Privacy Policy

Effective Date: June 25, 2025
Last Updated: June 25, 2025

Introduction

Welcome to Aether ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our productivity application and related services (the "Service").

Aether is a hybrid desktop and web application that helps users manage tasks, set goals, and optimize productivity through AI-powered scheduling and insights.

Information We Collect

Personal Information You Provide

• Account Information: Email address, name, and password when you create an account
• Profile Information: First name, last name, timezone, and other optional profile details
• User Preferences: Theme settings, language preferences, date/time formats, working hours, and application configuration settings

Task and Productivity Data

• Tasks: Task titles, descriptions, due dates, time estimates, priorities, categories, progress, and completion status
• Goals: Goal titles, descriptions, target values, progress tracking, categories (health, career, personal, financial, education, relationships, creative, spiritual), deadlines, and achievement data
• Boards: Board names, descriptions, colors, and organizational structures
• Time Tracking: Sprint sessions, timer usage, focus time, and productivity patterns
• Subtasks: Subtask details, completion status, and hierarchical relationships

Usage and Analytics Data

• Application Usage: Feature usage patterns, interaction data, session duration, and performance metrics
• Device Information: Platform type (desktop/web), operating system, browser information (for web version)
• Error Logs: Technical error reports and diagnostic information for application improvement

AI Processing Data

• Scheduling Context: Working hours, energy levels, task priorities, and scheduling preferences
• AI Interactions: Prompts, AI-generated suggestions, scheduling requests, and user feedback on AI recommendations
• Performance Analytics: AI accuracy metrics and user satisfaction with AI suggestions

Third-Party Integrations

Neon PostgreSQL (Database) + Better Auth (Authentication)

• Purpose: Secure data storage, user authentication, and real-time synchronization
• Data Shared: All user account information, tasks, goals, preferences, and application data
• Privacy Policy: Neon Privacy Policy

Google Services

Google Calendar Integration:

• Access calendar events and create new events from your tasks
• Read calendar metadata to avoid scheduling conflicts
• OAuth 2.0 secure authentication with consent-based access

Google Tasks Integration:

• Import existing Google Tasks into Aether
• Read task lists and task data

Limited Use Disclosure

The use of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

• Data Shared: Task information marked for calendar sync, scheduled dates and times
• Permissions: Read-only access to calendars and tasks; event creation only when explicitly requested
• Privacy Policy: Google Privacy Policy

Hugging Face Inference API

• Purpose: Task scheduling optimization, time estimation, and productivity insights
• Data Processing: Task titles and descriptions (personal details are filtered out), user scheduling preferences and working hours, goal information for context-aware scheduling, board and project context for better scheduling decisions
• Data Security: All AI requests are processed through secure server-side functions
• Data Retention: AI requests are processed in real-time and not stored by the AI provider
• Privacy Policy: Hugging Face Privacy Policy

How We Use Your Information

Core Application Features

• Provide task management, goal tracking, and productivity features
• Synchronize data across your devices (desktop and web)
• Maintain your user preferences and application settings
• Enable collaboration features and data sharing (when applicable)

AI-Powered Features

• Intelligent Scheduling: Optimize task scheduling based on your preferences, working hours, and goals
• Time Estimation: Provide accurate time estimates for tasks based on historical data and AI analysis
• Productivity Insights: Generate personalized recommendations for improving productivity
• Natural Language Processing: Convert natural language input into structured tasks

Service Improvement

• Analyze usage patterns to improve application performance and user experience
• Debug technical issues and provide customer support
• Develop new features based on user needs and feedback

Communication

• Send important service updates and security notifications
• Provide customer support and respond to your inquiries
• Share feature updates and productivity tips (with your consent)

Data Security and Storage

Security Measures

• Encryption: All data is encrypted in transit (HTTPS/TLS) and at rest
• Authentication: Secure authentication using industry-standard protocols (OAuth 2.0, PKCE flow)
• Access Controls: Role-based access controls and principle of least privilege
• AI Security: AI processing occurs in secure, isolated server-side functions with no data persistence

