At OmmiQ, your privacy is not just a policy—it's our core principle. We don't track you, we don't sell your data, and we don't use analytics. Your tasks and personal information stay completely private.

We only collect the minimal information necessary to provide our service:

• Your email address and name when you create an account
• The tasks and notes you create within the application
• Your preferences (theme, timezone, notification settings)
• Basic technical information required for the app to function (authentication tokens stored in your browser's local storage)

Under the General Data Protection Regulation (GDPR), we process your data based on the following legal grounds:

• Contract performance (Article 6(1)(b)) — Processing your account information, tasks, and preferences is necessary to provide the OmmiQ service you signed up for.
• Consent (Article 6(1)(a)) — Product update emails are sent based on your consent, given during sign-up. You can withdraw consent at any time by turning off "Subscribe for updates" in Settings.
• Legitimate interest (Article 6(1)(f)) — We maintain internal audit logs of administrative actions to ensure the security and integrity of our service.

Your information is used solely to:

• Provide and maintain the OmmiQ service
• Authenticate your account and sync your data
• Send product update emails (with your consent)
• Respond to your support requests

We never use your data for advertising, analytics, or any other purpose.

We do not share, sell, rent, or trade your personal information with third parties. Your data is yours and yours alone. Your data is stored in the European Union and nobody has access to it, but you.

Our application and database are hosted by Hostinger, with servers located in the European Union. Hostinger acts as a data processor on our behalf and processes your data only as necessary to provide hosting services. No other third-party services have access to your data.

Your data is encrypted in transit and at rest. We use industry-standard security measures to protect your information and regularly review our security practices. Passwords are cryptographically hashed and never stored in plain text.

OmmiQ does not use cookies or third-party tracking. We store a single authentication token in your browser's local storage to keep you signed in. This token is removed when you sign out. No analytics, advertising, or tracking cookies are used.

We retain your data only as long as necessary:

• Active accounts — Your data is kept for as long as your account is active.
• Account deletion — When you delete your account, it enters a 30-day grace period during which you can sign back in to restore it. After 30 days, all your data (profile, tasks, categories, settings) is permanently and irreversibly removed.
• Audit logs — Administrative access logs are retained for accountability purposes.

Under the GDPR, you have the right to:

• Access — Request a copy of all data we hold about you.
• Rectification — Correct any inaccurate information in your profile or settings.
• Erasure — Delete your account and all associated data.
• Data portability — Export your data in a machine-readable format.
• Withdraw consent — Opt out of product update emails at any time via Settings.
• Lodge a complaint — You have the right to lodge a complaint with your local data protection supervisory authority if you believe your data is being processed unlawfully.

If you have any questions about this Privacy Policy or wish to exercise your data rights, please contact us at hello@ommiq.com. We will respond to all data-related requests within 3 business days.