Last updated: May 5, 2026 Plain language. Aligned with how Roko actually works.
This Privacy Policy explains how Roko ("Roko", "we", "us", "our") collects, uses, shares, and protects information about you when you use the Roko mobile app, the related website, and any associated services (together, the "Service"). Roko is operated by Erjon Kelleci, an independent developer based in Albania ("the Operator", "we"). You can reach us at support@rokohub.com or +355 69 574 9908.
By creating an account or using the Service you agree to this Privacy Policy. If you do not agree, do not use the Service.
We collect what we need to run the Service: your account, the projects and tasks you create, your subscription state, technical data from your device, and — only if you set a location reminder — your location.
We do not sell your personal information. We do not show ads. We do not run cross-app tracking.
We use a small number of trusted vendors (named in Section 4) to host data, deliver notifications, process payments, and answer AI prompts. They process data on our behalf.
You can delete your data and your account at any time from inside the app.
If you live in the EEA, the UK, Switzerland, California, or any jurisdiction with data-protection laws, you have the rights set out in Section 11.
This policy applies to anyone who:
creates a Roko account,
is invited as a collaborator to a project,
contacts us at one of the addresses above, or
visits a public Roko web page.
It does not apply to third-party services, websites, or apps that link to Roko or that we link to. Their privacy practices are governed by their own policies.
Roko is intended for general adult use. We do not knowingly collect personal information from children under 13 (or under the digital-consent age in your country, where higher). See Section 9.
We collect information in three ways: (a) information you give us, (b) information we collect automatically when you use the Service, and (c) information we receive from third parties such as your collaborators or your app store.
Account information: name, email address, profile photo, language preference, and (if you sign in with Apple or Google) the identifier returned by that provider.
Authentication credentials: the magic-code one-time tokens we send to your email, or the OAuth tokens issued by Apple Sign In / Google Sign-In.
Project content: projects, sub-projects, tasks, labels, statuses, dependencies, priorities, due dates, comments, attachments, reminders, and any other content you create, upload, or store inside Roko.
Collaboration data: invitations you send, role assignments, mentions, and the project content visible to collaborators you invite.
Communications: support emails, in-app feedback, replies to operational emails.
Subscription preferences: which paid plan you choose; we do not see or store your full payment-card details — those are handled by the App Store or Google Play.
Device & technical information: device model, operating system version, app version, language, time zone, country (derived from IP at a coarse level), and a device-level identifier used to associate push notifications with your account.
Push notification token: the token issued by Apple Push Notification service (APNs) or Firebase Cloud Messaging (FCM) so we can deliver reminders and project updates.
Diagnostics & usage: anonymous events describing how features are used (for example, "task created", "reminder fired"), error logs, and crash reports.
Location: precise device location is read only at the moment you set a location-based reminder, and again in the background when the system needs to evaluate whether you have entered the saved geofence. Background location is restricted to geofence evaluation; we do not record or store a continuous trail of where you go.
AI assistant inputs and outputs: the prompts you type into the AI assistant, the responses returned, and counters tracking how many AI requests you have made in the current quota window.
Log data: request timestamps, IP address, and basic request metadata generated when your device talks to our backend.
Sign-in providers: if you sign in with Apple or Google, we receive the identifier and email address you authorized them to share.
App stores: Apple App Store and Google Play notify us when your subscription is purchased, renewed, refunded, paused, or canceled (via RevenueCat — see Section 4). They do not share your full payment card; we receive only an anonymized customer ID, the product purchased, and the transaction state.
Collaborators: when someone invites you to a project, we receive their identification of you (typically your email) so we can deliver the invitation and link your account to the project on accept.
Roko relies on a small set of vendors ("subprocessors") to operate. They process personal information on our behalf, only for the purpose stated, and only under contractual confidentiality and security obligations. The current subprocessors are:
InstantDB — authentication, real-time database, and file storage. Processes account data, project content, collaborator data, and files. United States.
Google Firebase (Cloud Messaging, Crashlytics, Analytics) — push notification delivery, crash reporting, and anonymous usage analytics. Processes push token, device and app metadata, crash logs, and anonymous event counts. United States.
RevenueCat — subscription management and entitlement validation. Processes anonymous customer ID, subscription state, and transaction events from the App Store / Google Play. United States.
