This Privacy Policy explains how Doable ("the app", "we", "us") collects, uses, and protects your information. By using Doable you agree to the practices described here.
1. Information we collect
a) Account information
If you create an account, we collect your email address, a display name, and a password. Passwords are never stored in plain text — they are salted and hashed (PBKDF2) before storage and cannot be read by us.
b) Guest mode
You can use Doable without an account via Guest mode. A guest account is anonymous — it has no email and is not linked to your identity.
c) Content you create
We store the content you add to the app so it can sync and be available to you: tasks (title, notes, priority, due dates, tags, alarm times, completion status) and notes (title, content, checklists, colors).
d) Stored only on your device
- Profile photo: if you set one, it is stored locally on your device only and is not uploaded to our servers.
- App preferences & streaks: theme choice and your daily streak history are stored locally on your device.
- Alarms/notifications: reminders are scheduled locally on your device. We do not send push notifications from a server.
e) Advertising
Doable shows ads served by Google AdMob. To deliver and measure ads, AdMob may access your device's advertising identifier and limited device/usage information. We request non-personalized ads, but Google may still use data as described in its own policies. See Google's Privacy & Terms.
f) What we do NOT collect
- No third-party analytics or behavioral tracking by us.
- No location, contacts, or microphone data.
2. How we use your information
- To create and secure your account and authenticate you.
- To store, sync, and display your tasks and notes.
- To send a one-time password-reset code to your email when you request it.
- To operate, maintain, and improve the app.
We do not sell your personal information, and we do not use your content for advertising.
3. Service providers
We rely on a small number of trusted providers strictly to operate the app:
| Provider | Purpose | Data shared |
|---|---|---|
| Convex | Backend hosting & database (stores your account and content) | Account info & the content you create |
| Brevo | Sending password-reset emails | Your email address & a one-time code |
| Google AdMob | Serving in-app ads | Advertising identifier & limited device/usage data |
These providers process data only on our behalf to deliver their service.
4. Data security
Data is transmitted over encrypted connections (HTTPS/TLS). Passwords are salted and hashed using PBKDF2. Password-reset codes are single-use and expire after 15 minutes. While no method of transmission or storage is 100% secure, we take reasonable measures to protect your information.
5. Data retention & your choices
- Edit/delete content: you can edit or delete your tasks and notes at any time inside the app.
- Account & data deletion: to delete your account and all associated data, email us at the address below and we will remove it.
- Local data: uninstalling the app removes data stored on your device (profile photo, preferences, streaks).
6. Children's privacy
Doable is not directed to children under 13 (or the minimum age required in your country), and we do not knowingly collect personal information from them. If you believe a child has provided us information, contact us and we will delete it.
7. Changes to this policy
We may update this Privacy Policy from time to time. Material changes will be reflected by updating the "Last updated" date above. Continued use of the app after changes constitutes acceptance of the revised policy.
8. Contact us
Questions or requests (including data deletion)? Reach us at:
Email: admin@draftlers.com