Privacy Policy

Last updated: October 2025

1. Information We Collect

1.1 Personal Information

When you use Taskai, we collect the following information:

  • Gender Information: Optional gender information you provide during onboarding for personalized responses
  • Language Preferences: Your preferred language detected from your messages or device settings
  • Timezone Information: Your timezone detected from your device for accurate scheduling
  • Device Information: Device type, operating system version, and device identifiers

1.2 Subscription and Payment Information

For premium subscribers, we collect:

  • Subscription Status: Your current subscription tier (free or premium)
  • Google Play Billing Information: Purchase tokens, order IDs, and subscription status from Google Play
  • Billing Information: Subscription plan, renewal dates, and subscription history
  • Usage Data: Daily usage counts and limits for freemium enforcement

Note: All payment processing is handled securely by Google Play. We do not collect or store your credit card or payment method information.

1.3 Usage Data

We collect information about how you interact with Taskai:

  • Messages: Text messages you send to Taskai through the app interface
  • Tasks and Reminders: Task descriptions, due dates, reminder times, and completion status
  • Interaction Data: Button clicks, menu selections, and other interface interactions
  • Analytics Data: Usage patterns, feature usage, and performance metrics
  • App Usage: Session duration, feature usage frequency, and app opens

1.4 Device Identity and Technical Data

To maintain your account across app reinstalls and device changes, we collect:

  • Firebase Installation ID: A unique identifier generated by Firebase that persists across app reinstalls. This ID is stored in Google Play Services (not in app storage) and allows us to restore your account if you uninstall and reinstall the app. This ID is app-specific and not shared with other apps.
  • Device Fingerprint: A hash of device characteristics including device model, manufacturer, Android version, screen resolution, and other non-personal technical specifications. This is used as a fallback identifier for account recovery.
  • Android ID (SSAID): An app-scoped identifier that is unique per app installation. This ID is different for each app on your device and resets if you uninstall the app.
  • Device Information: Device model, Android version, screen size, and device type
  • App Information: App version, installation date, and update history
  • Push Notification Data: FCM (Firebase Cloud Messaging) tokens and notification preferences
  • Network Information: IP address, network type, and connection status
  • Log Data: Server logs, error reports, and debugging information

2. Push Notifications

2.1 Notification Types

Taskai uses push notifications to deliver:

  • Task Reminders: Scheduled notifications for your tasks and reminders
  • Morning/Evening Summaries: Daily task summaries (if enabled)
  • Nudge Reminders: Gentle prompts to help you stay on track (if enabled)
  • Service Updates: Important app updates and announcements

2.2 Notification Permissions

Push notifications require permission on Android 13+:

  • You will be asked to grant notification permission when you first create a reminder
  • You can manage notification permissions in Android Settings → Apps → Taskai → Notifications
  • Denying permission will prevent you from receiving scheduled reminders
  • You can revoke permission at any time through device settings

2.3 Firebase Cloud Messaging (FCM)

We use Google's Firebase Cloud Messaging to deliver push notifications:

  • When you enable notifications, your device receives a unique FCM token
  • This token is stored securely on our servers to send you notifications
  • FCM tokens are anonymized identifiers and contain no personal information
  • Notifications are transmitted through Google's encrypted infrastructure
  • Google may collect technical data as described in their Privacy Policy

2.4 Notification Data

The content of push notifications includes:

  • Task titles and descriptions you created
  • Scheduled reminder times
  • Quick action buttons (complete, snooze, view)

Important: Notification content is transmitted through Google's FCM service and may be temporarily stored on Google's servers for delivery.

3. How We Use Your Information

3.1 Service Provision

  • Create and manage your tasks and reminders
  • Send you scheduled push notifications via Firebase Cloud Messaging
  • Restore your account and data after app reinstall using Firebase Installation ID
  • Provide personalized responses based on your preferences and language
  • Manage recurring tasks and generate future instances
  • Synchronize data across your devices
  • Enforce daily usage limits for free tier users
  • Process subscription purchases through Google Play Billing
  • Provide premium features to subscribers
  • Send subscription-related notifications

3.2 Service Improvement

  • Analyze usage patterns to improve our AI responses
  • Debug and fix technical issues
  • Develop new features and functionality
  • Monitor system performance and reliability
  • Improve notification delivery and timing

3.3 Communication

  • Send you important service updates via push notifications
  • Respond to your support requests
  • Notify you about subscription status changes

4. Data Storage and Security

4.1 Data Storage

Your data is stored securely in our database systems with:

  • Encryption at rest and in transit using industry-standard protocols (TLS/SSL)
  • Regular security updates and monitoring
  • Access controls and authentication
  • Regular backups and disaster recovery procedures
  • Secure cloud infrastructure with redundancy

