PRIVACY POLICY

1. Information We Collect

• Account data: your name, email address, workspace details, and billing contact information provided to create and manage your account.
• Authentication data: encrypted credentials, session tokens, and optional single sign-on identifiers used to authenticate users and protect accounts.
• Usage data: actions you take in the Service (such as client records, time entries, and settings changes), support communications, and limited technical logs to keep the Service reliable.
• Payment data: transaction details from our payment providers (Stripe, Paddle, and 2Checkout), such as billing country, transaction amount, and status. We do not receive full payment card numbers.

The Service is designed to use only the information necessary to operate Hourcrate.

2. How We Use the Information

• Provide, maintain, and improve the Service and its features.
• Authenticate you, secure accounts, and prevent fraud or misuse.
• Process payments, invoices, and account changes through our payment partners.
• Respond to support requests and send transactional communications about your account or the Service.
• Comply with legal, tax, accounting, and regulatory obligations.

3. Cookies and Session Management

We use essential cookies to keep you signed in, protect your session, and remember required settings. No optional or cross-site tracking cookies are set. You can disable cookies in your browser, but the Service may not function correctly without them.

4. Data Storage and Security

Data is stored on secure servers with encryption in transit and at rest where applicable. Access is limited to authorized personnel and service providers who need it to operate the Service. We apply reasonable technical and organizational safeguards, but no method of transmission or storage is completely secure.

5. Data Retention

We retain account and usage data while your account is active. Backup logs and security records are kept for limited periods. Billing and transaction records may be retained longer as required for tax, accounting, or legal obligations. When you request deletion, we remove or anonymize personal data unless we must keep it for legal reasons.

6. Your Rights

Subject to applicable law, you may request access to your personal data, correct inaccurate information, obtain a copy in a portable format, or ask us to delete your personal data. You may also object to or restrict certain processing. California and EU/UK residents may have additional rights to know the categories of data collected and to request deletion; we do not sell personal data. To exercise these rights, contact support@hourcrate.com.

7. Data Sharing

We do not sell or rent your personal data. We share information only with service providers who help us operate the Service (including hosting, email delivery, and payment processors such as Stripe, Paddle, and 2Checkout) and with authorities if required by law or to protect rights and safety. These providers are required to protect your information and use it only as instructed.

8. International Users

Your data may be transferred to and processed in countries other than where you live so we can provide the Service and support. Where required, we use legal mechanisms such as contractual safeguards to protect these transfers. By using the Service, you consent to these transfers as permitted by applicable law.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the new version on this page with an updated effective date and, when appropriate, provide additional notice.

10. Contact

Questions or requests? Email support@hourcrate.com.