferences and Room)
> Stripe payment information (tokens) is sent to the server for validation purposes only
> All communications are encrypted via HTTPS

[4] THIRD-PARTY DISCLOSURE & PROCESSORS

The App does not sell collected information to third parties. For the purpose of performing our services (e.g., payment processing), we may engage appropriate processors and share information to the minimum extent necessary (e.g., Stripe).

[5] USER CHOICES

> Uninstalling the App will delete all data on the device
> No personally identifiable information is stored on the server

[6] CONTACT

For questions or concerns, please contact:

timekeeper.app.contact@gmail.com

[7] POLICY UPDATES

This policy may be updated without prior notice. Continued use after updates constitutes acceptance of the revised policy.

(Last Updated: June 2025)

[8] SECURITY MEASURES

We implement the following safeguards to protect personal data and identifiers:

> Least-privilege access control and logging
> Encrypted communications (HTTPS) and appropriate protection at rest
> Appropriate oversight of processors (contracts and implementation checks)

[9] RETENTION PERIODS

> On-device data: retained during use; deleted upon app uninstall by the user
> Payment tokens: retained only as long as necessary for validation, then deleted or anonymized

[10] PROCESSORS & INTERNATIONAL TRANSFERS

We outsource payment processing to Stripe, Inc. We provide only the minimum necessary information, handled under each provider's privacy policy. Data may be transferred outside your country (e.g., the United States). For details, see Stripe's Privacy Policy: https://stripe.com/privacy

[11] REQUESTS FOR ACCESS, CORRECTION, DELETION

Under applicable law, you may request access, correction, or deletion of your information held by us. We may ask for identity verification when processing your request.

timekeeper.app.contact@gmail.com

[12] COOKIES & SIMILAR TECHNOLOGIES

This site may use minimal cookies or similar technologies for functionality (e.g., preserving UI state). We do not currently use analytics or advertising cookies. Where consent is required (e.g., in the EEA), we will obtain consent in accordance with applicable laws.