Cookie Preferences

We use cookies to understand how you use our site and to improve your experience. This includes analytics to help us build a better product. See our Privacy Policy for details.

GDPR compliant · We never sell your data
OnTrack AI
Back to Home
Legal

Privacy Policy

Effective Date: April 2, 2026

Last Updated: April 2, 2026

OnTrack AI ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and website (collectively, the "Service"). Please read this policy carefully. If you disagree with its terms, please discontinue use of the Service.

1.Information We Collect

We collect information in the following ways:

1.1 Information You Provide Directly

  • Account Information: When you register, we collect your name, email address, and password (stored in hashed form).
  • Profile Data: Optional information such as your job title, industry, and productivity goals.
  • Communications: Any messages or feedback you send to us via email or in-app support.

1.2 Information Collected Automatically

  • Usage Data: Task completion records, session durations, focus scores, goal progress, and feature interactions within the app.
  • Device Information: Device type, operating system version, unique device identifiers, IP address, and browser type.
  • Log Data: Server logs including access times, pages viewed, app crashes, and performance data.
  • Analytics Data: Aggregated behavioral patterns used to improve our AI models and product features.

1.3 Information from Third Parties

  • Authentication Providers: If you sign in via Apple Sign-In or Google Sign-In, we receive your name and email address from those providers.
  • Calendar Integrations: If you connect a calendar service, we access event data only as necessary to provide scheduling features, and only with your explicit consent.

2.How We Use Your Information

We use the information we collect to:

  • Create and maintain your account and deliver the core features of the Service.
  • Power our AI productivity engine, including focus scoring, pattern recognition, and personalized recommendations.
  • Analyze usage trends and improve the performance, reliability, and features of the Service.
  • Send transactional communications such as account confirmations, password resets, and service updates.
  • Send promotional communications about new features or offers, which you may opt out of at any time.
  • Comply with legal obligations and enforce our Terms of Service.
  • Detect, investigate, and prevent fraudulent transactions and other illegal activities.
  • Protect the rights, property, and safety of OnTrack AI, our users, and the public.

3.Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website and app. These include:

3.1 Types of Cookies We Use

  • Essential Cookies: Required for the Service to function. These cannot be disabled.
  • Performance Cookies: Help us understand how users interact with our Service by collecting anonymous usage data.
  • Functional Cookies: Remember your preferences (e.g., theme settings, language) to personalize your experience.
  • Analytics Cookies: Used by our analytics provider (Umami Analytics) to measure traffic and usage patterns in a privacy-preserving manner.

3.2 Managing Cookies

You can control cookies through your browser settings. Disabling certain cookies may affect the functionality of the Service. Our analytics provider (Umami) is configured to not use cookies and does not collect personally identifiable information.

4.How We Share Your Information

We do not sell, trade, or rent your personal information to third parties. We may share information in the following limited circumstances:

4.1 Service Providers

We engage trusted third-party companies to perform services on our behalf, including cloud hosting, data analytics, customer support, and payment processing. These providers are contractually obligated to use your information only to perform services for us and in accordance with this Privacy Policy.

4.2 Third-Party Services We Use

  • Cloud Infrastructure: Amazon Web Services (AWS) — for data storage and application hosting. Data is encrypted at rest and in transit.
  • Analytics: Umami Analytics — a privacy-focused, cookie-free analytics solution. No personal data is shared.
  • Authentication: Apple Sign-In, Google Sign-In — subject to their respective privacy policies.
  • Payment Processing: Stripe — for subscription billing. We do not store payment card information on our servers. Stripe's privacy policy applies to payment data.

4.3 Legal Requirements

We may disclose your information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to protect the rights, property, or safety of OnTrack AI, our users, or others.

4.4 Business Transfers

In the event of a merger, acquisition, or sale of all or substantially all of our assets, your information may be transferred to the acquiring entity. We will notify you via email and/or prominent notice on our Service prior to any such transfer.

5.Data Retention

We retain your personal information for as long as your account is active or as needed to provide the Service. You may request deletion of your account and associated data at any time by contacting us at [email protected]. We will process deletion requests within 30 days, subject to legal retention requirements.

Aggregated, anonymized data derived from your usage may be retained indefinitely for research and product improvement purposes, as it cannot be used to identify you.

6.Data Security

We implement industry-standard security measures to protect your information, including:

  • TLS/SSL encryption for all data transmitted between your device and our servers.
  • AES-256 encryption for data stored at rest.
  • Regular security audits and penetration testing.
  • Strict access controls limiting employee access to personal data on a need-to-know basis.
  • Multi-factor authentication for internal systems.

No method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

7.Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal information:

7.1 Access and Portability

You may request a copy of the personal information we hold about you in a structured, machine-readable format.

7.2 Correction

You may update or correct inaccurate personal information through your account settings or by contacting us.

7.3 Deletion

You may request deletion of your personal information. We will honor such requests subject to any legal obligations to retain certain data.

7.4 Opt-Out of Marketing

You may opt out of receiving marketing emails by clicking the "unsubscribe" link in any marketing email or by contacting us directly. You will continue to receive transactional communications related to your account.

7.5 California Residents (CCPA)

California residents have additional rights under the California Consumer Privacy Act, including the right to know what personal information is collected, the right to delete personal information, and the right to opt out of the sale of personal information (we do not sell personal information). To exercise these rights, contact us at [email protected].

7.6 European Residents (GDPR)

If you are located in the European Economic Area, you have rights under the General Data Protection Regulation (GDPR), including the right to access, rectify, erase, restrict processing, object to processing, and data portability. Our legal basis for processing is your consent, the performance of a contract with you, and our legitimate interests. To exercise your rights, contact us at [email protected].

8.Children's Privacy

The Service is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you become aware that a child has provided us with personal information without parental consent, please contact us at [email protected] and we will take steps to remove such information and terminate the child's account.

9.International Data Transfers

OnTrack AI is operated from the United States. If you are located outside the United States, your information may be transferred to and processed in the United States, where data protection laws may differ from those in your country. By using the Service, you consent to the transfer of your information to the United States. We take appropriate safeguards to ensure that your personal information remains protected in accordance with this Privacy Policy.

10.Links to Third-Party Websites

Our Service may contain links to third-party websites or services that are not operated by us. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites. We encourage you to review the privacy policy of every site you visit.

11.Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top. For significant changes, we will also send an email notification to the address associated with your account. Your continued use of the Service after the effective date of the revised policy constitutes your acceptance of the changes.

12.Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

OnTrack AI

Email: [email protected]

Website: https://ontrackai.co