Apple App Store — iOS in-app purchase processing and billing. Apple handles your payment data; we do not see card data. Operated by Apple Inc.
Google Play — Android in-app purchase processing and billing. Google handles your payment data; we do not see card data. Operated by Google LLC.
Apple Sign In and Google Sign-In — federated login. Processes the provider-issued user ID and email. Operated by Apple / Google.
AI assistant provider — processes prompts you submit to the in-app AI assistant and returns responses. United States.
MapLibre tile server — renders background map tiles when you pick a location for a reminder. Processes IP address and tile request coordinates only — no account or reminder content. Public open-source infrastructure.
Sentry (where used) — error monitoring. Processes stack traces, app version, and anonymized device metadata. United States.
We may add or replace subprocessors as the Service evolves. Material changes to the subprocessor list will be reflected in this policy with an updated effective date. We do not authorize any subprocessor to use your data to train AI models, sell it, or use it for their own marketing.
We use the information we collect to:
Operate the Service — create your account, sync your projects across devices, deliver reminders, process AI requests, and let collaborators see the projects you share with them.
Bill subscriptions — confirm purchases, validate entitlements, deliver paid features, and handle renewals or cancellations.
Communicate with you — send transactional emails (magic codes, account changes), in-app notices, and replies to your support requests.
Improve the Service — measure which features are used, diagnose bugs and crashes, plan capacity, and decide what to build next. We use aggregate or anonymized data wherever feasible.
Protect the Service — detect and prevent fraud, abuse, security incidents, automated scraping, and violations of our Terms of Use.
Comply with law — meet legal, tax, accounting, and reporting obligations, and respond to legitimate legal requests.
If you are in the European Economic Area, the United Kingdom, or Switzerland, our legal bases under the GDPR / UK GDPR are:
Performance of a contract (Art. 6(1)(b) GDPR) — to provide the Service you signed up for.
Legitimate interests (Art. 6(1)(f)) — to secure, debug, and improve the Service, prevent abuse, and run our business. We balance these against your rights and freedoms.
Consent (Art. 6(1)(a)) — for optional features such as push notifications, location, the AI assistant, and any future marketing communications. You can withdraw consent at any time without affecting prior processing.
Legal obligation (Art. 6(1)(c)) — to comply with applicable law (for example, tax records).
We do not use your personal information for automated decision-making that produces legal or similarly significant effects on you.
We share personal information only in the situations described below.
With your collaborators. Project content, your name, email, and profile photo are visible to people you invite to a project, scoped to the role you grant them.
With our subprocessors listed in Section 4, strictly to provide the Service.
With your payment provider (Apple or Google) when you buy or manage a subscription.
In a corporate transaction. If Roko is acquired, merged, or its assets transferred, your information may be transferred as part of that transaction. We will notify you and any new operator will be bound by terms at least as protective as this policy.
For legal reasons. We may disclose information when we reasonably believe disclosure is required to comply with law, enforce our Terms, protect the rights, property, or safety of Roko, our users, or the public, or respond to a lawful request from a competent authority. We will challenge requests we consider overbroad and notify the affected user where lawful.
With your consent, for any purpose disclosed at the time we collect the information.
We do not sell personal information. We do not share personal information for cross-context behavioral advertising. We do not allow third parties to use information we collect to train their own AI models.
Roko's vendors are primarily located in the United States. When we transfer personal information from the EEA, the UK, or Switzerland to a country that has not received an adequacy decision, we rely on the European Commission's Standard Contractual Clauses (and the UK Addendum where applicable), supplemented by additional security measures such as encryption in transit and at rest.
If you would like a copy of the safeguards in place for a specific transfer, contact us at support@rokohub.com.
We keep your information only for as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce our agreements. Specifically:
Account data — for the life of your account, plus up to thirty (30) days after you delete it, to allow recovery from accidental deletion. After that, we delete or fully anonymize it.
Project content — until you delete it from inside the app, or until your account is deleted (whichever comes first).
Subscription / payment records — up to seven (7) years after the transaction, where required by tax and accounting law.
Diagnostic and crash logs — typically up to 90 days, after which they are aggregated or deleted.
AI prompts and responses — up to thirty (30) days for abuse-detection, then deleted unless you explicitly save the output inside the app.