Data Storage

• Primary Storage: Data is stored in PostgreSQL (Neon) with strong security guarantees
• Geographic Location: Data is stored in secure data centers with compliance certifications
• Backups: Regular automated backups with encryption and secure storage
• Data Isolation: Row-level security ensures user data is isolated and accessible only to authorized users

AI Data Processing

• Secure Processing: AI requests are processed through secure server-side functions with user authentication
• No AI Data Storage: Hugging Face processes requests in real-time without storing your data
• Data Minimization: Only necessary task context is sent to AI services, with personal details filtered out
• User Control: AI features can be disabled entirely through user preferences

Your Rights and Choices

Data Access and Control

• Access: View and download all your personal data through the application
• Correction: Update your personal information and preferences at any time
• Deletion: Delete your account and all associated data
• Portability: Export your data in standard formats (JSON, CSV)

Privacy Controls

• AI Features: Enable or disable AI-powered scheduling and suggestions
• Third-Party Integrations: Control what data is shared with Google Calendar and Tasks
• Data Sharing: Opt out of usage analytics and performance monitoring
• Communication: Control notification preferences and marketing communications

Account Management

• Account Deletion: Permanently delete your account and all data through the application settings
• Data Retention: Data is deleted within 30 days of account deletion
• Service Termination: Right to terminate service at any time with immediate data deletion

Data Retention

Active Accounts

• Personal data is retained as long as your account is active
• Task and goal data is retained to provide historical insights and trends
• AI interaction data is not stored beyond the immediate processing session

Account Deletion

• All personal data is permanently deleted within 30 days of account deletion
• Anonymized usage statistics may be retained for service improvement
• Backups containing deleted data are purged according to our backup retention schedule (maximum 90 days)

Legal Compliance

• Data may be retained longer if required by law or legal proceedings
• Security incident logs may be retained for up to 1 year for security monitoring

International Data Transfers

• Data may be transferred to and processed in countries other than your country of residence
• We ensure appropriate safeguards are in place for international transfers
• Neon, Hugging Face, and Google services may process data in various global regions
• All transfers comply with applicable data protection laws (GDPR, CCPA, etc.)

Children's Privacy

• Our Service is not intended for children under 13 years of age
• We do not knowingly collect personal information from children under 13
• If we discover we have collected information from a child under 13, we will delete it immediately
• Parents who believe their child has provided personal information should contact us immediately

Changes to This Privacy Policy

• We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements
• Material changes will be communicated through the application or via email
• The "Last Updated" date indicates when the policy was last revised
• Continued use of the Service after policy changes constitutes acceptance of the updated policy

Regional Privacy Rights

European Union (GDPR)

If you are in the EU, you have additional rights under the General Data Protection Regulation:

• Lawful Basis: We process your data based on contract performance, legitimate interests, and consent
• Data Protection Officer: Contact information available upon request
• Supervisory Authority: Right to lodge complaints with your local data protection authority

California (CCPA)

If you are a California resident, you have rights under the California Consumer Privacy Act:

• Right to Know: Details about personal information categories and sources
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Opt out of sale of personal information (we do not sell personal information)
• Non-Discrimination: We will not discriminate for exercising CCPA rights

Contact Information

For privacy-related questions, concerns, or requests:

• Email: nikita@nikitalobanov.com
• Website: https://www.aethertask.com

Data Protection Requests:

• Account deletion: Use the settings page in the application
• Data export: Available through the application settings
• Other requests: Contact nikita@nikitalobanov.com

Data Processing Transparency

AI Processing Details

• Model Used: Hugging Face open-source models for task scheduling and time estimation
• Data Sent: Task titles, descriptions, user preferences, working hours (personal identifiers removed)
• Processing Location: Hugging Face's secure AI infrastructure
• Response Time: Real-time processing, no data storage by AI provider
• User Control: Full opt-out available through settings

Database Operations

• Provider: Neon PostgreSQL
• Security: Row-level security, encryption at rest and in transit
• Backup: Automated daily backups, encrypted storage
• Access: Only authenticated users can access their own data