The short version. TimePeace keeps your data so that the features you choose can work — and for no other reason. Nothing is switched on without your say-so, you can change your mind at any time, and your data is always yours to read, download or delete. The rest of this page just spells that promise out properly.
Who we are. TimePeace is a personal life-tracking app made by Nathan Duvel ("we"), based in South Africa, who also acts as the Information Officer under POPIA. If you ever have a question or worry about your data, email privacy@timepeaceapp.com and a person — not a form — will reply.
What we collect, and why it helps you.
· The essentials. When you create an account we keep your email address so you can sign in, and we save the things you write — your diary, quick notes, plans, meals, lists, trips, the dates you’re counting down to, and (if you use the Studies feature) your courses, classes and deadlines — so they are safe in your account and waiting on every device you use. We also keep the life-roles and interests you pick (“the hats you wear”) and the activities you choose to keep, stored in your own account, so the app can quietly lead with what suits you; these only ever tailor what you see, and you can change them any time in Settings. We also keep routine security logs that protect your account. This is simply the service working as promised, so the legal basis is performance of a contract (GDPR Art 6(1)(b); POPIA s11(1)(b)); backups and abuse prevention rest on legitimate interest. To keep the service healthy we also look at simple aggregate numbers that fall out of running it — how many accounts exist, and how many synced on a given day. These are counts, not behaviour: we never read what you wrote to produce them, they identify no one, and they rest on our legitimate interest in operating TimePeace.
· Health & wellbeing. If you switch this on, we store the wellbeing moments you log yourself — mood, sick days, workouts, sleep and water — so you can see them woven through your diary and notice gentle patterns over time. This also covers the optional "Breaking a habit" tracker: if you use it, we store what you choose to record about a habit you’re changing (your own label, your check-ins, slips and notes) — it is private to your account, never shared, and shown to no one. Health information is specially protected in law, so we only process all of this after your explicit consent (GDPR Art 9(2)(a); POPIA s27(1)(a)), asked in its own clearly-marked step. Withdraw whenever you like: the health features simply go to sleep, and your data stays yours until you clear it.
· People & relationships. If you switch this on, we store the names and catch-up rhythms you choose to record, anything you note about the people you care about — what’s going on in their life, life events and gift ideas — and the gatherings you plan (who’s coming, where, when, and a group gift), so TimePeace can help you remember birthdays, nudge the friendships you want to keep warm, show who shared your days, and organise the occasions you host. The basis is your consent — and because these notes describe other people, please record them considerately.
· Money & spending. If you switch this on, we store the budgets, savings goals and spending you track, so the Money features can show you where things stand. If you split a shared expense, we store the amounts and who owes whom (scoped to a trip or gathering, with the people you choose) — settling is only a marker, we never move money. On a trip you can record spend in its local currency; to show the rand equivalent, our own backend fetches a live public exchange rate (see “Who helps us run the service”) and sends nothing about you. The basis is your consent, and nothing about your money is processed before you give it.
· Helping improve TimePeace. If you opt in, we receive anonymous-style usage signals — which screens and features get used, and when. Your account is replaced by a one-way code before anything is stored; we never see your name, your email, or anything you wrote. These signals exist purely so the app keeps getting better. The basis is your consent: it is off by default, and one tap in Settings → Privacy turns it off again.
Who helps us run the service. A few trusted providers do the heavy lifting: Supabase stores your data and handles sign-in (under their data-processing agreement with Standard Contractual Clauses), Cloudflare serves the app to your browser, jsDelivr (a public content network) delivers one open-source charting library the app uses — it receives a standard web request (your IP address) and never anything about you or what you write, Frankfurter (a public, open-source exchange-rate service built on European Central Bank data) is queried by our Supabase backend — never your device — to show live currency conversions on trips, receiving only that generic server request and nothing about you or what you write, and Google is involved only if you choose to sign in with Google. When you import a recipe by a link, that same Supabase backend fetches the page you chose (so the recipe site sees our server, not your device) and returns only the recipe to fill the form — we keep just the recipe you save. That is the whole list. We never sell your data, we never share it for advertising, and there are no ads or trackers in the app. (Our public website — the pages that explain TimePeace, not the app itself — uses Cloudflare’s privacy-first Web Analytics: cookieless, it stores nothing on your device, builds no profile and never tracks you across other sites, counting only aggregate visits so we can see what helps. It touches none of your account data; the basis is our legitimate interest.)
Where your data lives. Those providers may store data outside your own country — including outside South Africa (permitted under POPIA s72 with contractual safeguards) and outside the UK/EEA (covered by SCCs or adequacy decisions). The protections travel with your data.
How long we keep things. Your data stays for as long as your account exists, because that is what keeps it available to you. Anything you clear waits in your Trash for 30 days (in case you change your mind), then is deleted. If you delete your account, your synced data and backups are removed immediately and your sign-in record within 30 days. Records of your consent choices are kept as legal evidence that we honoured them.
Your rights — always. You can see your data, correct it, download it (Settings → Privacy → Download my data), restrict or object to processing, withdraw any permission, or delete everything — and withdrawing is always as easy as granting was. If you are ever unhappy, you can complain to the SA Information Regulator (inforegulator.org.za), the UK ICO (ico.org.uk), or your EU supervisory authority. We respond within one month.
Only the essentials are required. Everything else is optional and off by default, and the app works happily without it — the related features simply rest until you want them. We only ask for a permission when a feature you have chosen actually needs it: if you skip a feature at sign-up it stays off and its permission is never requested, and turning it on later asks you then.
Children. TimePeace is not directed at children under 16 and we do not knowingly process their data.
How we protect it. Your data sits behind per-user row-level security (each account can only ever reach its own rows), travels encrypted, and every account gets the same row-level protection from its first moment. Your consent choices are stored in records that cannot be edited after the fact.
If this policy changes. Any material change — a new purpose, a new kind of data, a new provider — is put to you in the app for fresh consent before it applies. Wording improvements get a new version number, like this one. Every previous version is archived and available on request.