Legal

Privacy Policy

Last updated: April 2, 2026

Eima is a planner app that connects your todo list to a time-block calendar. This policy explains what data we collect, how we use it, and what control you have over it. We keep it plain-English on purpose.

What we collect

When you sign in with Google, we receive your name, email address, and profile picture. We store this to identify your account.

Everything you create in Eima — your tasks, sections, and scheduling data — is stored in our database to power the app. That's what makes it sync across platforms.

We also collect standard server logs: IP addresses, request timestamps, and HTTP status codes. These help us diagnose errors and prevent abuse. We do not include the content of your tasks in server logs or audit records.

What we don't collect

  • No advertising or tracking pixels
  • No behavioral analytics sold to third parties
  • No payment information — if billing is added in the future, Stripe handles it directly

Third-party services

We use third-party services for authentication, hosting, database storage, and abuse prevention. These services process data on our behalf and are bound by their own privacy policies. We use Google for sign-in and, if you connect it, calendar sync.

How we use your data

We use your data only to provide and improve Eima. We don't sell your data. We don't use your task content for advertising. We may use aggregated, anonymized usage patterns (e.g. how many users schedule tasks each week) to guide product decisions — this cannot be traced back to you.

Data retention

Your data is retained as long as your account is active. When you delete your account, your tasks and personal information are deleted within 30 days. Rate-limiting data in Upstash expires automatically within minutes to hours.

Your rights

You can:

  • Access all your data by exporting from the app (export feature coming soon)
  • Request deletion of your account and all associated data
  • Disconnect Google Calendar at any time from your account settings

Security

Your data is transmitted over HTTPS and stored in a managed cloud database. We follow standard security practices, but no system is perfectly secure. If you discover a vulnerability, please contact us directly before disclosing publicly.

Changes to this policy

If we make material changes, we'll update the date at the top of this page and notify you by email if the change affects how we handle your data.

Contact

Questions? Email us at support@infylabs.com.