4.2 Data Retention

  • Active Data: Your tasks, reminders, and preferences are kept while you actively use the service
  • Completed Tasks: Completed tasks are retained for historical reference unless you request deletion
  • Subscription Data: Subscription status and history are retained while your subscription is active and for accounting purposes as required by law
  • Payment Data: We do not store payment information - this is handled securely by Google Play
  • FCM Tokens: Notification tokens are retained while you have the app installed and notifications enabled
  • Analytics Data: Aggregated and anonymized analytics data may be retained indefinitely
  • Inactive Accounts: Data from inactive accounts may be deleted after 2 years of inactivity

5. Data Sharing and Disclosure

5.1 Third-Party Services

We integrate with the following third-party services:

  • Google Play Services: For app distribution, subscription management, and billing
  • Firebase Cloud Messaging (FCM): For delivering push notifications to your device
  • OpenAI: For AI-powered text processing and response generation
  • Amplitude: For analytics and usage tracking
  • Google reCAPTCHA v3: For bot protection and abuse prevention

Each of these services may collect and process data according to their own privacy policies.

5.2 Google Play Services

When you subscribe to premium services through Google Play:

  • Your payment is processed securely by Google Play Billing
  • We receive subscription status and purchase tokens from Google Play
  • We do not have access to your credit card or payment method details
  • Google may share basic account information with us for subscription management
  • Your payment data is subject to Google's Privacy Policy

5.3 Firebase and Google Services

Firebase Cloud Messaging and other Google services:

  • FCM tokens are shared with Google for notification delivery
  • Google may collect device information, usage data, and analytics
  • Data is processed according to Google's Privacy Policy
  • Firebase data may be stored on Google's servers

5.4 Bot Protection and Security

We use Google reCAPTCHA v3 to protect against automated abuse and spam:

  • reCAPTCHA v3 operates transparently in the background without user interaction
  • It analyzes user behavior patterns to generate a risk score
  • Google may collect technical data such as IP address, device information, and interaction patterns
  • This data is processed according to Google's Privacy Policy
  • We only receive a security score from Google, not your personal data

5.5 Legal Requirements

We may disclose your information if required by law or to:

  • Comply with legal processes or government requests
  • Protect our rights, property, or safety
  • Prevent fraud or abuse of our services
  • Comply with Google Play Developer Program Policies

6. Your Rights and Choices

6.1 Access and Control

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Deletion: Request deletion of your data
  • Portability: Request your data in a portable format
  • Opt-out: Disable notifications or certain features

6.2 Notification Controls

You can control push notifications by:

  • Disabling specific notification types in app settings (nudges, summaries)
  • Turning off all notifications in Android Settings → Apps → Taskai → Notifications
  • Uninstalling the app will remove your FCM token and stop all notifications

6.3 Data Management

You can manage your data by:

  • Deleting individual tasks or reminders within the app
  • Updating your preferences and settings
  • Requesting account deletion by contacting us at taskai.agent@gmail.com

6.4 Subscription Management

For subscription-related rights:

  • Cancel Subscription: You can cancel your subscription at any time through Google Play Store → Subscriptions
  • Subscription History: View your subscription history in Google Play Store
  • Payment Method: Update payment methods through Google Play settings
  • Refunds: Request refunds through Google Play (subject to Google's refund policy)

7. Children's Privacy

Taskai is not directed to children under 13 years of age:

  • We do not knowingly collect personal information from children under 13
  • If you believe we have collected information from a child under 13, please contact us immediately
  • We will promptly delete any such information upon verification
  • Parents can contact us to review, delete, or request that we stop collecting their child's information

8. International Data Transfers

Your data may be processed and stored in countries other than your own:

  • We use cloud infrastructure that may store data in multiple regions
  • We ensure appropriate safeguards are in place for international data transfers
  • Transfers comply with applicable privacy laws including GDPR
  • Firebase and Google services may transfer data globally as described in their privacy policies

9. Data Protection (GDPR)

If you are in the European Union, our legal basis for processing your personal data includes:

  • Consent: Where you have given clear consent for specific processing activities (e.g., push notifications)
  • Contract: Where processing is necessary for the performance of our service
  • Legitimate Interests: Where we have legitimate business interests that are not overridden by your privacy rights
  • Legal Obligation: Where we are required to process data by law

You have additional rights under GDPR including the right to lodge a complaint with a supervisory authority.

10. Changes to This Policy

We may update this Privacy Policy from time to time:

  • We will notify you of material changes by posting the new Privacy Policy in the app
  • We may send you a push notification about significant changes
  • The "Last updated" date will be updated to reflect the latest version
  • Continued use of the app after changes constitutes acceptance of the new policy

11. Contact Us

If you have any questions about this Privacy Policy, our data practices, or want to exercise your privacy rights, please contact us:

  • Email: taskai.agent@gmail.com
  • Response Time: We aim to respond to all inquiries within 30 days

12. Google Play Data Safety

This Privacy Policy aligns with our Google Play Data Safety disclosure:

  • Data collection and usage practices are accurately represented in Google Play
  • We follow Google Play Developer Program Policies
  • Security practices meet or exceed Google Play requirements
  • Data handling practices comply with applicable laws and regulations