S
  • Log in
  • Sign Up
Powered with

Privacy Policy

Effective Date: July 15th, 2025.

1. Introduction

Welcome to Scheduler ("we," "our," or "us"). Your privacy is important to us, and we are committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our web application.

2. Data We Collect

When you register and use our web app, we collect the following personal data:

  • Mandatory Data: Name, username, birthday, email, and password. In case you sign in with a provider, either Google or Facebook, the following data is not required: username, birthday, password.
  • Optional Data: Profile picture (only if you sign in via Google or Facebook, and a profile picture is available).
  • User-generated Data: Schedules and tables you create and save.

3. How We Protect Your Data

We implement strict security measures to ensure your data remains secure:

  • Password Security:

    • Must be at least 8 characters long.
    • Recommended use of a Password Manager’s suggested password.
    • Checked against a public database of exposed passwords 1 to verify it hasn’t been exposed in data breaches.
    • Hashed using Argon2id 2 before storage (we never store raw passwords).
    • As a second security layer, the hashed password is encrypted before being stored in the database with a UNIQUE encryption key 3.

  • Schedule Encryption:

    • All schedules are encrypted 4 completely using strong encryption algorithms before storage.

  • Data collected from external providers (Google/Facebook):

    • Name
    • Primary e-mail
    • User's profile picture (if available)

    The purpose of this data collection is to personalize the user's experience within the web application and store a record to subsequently store their created schedules.

4. How We Use Your Data

We use your data solely for the purpose of providing and improving our web app. Specifically, we use it to:

  • Authenticate your access to the platform.
  • Enable AI-assisted scheduling based on user input.
  • Improve security and prevent fraud.
  • Allow account management, including password changes and third-party provider connections (Google/Facebook).

5. Third-Party Services

We integrate external services to enhance our platform:

  • Authentication Providers: Google and Facebook for sign-in options.
  • Artificial Intelligence Service (Anthropic): An external AI system assists in generating strategic schedules.
These third-party services may collect data as per their own privacy policies. We encourage you to review their terms before connecting your account 5.

6. User Control & Account Deletion

  • Account Deletion: You may delete your account at any time. This will:
    • Remove all personal data (name, username, birthday, email, password).
    • Erase all stored schedules and tables.
    • Disconnect any linked providers (Google and/or Facebook).
    For more information, visit: Delete My Data
  • Disconnecting Providers: You can manually disconnect your account from Google or Facebook without deleting your account.
  • Password Change: You can change your password at any time.
  • Table creation: You can create, modify, save and delete the tables you own in the platform at any time.

7. Data Retention

We store your data only as long as your account is active. If you delete your account, all personal data is permanently erased.

8. Children's Privacy

Our web app is not intended for individuals under the age of 13. If we become aware that a child under 13 has provided personal data, we will take immediate steps to delete the information.

9. Cookies

We only use Cookies 6 for User's Authentication management.

10. User roles in the platform

All users in the database have the same privileges and options. This means there are no super-users or roles with special privileges within the platform that may be able to view and modify any of your data.

11. Updates to This Policy

We may update this Privacy Policy from time to time. If we make significant changes, we will notify you via email or within the web app.

12. Data Provision

We may provide your data to authorized entities under strict confidentiality. If this is the case, the process will be the following:
  • Legitimacy policy. We will perform a review of the legality of the request.
  • Data minimization policy. We will disclose the minimum information necessary.
  • Documentation of the request, including the responses and the legal reasoning and actors involved.

13. Contact Us

If you have any questions about this Privacy Policy, please contact us here.

1 Have I Been Pwned is a service that provides a list of passwords previously exposed in data breaches. This is used to avoid the use of unsuitable passwords. From our side, we check your password against a public database of exposed passwords (Have I Been Pwned) using a privacy-preserving method that ensures your password is never fully revealed.

2 Argon2id is a hybrid version of Argon2. We hash all passwords using Argon2id, a secure password hashing algorithm recommended by security experts.

3 AWS KMS is the Key Management Service provided by the Amazon Web Services. We use AWS’s secure key management infrastructure to encrypt sensitive data.

4 Sensitive data is encrypted before being stored in our database using a strong encryption algorithm and securely managed keys.

5 Anthropic Privacy Policy. For AI-related features, we use a privacy-compliant language model provided by Anthropic.

6 Cookies are small pieces of data a Server sends to the User's browser in order to preserve and manage information between the Client and the Server. In this case, we use Cookies to preserve and manage the User's authentication and session while using the application if they sign in.