PRIVACY POLICY

3. How We Use Your Information

All data you provide is used **exclusively to operate the App's features** on your device. Specifically:

• Tasks, notes, and categories are stored in a local database on your device (Room/SQLite) to display and manage your to-do list.

• Reminder times are used to schedule local notifications on your device using Android's AlarmManager. No data is sent to any server.

• PIN code is stored locally with encryption to authenticate you when you open the App.

• Biometric data (fingerprint/face) is processed entirely by the Android operating system's secure hardware enclave — the App **never has access** to your raw biometric data.

• Productivity statistics (streaks, completion rates, sparklines) are calculated locally from your task data to display on your dashboard.

• Import/Export CSV data is read from or written to your device's local storage and is **never uploaded to any server**.

• Theme and settings preferences are stored locally using Android SharedPreferences.

4. Data Storage & Security

4.1 Local Storage Only

All your data is stored locally on your device. The App does not use any cloud storage, remote database, or third-party backend service. Your tasks, notes, categories, settings, and statistics never leave your device unless you explicitly export them yourself.

4.2 Security Measures

We take reasonable steps to protect your data on-device:

• The local Room/SQLite database is stored in your device's private app storage, which is not accessible to other apps.

• Your PIN code is hashed/secured before being stored — it is not saved as plain text.

• Biometric authentication leverages Android's built-in `BiometricPrompt` API, which uses the secure hardware enclave. The App never stores or processes raw biometric data.

• Failed PIN attempts are rate-limited — after multiple incorrect attempts, access is temporarily locked for a set period to prevent brute-force attacks.

4.3 Data Retention

Your data is retained on your device as long as the App is installed. When you uninstall the App, all locally stored data is permanently deleted by the Android operating system. You may also manually clear all data from within the App's Settings screen at any time.

5. Data Sharing & Third Parties

We do not sell, rent, share, or transmit your personal data to any third parties.

The App does not integrate with:

• ❌ Analytics services (e.g., Google Analytics, Firebase Analytics)

• ❌ Advertising networks (e.g., AdMob, Meta Audience Network)

• ❌ Crash reporting services (e.g., Crashlytics, Sentry)

• ❌ Social media platforms

• ❌ Any external APIs or web services

The only third-party components used are standard Android/Jetpack libraries (e.g., Room, WorkManager, BiometricPrompt, AlarmManager) provided by Google as part of the Android SDK. These libraries operate entirely on-device.

6. Notifications

The App uses local notifications only — these are scheduled and delivered entirely on your device without any server involvement.

- Notifications are generated when a task reminder time is reached, based on the time and reminder offset you configured.

- You can disable all notifications at any time through your device's **Settings → Apps → [App Name] → Notifications**.

- Disabling notifications will prevent task reminders from being delivered but will not affect any other App functionality.

7. Biometric Data

If you choose to enable Biometric Lock in the App settings:

• The App uses Android's `BiometricPrompt` API to authenticate you using your device's fingerprint sensor or face recognition hardware.

• The App does not collect, store, process, or transmit your biometric data in any form. All biometric processing is handled entirely by the Android operating system's secure enclave.

• You can disable Biometric Lock at any time in the App's Settings screen.

8. Children's Privacy

This App is intended for general audiences and is not directed at children under the age of 13 (or the applicable age of digital consent in your country).

We do not knowingly collect any personal information from children. Since the App stores all data locally on the device with no accounts, registrations, or user profiles, there is inherently no personal data collection.

If you are a parent or guardian and believe your child has entered personal information into the App, please contact us and we will help ensure the information is removed.

9. Your Rights & Choices

Since all data is stored locally on your device, you have full control over your information at all times:

• Access: You can view all your tasks, notes, and categories directly within the App at any time.

• Edit: You can edit or update any task, note, category, or setting at any time.

• Delete: You can delete individual tasks, notes, or categories. You can also use the "Clear Completed Tasks" or "Clear All Tasks" options in Settings to bulk delete data.

• Export: You can export all your tasks to a CSV file from the Settings screen and keep a copy.

• Reset: Uninstalling the App permanently removes all locally stored data.

10. Import & Export of Data

Export

The App allows you to export your tasks as a CSV file to your device's local storage. This file is stored on your device and is your responsibility once exported. We do not upload, access, or process this file in any way.

Import

The App allows you to import tasks from a CSV file stored on your device. The App reads the file, validates its format, checks for duplicate tasks, and stores the new tasks locally. The original file is not modified or deleted. Importing is performed entirely on-device with no network communication.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in the App's features or applicable laws. When we update it:

• The "Last Updated" date at the top of this page will be revised.

• If changes are material, we will notify users through an in-app notice or an update note in the Play Store listing.

We encourage you to review this Privacy Policy periodically. Continued use of the App after any changes constitutes your acceptance of the updated policy.

12. Compliance with Google Play Policies

This App and Privacy Policy are designed to comply with:

• Google Play Developer Policy Center: https://play.google.com/about/developer-content-policy/

• Google Play's Families Policy: https://play.google.com/about/families/ (General Audience)

• Android Permissions Best Practices: https://developer.android.com/training/permissions/usage-notes

• Applicable data protection regulations including GDPR (EU) and CCPA (California) to the extent applicable

Since we do not collect, process, or store any personally identifiable information (PII) on external servers, the compliance burden is minimal. All user data remains on the user's own device.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or your data, please contact us:

• Developer: Hamdaan Studio

• Email: maliha.danish615@gmail.com

• Website: https://sites.google.com/view/taskzen-to-do/home

• Response Time: We aim to respond within 5–7 business days.

14. Summary — At a Glance

Topic Our Practice

Data collected Only task/note/setting data you enter yourself

Data stored Locally on your device only (no cloud) 

Data shared Never — with no one 

Ads None 

Analytics None 

Internet required No — App works fully offline 

Account/Login required No 

Biometric data Processed by Android OS only — App never sees it

Children's data Not collected 

Data deletion Anytime — in-app or by uninstalling 

This Privacy Policy was last updated on May 1, 2026

© 2026 Hamdaan Studio. All rights reserved.