Privacy Policy

When you connect your Google Calendar or Microsoft Teams account, TimeFill accesses your calendar event data (event titles, start/end times, descriptions, organizer, attendees, and location) solely to generate your timesheet export.

We only request read-only access to your calendar data. TimeFill cannot create, modify, or delete any calendar events.

TimeFill is a 100% client-side application. All calendar data is processed entirely within your web browser. No calendar data, personal information, or authentication tokens are ever transmitted to or stored on any external server.

OAuth tokens and application settings are stored exclusively in your browser's localStorage for session persistence.

Since all data processing happens locally in your browser, your calendar data never traverses the internet to reach our servers — because we do not operate any data-collection servers.

Authentication with Google and Microsoft is handled through their official OAuth 2.0 flows. We never see or store your account passwords.

You can disconnect your calendar accounts at any time from the Connect page, which immediately revokes access and clears stored tokens.

To completely remove all application data, clear your browser's localStorage for this site. This will delete all cached events, tokens, and settings.

TimeFill's use and transfer to any other app of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically, we limit our use of Google user data to providing and improving the timesheet generation feature. We do not allow humans to read your data unless you provide affirmative consent, it is necessary for security purposes, or it is required by law.

We do not use Google user data for serving advertisements or transfer the data to any third parties.

If you have any questions or concerns about this Privacy Policy, please reach out to us at:

Email: privacy@timefill.app