Effective Date: May 12, 2026 · Last Updated: May 12, 2026
Proofwork ("we," "us," or "our") operates myproofwork.com and is committed to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, how we protect it, and your rights with respect to it. By using the Service, you consent to the practices described in this Policy.
We collect the following categories of information:
| Category | Examples | Source |
|---|---|---|
| Account Data | Name, email address, login method | You, OAuth provider |
| Usage Data | Time entries, income entries, activity labels, categories | You |
| Billing Data | Subscription plan, payment status (card details handled by Stripe) | You, Stripe |
| Technical Data | IP address, browser type, device type, session cookies | Automatically collected |
| Communications | Emails you send to support | You |
We do not collect sensitive personal information such as government ID numbers, health data, or financial account numbers. Payment card data is processed exclusively by Stripe and is never stored on our servers.
We use the information we collect to: (a) provide, maintain, and improve the Service; (b) process subscription payments and manage billing; (c) generate AI-powered analysis reports based on your logged data; (d) send transactional communications such as billing confirmations and account notices; (e) respond to your support inquiries; (f) detect and prevent fraud, abuse, and security incidents; and (g) produce anonymized aggregate statistics for benchmarking features, where no individual user can be identified.
We do not use your personal data for advertising purposes and do not sell your data to third parties.
If you are located in the European Economic Area (EEA), our legal bases for processing your personal data are: (a) Contract performance — processing necessary to provide the Service you have subscribed to; (b) Legitimate interests — fraud prevention, security, and product improvement; and (c) Consent — where you have explicitly agreed, such as accepting these policies at account creation.
We share your information only in the following limited circumstances: (a) Service providers — third-party vendors who assist in operating the Service (e.g., Stripe for payments, cloud hosting providers), bound by confidentiality obligations; (b) Legal compliance — when required by law, court order, or governmental authority; (c) Business transfers — in connection with a merger, acquisition, or sale of assets, with notice provided to you; and (d) With your consent — for any other purpose with your explicit prior consent.
We retain your account data and usage data for as long as your account is active or as needed to provide the Service. Free plan users' time and income data older than 30 days is retained in our database but not accessible through the interface. Upon account deletion, we will delete or anonymize your personal data within 30 days, except where retention is required by law or for legitimate business purposes such as fraud prevention.
Depending on your jurisdiction, you may have the following rights regarding your personal data: the right to access a copy of your data; the right to correct inaccurate data; the right to request deletion of your data; the right to restrict or object to processing; the right to data portability (export via CSV); and the right to withdraw consent at any time. To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, the right to opt out of the sale of personal information (we do not sell personal information), and the right to non-discrimination for exercising CCPA rights.
We use session cookies strictly necessary for authentication and maintaining your logged-in state. We do not use third-party advertising cookies or cross-site tracking. For full details, see our Cookie Policy.
We implement industry-standard security measures including encrypted data transmission (TLS), hashed session tokens, and access controls to protect your personal data. However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security and disclaim liability for unauthorized access beyond our reasonable control.
The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If we become aware that we have collected personal data from a person under 18, we will take steps to delete that information promptly.
Your data may be stored and processed in the United States or other countries where our service providers operate. By using the Service, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules. Where required, we implement appropriate safeguards such as standard contractual clauses.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page with an updated effective date and, where appropriate, by email. Your continued use of the Service after changes are posted constitutes your acceptance of the updated policy.
For privacy-related inquiries, contact us at: [email protected]