Privacy Policy

1. Introduction

PLANit Solutions LLC (“PLANit”, “we”, “us”, or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the PLANit mobile application (“App”) and related services.

Please read this Privacy Policy carefully. By using the App, you consent to the practices described in this policy. If you do not agree with this Privacy Policy, please do not use the App.

This Privacy Policy is incorporated into and subject to our Terms of Service.

2. Information We Collect

2.1 Information You Provide Directly

Account Information:

• Email address
• Username and display name
• Password (stored in encrypted form)
• Profile information (bio, pronouns, location, website)
• Profile photo

Content You Create:

• Goals and tasks
• Journal entries and notes
• Calendar events and schedules
• To-do lists and reminders
• Community posts and comments
• Messages and communications
• Focus session data
• Progress and completion data

Preferences and Settings:

• App preferences and settings
• Notification preferences
• Privacy settings
• Theme and display preferences

2.2 Information Collected Automatically

Device Information:

• Device type, model, and manufacturer
• Operating system and version
• Unique device identifiers
• IP address
• Time zone and language settings

Usage Data:

• App interactions and feature usage
• Session duration and frequency
• Navigation patterns within the App
• Performance data and crash reports
• Error logs and diagnostics

2.3 Information from Third-Party Services

When you connect third-party services, we may receive:

• Apple Sign-In: Email, name (if shared)
• Google Sign-In: Email, name, profile photo
• Calendar Integration: Calendar events, availability
• Health Data (with your permission): Activity, steps, sleep data

2.4 Cookies and Tracking Technologies

We use cookies, local storage, and similar technologies to maintain your session and preferences, analyze usage patterns, improve App performance, and provide personalized features.

3. How We Use Your Information

3.1 Core Service Provision

• Create and manage your account
• Provide goal tracking and planning features
• Enable community features and social sharing
• Sync your data across devices
• Send notifications and reminders

3.2 Personalization and AI Features

• Provide AI-powered suggestions and recommendations
• Personalize your experience based on usage patterns
• Generate insights and analytics about your progress
• Improve content relevance and timing

3.3 Communication

• Send service-related announcements
• Respond to your inquiries and support requests
• Send promotional communications (with your consent)
• Notify you of updates to our Terms or Privacy Policy

3.4 Analytics and Improvement

• Analyze usage patterns to improve the App
• Identify and fix technical issues
• Develop new features and services
• Conduct research and analysis

3.5 Safety and Security

• Detect and prevent fraud and abuse
• Enforce our Terms of Service
• Protect the rights and safety of users
• Comply with legal obligations

3.6 Legal Bases for Processing (EEA Users)

We process your data based on: Contract performance (providing our services); Legitimate interests (improving services, security); Legal obligations (compliance requirements); and Consent (marketing, optional features).

4. Information Sharing and Disclosure

4.1 We Do NOT Sell Your Personal Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

4.2 Information You Choose to Share

When you use community features, certain information becomes visible to other users according to your privacy settings, including public posts and comments, profile information you make public, shared goals and achievements, and community interactions.

4.3 Service Providers

We share information with trusted service providers who assist us in operating the App:

• Cloud Infrastructure: Supabase (database and authentication), Apple Cloud Services, Google Cloud Services
• Analytics: Firebase Analytics, crash reporting services
• AI and ML: Third-party AI providers for AI features, on-device ML processing where possible

All service providers are bound by data protection agreements and may only use your information to provide services to us.

4.4 Legal Requirements

We may disclose your information if required by law or if we believe in good faith that such disclosure is necessary to comply with legal obligations, protect our rights, protect user safety, or investigate potential violations of our Terms.

4.5 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

4.6 Aggregated and De-identified Data

We may share aggregated or de-identified data that cannot reasonably be used to identify you for research, analysis, or other purposes.

5. Data Storage and Security

5.1 Data Storage

PLANit. uses an offline-first architecture, meaning your data is stored locally on your device first and synced to the cloud when connectivity is available. Cloud data is stored on secure servers provided by Supabase, which uses industry-standard security measures. Data may be stored in various locations worldwide to ensure reliable service delivery.

5.2 Local Storage

Some data is stored locally on your device to enable offline functionality and improve performance, including cached content, draft entries, preferences and settings, and encryption keys.

5.3 Security Measures

We implement comprehensive security measures including:

Technical Safeguards:

• End-to-end encryption for sensitive communications
• TLS/SSL encryption for data in transit
• AES-256 encryption for data at rest
• Secure authentication protocols
• Regular security audits and penetration testing

Operational Safeguards:

• Access controls and authentication
• Employee security training
• Incident response procedures
• Regular security assessments

5.4 Security Limitations

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your login credentials, reporting any suspected security breaches, and using secure networks when accessing the App.

6. Data Retention

6.1 Active Accounts

We retain your information for as long as your account is active or as needed to provide you services:

• Account information: Until account deletion
• Content: Until you delete it or your account
• Usage data: Up to 24 months
• Communications: Up to 36 months

6.2 Deleted Accounts

When you delete your account:

• Profile and account data: Deleted within 30 days
• User-generated content: Deleted within 30 days
• Backup copies: Deleted within 90 days
• Anonymized analytics data: May be retained indefinitely

6.3 Legal Requirements

We may retain certain information for longer periods if required by law or for legitimate business purposes such as compliance with legal obligations, dispute resolution, fraud prevention, and enforcement of agreements.

