Privacy Policy

Improvica is the data controller for personal data processed in connection with providing this service.

We may collect and process:

• Account data: email address, name (if provided), authentication identifiers.
• Workspace content you submit: projects, tasks, time entries, messages and other data you choose to store in the app.
• Technical/usage data: IP address, device and browser information, logs needed for security and troubleshooting.
• Billing data: subscription status and payment metadata handled by payment providers (we typically do not store full card data).

We process personal data to:

• provide and operate the service (accounts, workspaces, collaboration)
• secure the platform, prevent fraud/abuse, and maintain availability
• provide customer support and respond to requests
• process billing and manage subscriptions
• improve product performance and reliability

Where GDPR applies, we rely on the following legal bases:

• Contract (Art. 6(1)(b)): to provide the service you request (account, workspace, app functionality).
• Legitimate interests (Art. 6(1)(f)): to keep the service secure, prevent abuse, and improve reliability.
• Legal obligation (Art. 6(1)(c)): for accounting/tax requirements when applicable.
• Consent (Art. 6(1)(a)): only where required (e.g., optional marketing cookies or newsletters, if introduced).

We use trusted providers to operate the service. Depending on configuration, these may include:

• Hosting/infrastructure providers
• Authentication and database providers
• Email delivery providers (transactional emails)
• Payment providers (subscription and checkout processing)

Some service providers may process data outside the European Economic Area (EEA). Where applicable, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) or other lawful transfer mechanisms.

We keep personal data only as long as necessary for the purposes described above:

• Account and workspace data: retained while the account/workspace is active
• Security logs: retained for a limited period as needed for security and troubleshooting
• Billing records: retained as required by accounting/tax laws

You may request deletion of your account data (see section 9).

We apply reasonable technical and organizational measures to protect data, such as access controls and encryption in transit where supported. No system can guarantee absolute security.

If GDPR applies, you may have rights including:

• Right of access
• Right to rectification
• Right to erasure (“right to be forgotten”)
• Right to restrict processing
• Right to data portability
• Right to object (especially where we rely on legitimate interests)
• Right to withdraw consent (where consent is the legal basis)

To exercise your rights, contact: [email protected].

If you are in the EEA/UK, you have the right to lodge a complaint with your local data protection authority.

Improvica Project Planner may use essential cookies/storage required for authentication and security. If we introduce optional analytics or marketing cookies, we will update this policy and (where required) request consent.

We may update this policy from time to time. Updates will be posted here with a new “Last updated” date.