Everdo Privacy Policy

Effective as of Aug 31, 2025

This privacy policy explains how Everdo LLC handles your personal information when you use our productivity apps and related services.

In this Policy: "Everdo," "we," "our" or "us" means Everdo LLC, registered at 971 US Highway 202 N, Ste R, Branchburg, NJ 08876. "Services" includes our mobile apps, desktop apps, website (everdo.net), web applications, and Everdo Sync Service. "Information" means any data that relates to you as an identifiable person.

By using our Services, you agree to this Policy. If you don't agree, please don't use our Services.

Privacy at a Glance

What we collect: Email, password, payment info, usage data, and your encrypted task content (which we can't read)

How we use it: To run the service, fix bugs, process payments, and improve Everdo

Who we share with: Only essential service providers (hosting, payments, email delivery) - we don't sell your data

Your control: Delete your account anytime, opt out of marketing emails, manage cookie preferences

Special protection: Your tasks and projects are end-to-end encrypted when using Everdo Sync Service

1. Information We Collect

1.1 Account and Registration Information

When you create an account or make a purchase, we collect:

Email address (for account access and communication)
Password (encrypted and stored securely)
Name (if provided during registration or purchase)
Billing information (address, payment method details for purchases)

1.2 User Content

Tasks, projects, notes, and tags you create in Everdo
Custom settings and preferences

Important: When using Everdo Sync Service, your user content is encrypted on your device before transmission using end-to-end encryption. We cannot read, access, or use this encrypted content. Only metadata (like timestamps and sync status) is accessible to us.

1.3 Usage and Technical Information

App usage data: Which features you use and how often, to help us prioritize product improvements and understand which tools are most valuable to users
Device information: Operating system, app version, device type (for compatibility and support)
Crash and error data: Automatically collected when the app encounters problems to help us provide technical support and maintain service reliability. This includes error logs, device info, and the sequence of actions leading to issues.
Website activity: Pages visited, referrer information, dates and times of visits

1.4 Cookies and Tracking

We use cookies on our website for:

Strictly necessary cookies: Required for website functionality (login, account access)
Analytical cookies: To understand how visitors use our site and improve the experience (expire after maximum 2 years)

You can control cookies through your browser settings.

1.5 Third-Party Platform Information

When you register through third-party accounts (Google, Apple) or purchase through app stores, we may receive information including username and email address according to those platforms' policies.

1.6 Children's Information

Our Services are not intended for children under 13. We do not knowingly collect personal information from children under 13. If you learn that a child has provided us with personal information, please contact us and we will delete it.

2. How We Use Your Information

2.1 Service Provision

Account management: Create and maintain your account, authenticate access
Core functionality: Provide task management features, sync data across devices
Payment processing: Handle purchases of Everdo Pro licenses and Everdo Sync Service subscription
Customer support: Respond to your questions and resolve issues

2.2 Service Improvement

Feature development: Analyze usage patterns to build features users want
Performance optimization: Use technical data to improve app speed and reliability
Bug fixes: App crash reports to identify and resolve technical issues

2.3 Communication

Service updates: Notify you about important changes, maintenance, or new features
Billing notifications: Send receipts, renewal reminders, and payment-related communications
Support responses: Reply to your help requests and technical questions

2.4 Legal and Security

Fraud prevention: Monitor for suspicious account activity
Legal compliance: Meet tax reporting, export control, and other regulatory requirements
Terms enforcement: Detect violations of our Terms of Service

We do not sell, rent, or lease your personal information to third parties.

3. Information Sharing

3.1 Essential Service Providers

We share information with trusted vendors who help us run Everdo, including:

Cloud storage and hosting providers for encrypted data storage, application hosting, and content delivery
Email service providers for delivery of service notifications, support communications, and account-related messages
Payment processors and financial institutions for processing purchases and subscription payments
Mobile app store platforms for purchases made through app stores
Crash reporting services to provide error monitoring to help fix bugs faster

We may change service providers from time to time in our business operations. All service providers are contractually required to protect your information and use it only for providing services to us.

3.2 Legal Requirements

We may disclose information when required by law or when we have a good faith belief it's necessary to:

Comply with legal processes, court orders, or government requests
Enforce our Terms of Service and protect our rights
Detect, prevent, or address fraud, security issues, or technical problems
Protect the safety of our users or the public

3.3 Business Transfers

If Everdo is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your information becomes subject to different privacy practices.

3.4 With Your Consent

We may share information in other situations when you've given us explicit permission to do so.

4. Data Security and Encryption

End-to-End Encryption: When you use Everdo Sync Service, your task content is encrypted on your device before transmission. We use strong encryption standards, and only your authorized devices can decrypt the data using your encryption passphrase.

What this means:

We cannot read your tasks, projects, or notes when using Sync Service
If you lose access to all devices and your encryption passphrase, we cannot recover your data
Government requests cannot compel us to provide your encrypted task content because we don't have the keys

Other Security Measures: We use industry-standard security practices including encrypted data transmission, secure data centers, and access controls. However, no system is 100% secure, and we cannot guarantee complete security.

5. International Data Transfers

Everdo operates from the United States. If you use our Services from other countries, your information will be transferred to and processed in the U.S. We ensure these transfers comply with applicable data protection laws through appropriate safeguards with our service providers.

6. Data Retention

Active accounts: We keep your information as long as your account is active.

