← Back to Home

monthlyhabits.app

Privacy Policy

Effective Date: January 6, 2025
Last Updated: January 6, 2025

Introduction

This Privacy Policy explains how MonthlyHabits ("we", "us", or "our") collects, uses, and protects your personal information when you use our habit tracking application at monthlyhabits.app (the "Service").

We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

Data Controller: MonthlyHabits
Contact Email: support@monthlyhabits.app
Location: Poland

1. Personal Data We Collect

When you create an account and use the Service, we collect and process the following personal information:

Account Information:

  • Email address - used for account authentication and essential service communications
  • Password - stored in encrypted form (we cannot access your actual password)

User Content:

  • Habits, categories, and completion records that you create within the Service

Technical Data:

  • Session cookies that maintain your logged-in state while you use the Service

2. Legal Basis for Processing Your Data

We process your personal data based on contractual necessity. This means we need your information to provide you with the habit tracking Service you have requested. Without this data, we cannot create your account or deliver the core functionality of the Service.

3. How We Use Your Personal Data

We use your personal information for the following purposes:

  • Account authentication - to verify your identity and provide secure access to your account
  • Service delivery - to store and display your habit tracking data
  • Essential communications - to send necessary emails such as password reset requests and security notifications
  • Data security - to protect your information and maintain the integrity of the Service

We do not:

  • Use your data for marketing or promotional purposes
  • Sell or rent your personal data to third parties
  • Track your activities outside the Service
  • Use analytics, advertising, or tracking technologies

4. Third-Party Service Providers

To operate the Service, we share your personal data with the following third-party service providers:

Hetzner Online GmbH (hosting provider)

  • Location: Germany (European Union)
  • Purpose: Provides server infrastructure to store and process your data
  • Role: Acts as a data processor under GDPR

Resend (email service provider)

  • Purpose: Delivers transactional emails such as password resets and security alerts
  • Role: Acts as a data processor under GDPR

These service providers process your data on our behalf in accordance with GDPR requirements and maintain appropriate security measures to protect your information.

We do not sell, rent, or share your personal data with any other third parties.

5. Data Retention

We retain your personal data for as long as your account remains active.

When you delete your account:

  • All personal data associated with your account is permanently deleted
  • Data is removed from our active systems immediately
  • Data is purged from backup systems within 30 days
  • This deletion is irreversible and cannot be undone

We do not retain your personal data beyond what is necessary to provide the Service, except where legally required.

6. Your Privacy Rights

You have the following rights regarding your personal data:

  • Access - You can view all your personal data within the Service at any time
  • Correction - You can edit and update your habits, categories, and account information directly in the Service
  • Deletion - You can permanently delete your account and all associated data through your account settings
  • Data Portability - You can download all your data in a structured, machine-readable format (JSON) using the "Export Data" feature in your account settings
  • Object to Processing - You can object to data processing by deleting your account
  • Lodge a Complaint - If you believe we have violated your data protection rights, you can file a complaint with Poland's supervisory authority, the Personal Data Protection Office (UODO), at https://uodo.gov.pl

To exercise these rights, use the features available in your account settings or contact us at support@monthlyhabits.app. We will respond to your request within one month.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal data from unauthorized access, loss, or misuse. These measures include secure server infrastructure, encrypted data transmission, and restricted access controls.

While we use industry-standard security practices, no method of transmission or storage over the internet is completely secure. We cannot guarantee absolute security but remain committed to protecting your data to the best of our ability.

8. Cookies

The Service uses session cookies to enable user authentication and maintain your logged-in state. These cookies are necessary for the Service to function properly.

We do not use analytics, advertising, or any other non-essential cookies or tracking technologies.

9. International Data Transfers

Your personal data is primarily stored and processed within the European Union.

If we engage service providers located outside the EU, we ensure appropriate safeguards are in place to protect your data in accordance with GDPR requirements. These safeguards include Standard Contractual Clauses approved by the European Commission.

10. Children's Privacy

The Service is not intended for individuals under 16 years of age. We do not knowingly collect personal data from children under 16.

If we become aware that we have collected data from a child under 16 without proper consent, we will delete such information immediately. If you believe we have collected data from a child, please contact us at support@monthlyhabits.app.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

When we make material changes:

  • We will update the "Last Updated" date at the top of this policy
  • We will notify you via email or through a notice in the Service
  • Your continued use of the Service after changes take effect means you accept the updated policy

We encourage you to review this Privacy Policy periodically.

12. Contact Us

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Email: support@monthlyhabits.app

We will respond to your inquiry within a reasonable timeframe.

By creating an account and using MonthlyHabits, you acknowledge that you have read, understood, and agree to this Privacy Policy.