%20--%3e%3csvg%20version='1.1'%20id='Lag_1'%20xmlns='http://www.w3.org/2000/svg'%20xmlns:xlink='http://www.w3.org/1999/xlink'%20x='0px'%20y='0px'%20viewBox='0%200%20113.1%20113.1'%20style='enable-background:new%200%200%20113.1%20113.1;'%20xml:space='preserve'%3e%3cstyle%20type='text/css'%3e%20.st0{fill:%23F1D9DD;}%20.st1{fill:%23C5496C;}%20.st2{fill:%23FFFFFF;}%20%3c/style%3e%3cg%3e%3cpath%20class='st0'%20d='M56.5,37.3c-10.6,0-19.2,8.6-19.2,19.2c0,10.6,8.6,19.2,19.2,19.2c10.6,0,19.2-8.6,19.2-19.2%20C75.8,45.9,67.1,37.3,56.5,37.3z'/%3e%3cpath%20class='st1'%20d='M84.7,0H28.4C12.7,0,0,12.7,0,28.4v56.4c0,15.7,12.7,28.3,28.4,28.3h56.4c15.7,0,28.3-12.7,28.4-28.3V28.4%20C113.1,12.7,100.4,0,84.7,0z%20M56.5,90.8c-18.9,0-34.2-15.4-34.2-34.2s15.4-34.2,34.2-34.2s34.2,15.4,34.2,34.2S75.4,90.8,56.5,90.8%20z'/%3e%3cpath%20class='st2'%20d='M56.5,22.3c-18.9,0-34.2,15.4-34.2,34.2s15.4,34.2,34.2,34.2s34.2-15.4,34.2-34.2S75.4,22.3,56.5,22.3z%20M56.5,75.8c-10.6,0-19.2-8.6-19.2-19.2c0-10.6,8.6-19.2,19.2-19.2c10.6,0,19.2,8.6,19.2,19.2C75.8,67.1,67.1,75.8,56.5,75.8z'/%3e%3c/g%3e%3c/svg%3e)
%20--%3e%3csvg%20version='1.1'%20id='Lag_1'%20xmlns='http://www.w3.org/2000/svg'%20xmlns:xlink='http://www.w3.org/1999/xlink'%20x='0px'%20y='0px'%20viewBox='0%200%20103.8%2038.99'%20style='enable-background:new%200%200%20103.8%2038.99;'%20xml:space='preserve'%3e%3cstyle%20type='text/css'%3e%20.st0{fill:%23C5496C;}%20%3c/style%3e%3cg%3e%3cpath%20class='st0'%20d='M16.43,16.86H11.3v13.21c0,2.1,1.05,2.66,2.56,2.66c0.71,0,1.51-0.18,1.88-0.25l1.19,5.63%20c-0.76,0.25-2.15,0.64-4.1,0.71c-5.49,0.23-9.13-2.42-9.09-7.76V16.86H0v-5.68h3.73V4.64h7.57v6.54h5.13V16.86z'/%3e%3cpath%20class='st0'%20d='M19.56,3.82c0-2.1,1.85-3.82,4.08-3.82c2.26,0,4.1,1.72,4.1,3.82c0,2.11-1.85,3.84-4.1,3.84%20C21.41,7.66,19.56,5.93,19.56,3.82z%20M19.84,11.17h7.57v27.28h-7.57V11.17z'/%3e%3cpath%20class='st0'%20d='M30.93,24.85c0-9.38,5.06-14.03,11.05-14.03c4.56,0,6.75,2.72,7.76,4.94h0.23V2.08h7.55v36.38h-7.46v-4.37%20h-0.32C48.69,36.36,46.4,38.9,42,38.9C35.78,38.9,30.93,33.98,30.93,24.85z%20M50.13,24.81c0-4.87-2.06-7.97-5.74-7.97%20c-3.75,0-5.74,3.25-5.74,7.97c0,4.76,2.02,8.06,5.74,8.06C48.04,32.88,50.13,29.68,50.13,24.81z'/%3e%3cpath%20class='st0'%20d='M77.98,19.38c-0.37-1.76-1.94-3.2-4.56-3.2c-2.34,0-4.19,1.07-4.17,2.7c-0.02,1.31,0.92,2.18,3.46,2.74%20l4.94,0.99c5.29,1.08,7.87,3.45,7.89,7.39c-0.02,5.38-5.08,8.99-12.15,8.99c-7.23,0-11.67-3.21-12.38-8.44l7.44-0.39%20c0.46,2.22,2.25,3.37,4.96,3.37c2.65,0,4.41-1.15,4.44-2.77c-0.04-1.37-1.12-2.24-3.5-2.72l-4.72-0.94%20c-5.33-1.07-7.9-3.71-7.89-7.8c-0.02-5.26,4.58-8.49,11.56-8.49c6.89,0,10.94,3.11,11.62,8.13L77.98,19.38z'/%3e%3cpath%20class='st0'%20d='M103.31,16.86h-5.13v13.21c0,2.1,1.05,2.66,2.56,2.66c0.71,0,1.51-0.18,1.88-0.25l1.19,5.63%20c-0.76,0.25-2.15,0.64-4.1,0.71c-5.49,0.23-9.13-2.42-9.09-7.76V16.86h-3.73v-5.68h3.73V4.64h7.57v6.54h5.13V16.86z'/%3e%3c/g%3e%3c/svg%3e)
Privacy Policy
Last updated: May 2, 2026
1. Data Controller
Tidst is operated by Christian Hougaard, Denmark.