Deleted accounts: When you delete your account, we remove information from our active systems. Encrypted backups may remain for up to 6 months for technical reasons, but this data cannot be accessed without your devices and encryption passphrase.

Legal requirements: Some information (like transaction records) may be retained longer to comply with tax laws and other legal obligations.

7. Your Privacy Rights

Account Control: Update your information or delete your account by contacting us at https://everdo.net/contact.

Communication Preferences: Unsubscribe from marketing emails using the unsubscribe link in any message.

Data Access: Request a copy of the personal information we have about you.

Questions or Complaints: Contact us with any privacy concerns at https://everdo.net/contact.

8. Platform-Specific Privacy Information

8.1 iOS App

When you use Everdo on iOS, Apple may collect additional information according to their privacy policy. In-app purchases are processed by Apple and subject to their terms.

8.2 Android App

Google may collect additional information when you use our Android app according to their privacy policy. Play Store purchases are processed by Google and subject to their terms.

8.3 Desktop Applications

Desktop versions of Everdo may include a Local Network Sync feature for connecting your devices on your home network. This feature operates entirely on your local network and does not transmit data to our servers.

9. Changes to This Policy

We may update this policy from time to time. We'll post any changes on our website with the new effective date. Your continued use of Everdo after the effective date means you accept the updated policy. If you don't agree with changes, you can delete your account before they take effect.

Additional Information for European Union and United Kingdom Users

This section provides additional details required under the General Data Protection Regulation (GDPR) and UK Data Protection Act 2018.

Legal Basis for Processing (Detailed)

Article 6(1)(a) - Consent:

Marketing communications (you can withdraw consent anytime)
Optional features requiring explicit consent

Article 6(1)(b) - Contract Performance:

Account creation and management
Providing core app functionality
Sync Service provision
Payment processing for purchases
Customer support provision

Article 6(1)(c) - Legal Obligation:

Tax record keeping and reporting
Compliance with export control regulations
Response to valid legal requests

Article 6(1)(f) - Legitimate Interests:

Service improvement through usage analytics (our interest: developing features that users actually need and improving existing functionality; balancing assessment: we collect aggregated usage patterns without identifying individual user behavior, focus only on feature usage frequency and user interface interactions necessary for product development decisions. This processing directly benefits users through more relevant features and better user experience, with minimal privacy impact through anonymized analysis.)
Security monitoring and fraud prevention (our interest: protecting users and service integrity; balancing assessment: essential for service security with automated processing that minimizes human access to personal data)
Crash reporting and technical issue resolution (our interest: essential service reliability and user support; balancing assessment: technical data collection is strictly limited to diagnostic information necessary for identifying and resolving software defects that affect user experience. Collection occurs only when errors happen, data is automatically anonymized where possible, and is essential for providing meaningful technical support. Users benefit directly through improved app stability and faster issue resolution.)
Direct marketing to existing customers (our interest: relevant service updates; balancing assessment: communications are service-related, infrequent, and easily unsubscribed from)

Balancing Test: For legitimate interests processing, we've assessed that our interests don't override your fundamental rights and freedoms. You can object to this processing at any time.

Detailed Rights Information

Right of Access (Article 15): Request confirmation of processing, access to your personal data, and information about processing purposes, categories, recipients, retention periods, and your rights.

Right to Rectification (Article 16): Request correction of inaccurate personal data and completion of incomplete data.

Right to Erasure (Article 17): Request deletion when: consent is withdrawn, data no longer necessary, processing is unlawful, or you object to processing. We may retain data where we have overriding legitimate grounds or legal obligations.

Right to Restrict Processing (Article 18): Request restriction when: you contest accuracy, processing is unlawful but you oppose erasure, we no longer need the data but you need it for legal claims, or you've objected to processing pending verification of our legitimate grounds.

Right to Data Portability (Article 20): Receive your personal data in structured, commonly used, machine-readable format or request direct transmission to another controller where technically feasible.

Right to Object (Article 21):

Object to processing based on legitimate interests (we'll stop unless we demonstrate compelling legitimate grounds)
Object to direct marketing (we'll stop immediately)

Rights Related to Automated Decision-Making (Article 22): We don't engage in solely automated decision-making with legal or similarly significant effects.

Exercising Your Rights

How to submit requests: Contact us at https://everdo.net/contact with:

Clear description of your request
Proof of identity (to prevent unauthorized access)
Specific information about what data you're referring to (if applicable)

Response timeframe: We'll respond within one month (extendable to three months for complex requests).

Verification process: We may request additional information to verify your identity before fulfilling requests.

No fee: We don't charge for most requests, though we may charge reasonable fees for excessive or repetitive requests.

International Transfers

Your information may be transferred to and processed in the United States where our servers are located. We use cloud providers that implement appropriate safeguards for international data transfers as required by applicable data protection laws.

Supervisory Authority Contact

For EU users: Contact your local data protection authority. A list is available at https://edpb.europa.eu/about-edpb/about-edpb/members_en

For UK users: Contact the Information Commissioner's Office (ICO) at https://ico.org.uk/make-a-complaint/

Data Protection Impact Assessments

We conduct privacy impact assessments for high-risk processing activities. Our end-to-end encryption implementation was designed with privacy by design principles.

Breach Notification

In case of personal data breaches likely to result in high risk to your rights and freedoms, we will notify you without undue delay and within 72 hours of becoming aware of the breach, as required by GDPR Article 34.

Contact Information: For all privacy-related inquiries, contact us at https://everdo.net/contact or contact@everdo.net.