Backups — overwritten on a rolling basis, typically within 35 days.
We may retain limited records for longer where required to defend or pursue legal claims, comply with a regulatory obligation, or as permitted by law.
The Service is not directed to children under 13, and not directed to children under the digital-consent age in your country (16 in much of the EEA, unless that member state has set a lower age). We do not knowingly collect personal information from such children. If you believe a child under that age has provided us personal information, contact us and we will delete it.
We use commercially reasonable administrative, technical, and physical safeguards to protect your information, including:
TLS 1.2+ encryption for all client–server traffic.
Encryption at rest in our managed database and storage providers.
Role-based access to internal tooling, with audit logging.
Short-lived authentication tokens, magic-link sign-in, and federated OAuth as alternatives to passwords.
Periodic review of subprocessors, dependencies, and code for known vulnerabilities.
No system is completely secure. You are responsible for keeping your device, email account, and federated-login credentials safe. Tell us at support@rokohub.com immediately if you believe your account has been compromised.
Depending on where you live, you may have the rights below. We will not discriminate against you for exercising them, and we will not charge a fee unless your request is manifestly unfounded or excessive.
Access — request a copy of the personal information we hold about you.
Rectification — correct inaccurate or incomplete information.
Erasure — delete your information ("right to be forgotten").
Restriction — limit how we process your information.
Objection — object to processing based on our legitimate interests.
Portability — receive your information in a structured, machine-readable format.
Withdraw consent — withdraw any consent you previously gave, at any time.
Lodge a complaint — file a complaint with your local data-protection authority in the EEA, UK, or Switzerland, or with the Albanian Information and Data Protection Commissioner (idp.al).
To exercise these rights, email support@rokohub.com from the address associated with your account, or use the in-app Delete Account option in Settings. We will verify your identity and respond within thirty (30) days, with one possible extension of an additional sixty (60) days for complex requests.
If you reside in California you also have the right to:
know what categories and specific pieces of personal information we collect, the sources, the purposes, and the categories of third parties with whom we share it;
delete personal information we collect, subject to legal exceptions;
correct inaccurate personal information;
limit the use and disclosure of "sensitive personal information" — Roko does not use sensitive personal information for purposes that require this right;
opt out of the "sale" or "sharing" of personal information — Roko does not sell or share personal information as those terms are defined under the CCPA;
be free from retaliation for exercising your rights.
You may submit verifiable consumer requests to support@rokohub.com.
We send transactional and operational messages (magic codes, security alerts, billing receipts, important Service announcements). These are required to use the Service and you cannot opt out of them while you have an account.
We do not currently send promotional or marketing communications. If we begin doing so we will obtain your prior consent where required by law and will give you a clear opt-out in every message.
Push notifications are optional. You enable them when you tap "Allow" in the iOS or Android system prompt. You can revoke consent any time in your device settings; reminders and collaboration alerts will then no longer reach you.
Location is optional and used only when you set a location-based reminder. Roko requests Always location authorization on iOS / "All the time" on Android only because background geofence evaluation requires it; without it the reminder cannot fire when you arrive. You can revoke this in your device settings; existing time-based reminders continue to work.
Roko does not request the iOS App Tracking Transparency permission. We do not use the IDFA, do not measure cross-app advertising attribution, and do not run cross-context behavioral tracking.
The Roko mobile app does not use HTTP cookies. It does store technical data on your device (auth tokens, your local copy of project content, theme preferences, and similar settings) so the app can run while offline and so you stay signed in between launches.
Public Roko web pages may use minimal first-party cookies for security and load balancing.
When you use the in-app AI assistant, the text of your prompt is sent to our AI assistant provider for processing. We instruct the provider not to use your prompts to train models. Do not paste secrets, payment card numbers, government identifiers, medical information, or any personal data of third parties into the assistant — its purpose is project drafting, summarization, and structuring of project content you already control.
We may update this Privacy Policy. When we do, we will publish the new version inside the app and on our website with a new "Last updated" date. If a change is material we will notify you in-app or by email before the change takes effect. Continued use of the Service after the effective date constitutes acceptance of the updated policy.
Operator: Erjon Kelleci, Albania Email: support@rokohub.com Phone: +355 69 574 9908
If you contact us about a privacy matter, please tell us the email address associated with your Roko account so we can verify your identity.