Tidst is the data controller for the personal data we process about you. If you have questions about our processing of your data, please contact us at tidst@proton.me.
2. What information do we collect?
We collect and process the following personal data:
- Account information: Email address and Todoist display name when creating an account.
- Todoist data: Projects, tasks and activity retrieved via the Todoist API to enable time tracking.
- Time entries: The time data you create and edit in Tidst.
- Settings: Your preferences such as currency, hourly rates, budget goals and visual preferences.
- Newsletter: Email address, if you subscribe to our newsletter.
- Billing information: Subscription status and billing period managed via Stripe. We do not store full card details.
3. Purpose of processing
We process your personal data for the following purposes:
- To provide and maintain the Tidst service.
- To synchronize with your Todoist account.
- To generate reports and invoicing documentation.
- To send you onboarding emails and news (only with your consent).
4. Legal basis
We process your data based on performance of contract (Art. 6(1)(b) GDPR) to deliver the service, and consent (Art. 6(1)(a)) for newsletters. You may withdraw your consent at any time.
5. Cookies
Tidst exclusively uses essential cookies, which are necessary for the service to function correctly. These cookies are used for authentication and session management. We do not use any tracking, analytics or marketing cookies. Since we only use essential cookies, no separate consent is required.
We do not use automated decision-making or profiling as defined in Article 22 of the GDPR.
6. Data sharing
We share your personal data with the following parties:
- Todoist (Doist Inc.): To retrieve your project data via OAuth integration.
- Stripe: To process subscription payments. Stripe may process your name and email address as part of the payment flow.
- Supabase and Vercel: Supabase hosts our database and authentication service; Vercel hosts the frontend. Both store and process your data on our behalf.
- MailerLite: For newsletter purposes, only with your consent.
We never sell your data to third parties.
7. Data retention
We retain your data as long as you have an active account with Tidst. If you delete your account, we delete your personal data immediately, unless we are legally obligated to retain it longer. However, we retain a record of email addresses that have used a free trial, even after account deletion, to prevent trial abuse. This is based on our legitimate interest (Art. 6(1)(f) GDPR).
8. International data transfers
Some of our service providers are located outside the European Economic Area (EEA). We use the following providers in the United States: Supabase (database and authentication, hosted on AWS), Vercel (frontend hosting), Stripe (payment processing), and Todoist/Doist Inc. (OAuth integration). These transfers are governed by Standard Contractual Clauses (SCCs) approved by the European Commission, ensuring your data is protected to the same standard as within the EEA.
9. Your rights
As a data subject, you have the following rights:
- Access: You can request to see the personal data we hold about you.
- Rectification: You can ask to have incorrect information corrected.
- Erasure: You can ask to have your data deleted.
- Restriction: You can ask us to restrict the processing of your data.
- Data portability: You can download all your time entries directly from Settings → Export Your Data. You may also contact us to receive your data in another machine-readable format.
- Objection: You can object to our processing of your data.
- California residents (CCPA): You have the right to know what personal information we collect, to request deletion, and to opt out of the sale of personal information. We do not sell your personal information.
tidst@proton.me to exercise your rights. You also have the right to file a complaint with the Danish Data Protection Agency.
If you are located in the United Kingdom, you may also lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.
10. Security
We use industry standards to protect your data, including encrypted data transfer (TLS/SSL), secure authentication via Todoist OAuth, and access control to our systems.
11. Changes
We may update this privacy policy from time to time. For significant changes, we will notify you via email or a notice in the service.