Privacy Policy

1. Introduction

At Timers Studio, accessible via https://timers.studio/ (the "Website"), we are deeply committed to protecting your privacy and personal data. This Privacy Policy outlines how ADBX Strategic Solutions FZ-LLC, a Free Zone Limited Liability Company registered in Ras Al Khaimah, United Arab Emirates ("we," "us," or "our"), collects, uses, secures, and discloses your information when you use our web application and services (the "Service").

By accessing the Service, you consent to the data practices described in this policy.

2. Information We Collect

We collect information to provide a seamless timer and event management experience. This occurs in two ways:

A. Information You Provide Directly - Account Registration: When you sign up, we collect your email address and name. If you use Google Login, we receive your name, email, and profile picture from Google, but we do not store your Google password. - Guest Usage (No Account): If you use the platform without creating an account, we collect temporary data related to the timers you create. Please note: This data is ephemeral (see Section 5). - Billing Information: If you upgrade to a paid plan, our payment processor handles your financial data securely. We do not store full credit card numbers on our servers. - Support Communications: Any data you provide when contacting our support team.

B. Information Collected Automatically - Usage Data: We log technical information about your interaction with the Service, such as the pages you visit, the duration of your sessions, and the configuration of your timers. - Device Data: We may collect information about the device and browser you use (IP address, browser type, operating system) to ensure compatibility and security.

3. How We Use Your Data

We process your personal data for specific, legitimate business purposes:

• Service Delivery: To authenticate your identity, synchronize timers across devices in real-time using our React-based player, and save your preferences via Supabase.
• Communication: To send you transactional emails (password resets, billing receipts) or important service updates.
• Security: To detect and prevent fraudulent activities or abuse of the platform.
• Improvement: To analyze usage patterns and improve the performance of our Studio and Player interfaces.

4. Third-Party Service Providers (Sub-processors)

We do not sell your data. However, we trust specific third-party providers to help us operate the Service. These partners are strictly vetted for security and data compliance. Supabase handles database hosting, authentication, and real-time backend infrastructure, processing your email address, user ID, timer data, and IP address. Google Cloud provides OAuth authentication for sign-in flows, handling authentication tokens. Stripe and Paddle process payment transactions where applicable, managing billing details directly on their own secure infrastructure. Postmark and AWS SES handle transactional email delivery, processing your email address for that purpose. We may update this list as our infrastructure evolves. Significant changes will be communicated to you.

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy or to comply with legal obligations.

• Registered Accounts: Data is kept securely while your account remains active.
• Guest / Unregistered Users: If you use the Service without creating an account, any data you create (specifically timer configurations) is stored for a strict period of 24 hours. After this 24-hour window, all guest data is permanently deleted from our databases. To ensure your timers are saved and accessible later, you must create an account.
• Deleted Accounts: If you delete your account, your personal data is removed from our active databases within 30 days. Backup copies may be retained for a short period (up to 90 days) for disaster recovery purposes before being permanently overwritten.

6. Security Measures

We employ robust security measures to protect your data, including:

• Encryption: All data transmitted between your browser and our servers is encrypted using TLS/SSL protocols.
• Access Control: Access to personal data is restricted to authorized employees and contractors who need it to maintain the Service.
• Infrastructure: Our backend relies on Supabase, which adheres to industry-standard security certifications (SOC2, HIPAA compliance where applicable).

7. Your Rights

Under applicable data protection laws (and in alignment with GDPR principles), you have the following rights:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can update incorrect or incomplete information via your account settings.
• Right to Deletion (Right to be Forgotten): You can request the permanent deletion of your account and associated data.
• Right to Data Portability: You can request your data in a structured, machine-readable format.
• Right to Withdraw Consent: You may withdraw your consent for data processing at any time by closing your account.

To exercise any of these rights, please contact us at: [email protected]. We will respond to verified requests within 30 days.

8. Cookies and Tracking

We use essential cookies and local storage technologies to keep you logged in and to maintain your session state (e.g., keeping your timers running). We do not use third-party advertising cookies. If we introduce analytics tools (like Google Analytics) in the future, we will ask for your explicit consent via a cookie banner.

9. International Data Transfers

ADBX Strategic Solutions FZ-LLC is based in the United Arab Emirates. Information we collect may be transferred to, stored, and processed in regions where our cloud providers (Supabase, Google) operate. By using the Service, you acknowledge and consent to these transfers.

10. Children's Privacy

The Service is not intended for individuals under the age of 13. We do not knowingly collect personal data from children. If we become aware that a child has provided us with personal data, we will take steps to delete such information immediately.

11. Changes to This Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes, we will notify you by email or by means of a prominent notice on our Website. Your continued use of the Service after such modifications constitutes your acknowledgment of the modified Policy.

12. Contact Us

If you have questions or concerns about this Privacy Policy, please contact our Data Protection Officer at:

Email: [email protected] (or [email protected])

Mailing Address: ADBX Strategic Solutions FZ-LLC FDCW2188, Compass Building, Al Shohada Road, Al Hamra Industrial Zone-FZ, Ras Al Khaimah, United Arab Emirates