Privacy Policy

We collect information that you provide directly to us, including:

• Account information (name, email address, password)
• Profile information (profile picture, preferences)
• Content you create (checklists, boards, planners, items)
• Inputs used for AI-generated content (e.g. topics, prompts, preferences) and associated generated content
• Communication data (support requests, feedback)
• Payment information (processed securely through third-party payment processors)

We also automatically collect certain information when you use our service:

• Device information (IP address, browser type, operating system)
• Usage data (pages visited, features used, time spent)
• Cookies and similar tracking technologies
• Log files and analytics data
• Security and fraud prevention data collected through Google reCAPTCHA on registration forms

We use the information we collect to:

• Provide, maintain, and improve our services
• Process transactions and send related information
• Send technical notices and support messages
• Respond to your comments and questions
• Monitor and analyze usage patterns
• Detect, prevent, and address technical issues and security threats
• Comply with legal obligations and enforce our terms
• Send marketing communications (with your consent, where required)

Legal Basis for Processing (GDPR): We process your personal data based on: (1) your consent, (2) performance of a contract, (3) compliance with legal obligations, (4) protection of vital interests, (5) legitimate interests.

We implement appropriate technical and organizational measures to protect your personal information. This includes encryption, secure servers, and access controls. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

We do not sell your personal information. We may share your information only in the following circumstances:

• With your explicit consent
• To comply with legal obligations, court orders, or government requests
• To protect our rights, property, or safety, or that of our users
• With service providers who assist in operating our platform (hosting, payment processing, analytics, email services)
• In connection with a business transfer (merger, acquisition, or sale of assets)
• With other users as part of collaborative features (boards, shared planners)

Third-Party Services: We use third-party services that may collect information, including: authentication providers (Google, Microsoft, Facebook), payment processors, analytics services, and hosting providers. These services have their own privacy policies governing data collection and use.

Google reCAPTCHA: We use Google reCAPTCHA to protect our registration forms from spam and abuse. reCAPTCHA collects hardware and software information, such as device and application data, and sends this data to Google for analysis. The use of reCAPTCHA is subject to the Google Privacy Policy and Terms of Service.

International Data Transfers: Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in accordance with applicable data protection laws.

Checkolo Planner uses artificial intelligence (AI) and automated systems to generate or assist in generating checklists, templates, guides, and other content. To provide these features we may:

• Process the inputs you provide (e.g. topic, preferences, or prompts) to generate personalized content
• Use third-party AI or machine-learning providers to power generation; such providers may process your inputs and generated content in accordance with their privacy policies and our agreements with them
• Store and use generated content and related data to operate, improve, and personalize the service

We do not use your personal data to train third-party AI models for purposes unrelated to providing our service, except where you have consented or where permitted by law. For important disclaimers about AI-generated content (including that it is not legal, tax, or professional advice), see our Terms of Service, especially the section on AI-Generated Content and Checklists.

You have the following rights regarding your personal information:

• Access: Request access to your personal data
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your data ("right to be forgotten")
• Data Portability: Request export of your data in a machine-readable format
• Objection: Object to processing of your data for certain purposes
• Restriction: Request restriction of processing in certain circumstances
• Withdraw Consent: Withdraw consent where processing is based on consent
• Opt-Out: Opt out of marketing communications and certain data sharing

California Residents (CCPA/CPRA): You have additional rights including the right to know what personal information is collected, the right to delete personal information, the right to opt-out of the sale of personal information (we do not sell personal information), and the right to non-discrimination for exercising your privacy rights.

To exercise these rights, please contact us at contact@checkolo.com. We will respond to your request within 30 days (or as required by applicable law).

We use cookies and similar tracking technologies to track activity on our service and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier.

Types of cookies we use:

• Essential cookies: Required for the service to function properly
• Analytics cookies: Help us understand how users interact with our service
• Preference cookies: Remember your settings and preferences
• Marketing cookies: Used to deliver relevant advertisements (with your consent)

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our service.

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When you delete your account, we will delete or anonymize your personal information, except where we are required to retain it for legal, accounting, or regulatory purposes.

Our service is not intended for children under the age of 13 (or 16 in the EU). We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete such information.

In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law. We will notify you via email or through a prominent notice on our service within 72 hours of becoming aware of the breach, where feasible.

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We will also notify you via email and/or a prominent notice on our service prior to the change becoming effective if the changes are material.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.