6.4 Inactive Accounts

Accounts that have been inactive for more than 24 months may be subject to deletion after notice. You will receive advance notification before any such deletion.

7. Your Privacy Rights

7.1 Access and Portability

You have the right to access your personal information, request a copy of your data in a portable format, and view and export your content.

7.2 Correction and Update

You have the right to correct inaccurate information, update your profile and preferences, and modify your content.

7.3 Deletion

You have the right to delete specific content, request deletion of your account and associated data, and remove third-party service connections.

7.4 Objection and Restriction

You have the right to object to certain processing activities, restrict processing in certain circumstances, and opt out of marketing communications.

7.5 How to Exercise Your Rights

To exercise these rights, use the privacy settings in the App, contact us at privacy@getplanitnow.com, or submit a request through our support channels. We will respond to valid requests within 30 days.

7.6 Non-Discrimination

We will not discriminate against you for exercising your privacy rights. However, some features may not be available if you choose not to provide certain information.

8. Children's Privacy

8.1 Age Requirements

The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

8.2 Teen Users (13-17)

Users between 13 and 17 may use the App with parental consent. We encourage parents and guardians to monitor their children's online activities.

8.3 Parental Rights

Parents and guardians have the right to review their child's information, request deletion of their child's data, and revoke consent for data collection.

8.4 COPPA Compliance

We comply with the Children's Online Privacy Protection Act (COPPA) and similar laws. If we discover that we have collected information from a child under 13 without parental consent, we will delete that information promptly. If you believe we have collected information from a child under 13, please contact us immediately at privacy@getplanitnow.com.

9. International Data Transfers

9.1 Data Location

Your information may be transferred to and processed in countries other than your country of residence, including the United States. These countries may have different data protection laws.

9.2 Transfer Safeguards

When we transfer data internationally, we use appropriate safeguards including Standard Contractual Clauses (SCCs), Data Processing Agreements, Privacy Shield certification where applicable, and adequacy decisions.

9.3 EEA, UK, and Swiss Users

For users in the European Economic Area, United Kingdom, or Switzerland, we ensure that any transfer of personal data complies with applicable data protection laws and that appropriate safeguards are in place.

10. California Privacy Rights (CCPA)

10.1 California Residents' Rights

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Categories of personal information collected, sources, purpose, and third parties
• Right to Delete: Request deletion of your personal information, subject to exceptions
• Right to Opt-Out: We do not sell personal information; you can opt out of targeted advertising
• Right to Non-Discrimination: Exercise your rights without discrimination

10.2 How to Exercise CCPA Rights

Submit requests through email at privacy@getplanitnow.com, in-app privacy settings, or our privacy request form. We will verify your identity before processing requests.

10.3 Shine the Light

California Civil Code Section 1798.83 permits California residents to request information about disclosure of personal information to third parties for direct marketing. We do not share your information with third parties for their direct marketing purposes.

11. European Privacy Rights (GDPR)

11.1 EEA, UK, and Swiss Users

If you are in the European Economic Area, United Kingdom, or Switzerland, you have additional rights under GDPR. We process your data based on: Contract (to provide our services); Legitimate Interests (for security, improvement, and analytics); Legal Obligations (to comply with laws); and Consent (for marketing and optional features).

11.2 Additional Rights

• Right of Access (Article 15)
• Right to Rectification (Article 16)
• Right to Erasure (Article 17)
• Right to Restrict Processing (Article 18)
• Right to Data Portability (Article 20)
• Right to Object (Article 21)
• Rights Related to Automated Decision-Making (Article 22)

11.3 Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at dpo@getplanitnow.com.

11.4 Supervisory Authority

You have the right to lodge a complaint with a supervisory authority in your country of residence.

12. Third-Party Services and Links

12.1 Third-Party Integrations

The App integrates with third-party services. When you connect these services, their privacy policies apply to the data they collect:

• Authentication Providers: Apple (Sign in with Apple), Google (Google Sign-In)
• Cloud Services: Supabase, Firebase

12.2 Third-Party Links

The App may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

12.3 Social Features

When you share content to external platforms, their privacy policies govern the handling of that content.

13. Cookies and Tracking

13.1 Types of Technologies Used

We use essential technologies (session management, security tokens, user preferences) and analytics technologies (usage analytics, performance monitoring, error tracking).

13.2 Your Choices

You can manage tracking preferences through App privacy settings, device settings (iOS tracking permissions), and Do Not Track signals.

13.3 iOS Tracking Transparency

We comply with Apple's App Tracking Transparency framework. We will request your permission before tracking your activity across other companies' apps and websites.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will update the “Last Updated” date, notify you of material changes through the App or email, and continued use constitutes acceptance of the updated policy. Previous versions of this Privacy Policy are available upon request.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: