Last Updated: July, 2024

WayDay Privacy Policy

Last Updated: July 2024

Protecting your privacy at WayDay

At WayDay, we are committed to safeguarding your personal data and handling it responsibly. Your privacy is of utmost importance to us.

Our privacy principles:

  • We never sell, rent, or share your data or to-do list content with third parties.
  • We don't access or collect data from your to-do lists without your explicit permission.
  • We use limited, anonymized data to improve our services and comply with legal requirements.

Data sharing policy:

We only share your data in the following circumstances:

  • When you explicitly grant us permission and only with the specific third parties identified in this policy
  • To protect the rights, property, or safety of WayDay, our users, or others.

What we collect:

  • Basic personal information (name, email, country) upon registration.
  • Anonymous statistical data (crash frequency, feature usage) to enhance the app experience.

If data is shared with third parties, we ensure they are bound by data protection agreements and confidentiality obligations. Please review our full Privacy Policy below for more details. We regularly update it to adhere to the latest laws and best practices.

1. Types of data collected

We may collect and process "Personal Data" (information that can be used to identify you) when you interact with our services, such as installing, registering for, or using the WayDay application, WayDay Cloud, WayDay Account, and other software, features or content provided by us (collectively, the "Services").

The Personal Data we collect and process depends on how you use our Services. We only use your Personal Data as outlined below and in accordance with applicable data protection laws, including the European Union's General Data Protection Regulation 2016/679 (the "EU GDPR") and the UK GDPR (collectively referred to as the "GDPR").

We do not collect sensitive Personal Data such as data revealing racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic and biometric data, health data, or data concerning sex life or sexual orientation. We do not expect our users to provide us with such sensitive Personal Data.

Information you provide to us and personal data we may collect:

  • Basic Personal Data (first name, last name, email address, country, and language)
  • For certain support requests, we may ask you to export and send us diagnostic data from your app, including the titles of your to-do lists, folders, and imported files, to help resolve issues
  • Any information you choose to share through the Services which may be considered Personal Data
  • If you make a purchase, third party payment processors may collect and store your credit card or debit card information (card type, expiration date) and other financial data needed to process your payment. We may also collect limited information such as your postal code and transaction history.

WayDay Services are not intended for transmitting sensitive personal information such as Protected Health Information or payment card details (except when making a purchase), so please do not share this information with us.

Information we automatically collect or generate about you:

When you use our Services, we automatically receive and collect information about you and your device, such as:

  • Information regarding the Services accessed and/or used by you and our interactions with you
  • A file with your contact history for enquiry purposes to ensure your satisfaction with our Services
  • Usage data when you visit or use the Services, including device location, IP address, and other details
  • Marketing and communications data about promotions and new features
  • Activity data relating to your usage of the Services, which may reveal your preferences, interests, times of use, IP address, device type, unique device identification, storage usage, etc.

Information we obtain from other sources:

We may collect Personal Data from third-parties, service providers, agencies or other publicly available sources where applicable, such as:

  • Social media features which may collect your IP address, page visits, and may set cookies. These features may provide us with information like your name, email address, and other contact information, depending on your privacy settings with the third-party social media service. Your interactions with these features are governed by the privacy policies of the third-party companies providing them.

2. How we use your data

We may store and process your Personal Data for the following purposes:

  • To provide access to the features and functionality of the Services
  • To set up and administer your account
  • To communicate with you about changes to terms, policies, products, or other important notices
  • To understand feedback and provide relevant information about the Services
  • To tailor information and materials to your interests
  • To optimize the Services and user experience, and for ongoing review and improvement
  • To protect against potential disruptions or cyber-attacks
  • To send you marketing communications about our Services, with your consent
  • To provide technical and other support
  • For business management and administration, or in relation to corporate transactions involving our business
  • To comply with applicable laws, regulations, subpoenas, legal processes, governmental requests, and internal policies
  • For database administration and maintenance
  • To detect, prevent, or address fraud, security or technical issues

Our usage of your Personal Data always complies with applicable data protection laws. We use your Personal Data for a variety of legally permitted reasons, including:

  • To perform our contractual obligations with customers and third-party providers
  • When we have obtained your consent
  • To discharge legal and regulatory obligations
  • To establish, exercise or defend our legal rights or for the purpose of legal proceedings
  • When necessary for our legitimate business interests, such as effectively managing and administering our business and Services, enforcing contracts and terms of use, maintaining compliance with internal policies, monitoring use of copyrighted materials, enabling quick access to information, and protecting against harm to the rights, property or safety of WayDay, our users, or the public as required or permitted by law

3. Who we disclose your data to

We may disclose your Personal Data to:

  • Other companies within our group for the purposes outlined in this policy
  • Law enforcement and regulatory agencies as required by law
  • Individuals you select or anyone else they share with when you use certain features like collaboration tools in the Services. We will only share your information this way if you direct us to do so.
  • Our agents, contractors or vendors ("Service Providers") who are bound by confidentiality obligations and can only use your Personal Data to provide agreed services to us and you, such as administrative, data processing or other similar services
  • Actual or proposed assignees or transferees of our rights in connection with a merger, sale, reorganization, liquidation or dissolution of a company within our group, or in anticipation of such events (e.g., due diligence in a transaction), with information anonymized where possible

We may also disclose data to specific third parties such as:

  • iCloud for optional file syncing functionality
  • Yandex AppMetrica to collect app usage information for maintaining and improving our Services
  • Braze or other third party providers to notify you of important events and provide an enhanced user experience

4. Data retention

The length of time we retain your Personal Data depends on:

  • The purpose for which we are using it - we keep your Personal Data as long as necessary for that purpose
  • Legal obligations - laws or regulations may set a minimum period for retaining your Personal Data

5. International data transfers

As a global business, we may transfer your Personal Data to locations outside your country. When transferring your Personal Data outside the UK and/or EEA, we ensure it is protected and transferred consistently with legal requirements, such as:

  • The country we send the data to might be approved by relevant authorities as offering an adequate level of protection
  • The recipient might have signed a contract based on "model contractual clauses" approved by relevant authorities, obliging them to protect your Personal Data
  • The recipient may have adhered to binding corporate rules
  • In other circumstances permitted by law

You can obtain more details on the protection given to your Personal Data when transferred outside the UK and/or EEA by contacting us as indicated in the "More Questions" section.

6. Data security

We use technical and organizational measures to safeguard your Personal Data, such as:

  • Access to your account is controlled by your unique email and password
  • We encrypt your Personal Data
  • Personal Data is processed or stored on secure servers

All processing of your Personal Data is conducted according to data protection principles:

  • Personal Data must be processed lawfully, fairly and transparently
  • Personal Data must be accurate and kept up to date with every effort to erase or correct
  • Personal Data must be processed in a manner that ensures appropriate security

We have security measures to prevent Personal Data from being accidentally or unlawfully lost, used or accessed. We limit access to your Personal Data to those with a genuine business need and take steps to ensure those processing your Personal Data do so only in an authorized manner and are subject to confidentiality. We have procedures to respond to data security breaches and will notify you and applicable regulators of a suspected breach where legally required.

7. Providing information on behalf of others

If you provide us information on behalf of someone else, you confirm that you have their consent to do so and they have appointed you to act on their behalf to:

  • Give consent on their behalf to the processing and transfer of their Personal Data
  • Receive data protection notices on their behalf

8. Third party websites

Our Services may contain links to third party websites and social media features. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy policies. Your interactions with these features are governed by the third party's privacy policy.

9. Your rights under the GDPR

Under certain circumstances and data protection laws, you may have the following rights in relation to your Personal Data, which you can exercise free of charge:

  • The right to know whether we hold your Personal Data and to request access to it
  • The right to withdraw your consent to the processing of your Personal Data at any time, though we may still be entitled to process it if we have another legitimate reason
  • The right to request rectification of your Personal Data if it is inaccurate or incomplete
  • The right to request erasure of your Personal Data in certain circumstances, though there may be circumstances where you ask us to erase it but we are legally entitled to retain it
  • In some circumstances, the right to receive your Personal Data in a structured, commonly used and machine-readable format and/or to instruct us to transmit that data to a third party
  • The right to object to your Personal Data being processed for direct marketing and in other certain circumstances
  • The right to lodge a complaint with the relevant data protection regulator if you think your rights have been infringed

To exercise these rights or make related complaints or requests, please contact us using the details in the "More Questions" section. Further information about your rights may be obtained from the supervisory data protection authority in your jurisdiction.

10. Children's data

WayDay does not knowingly collect personal data from children under 13 according to the Children's Privacy Protection Act ("COPPA").

11. California & Virginia residents

Under the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the "CCPA"), California residents have certain rights regarding their "personal information". Please refer to our supplemental California Privacy Notice for additional information.

Under the Virginia Consumer Data Protection Act (the "VCDPA"), Virginia residents have certain rights regarding their "personal data". Please refer to our supplemental Virginia Privacy Notice for more details.

12. Cookies

To the extent that we collect Personal Data using cookies, we will process it in accordance with this Privacy Policy and our Cookies Policy.

13. More questions

We are committed to resolving complaints about our collection or use of your Personal Data. Please contact support@wayday.com with any inquiries or complaints.

You also have the right to lodge a complaint with a competent supervisory authority in your habitual residence, place of work, or place of alleged infringement.

14. Changes to this policy

WayDay reserves the right to make changes to this privacy policy at any time by giving notice to users on the site, app, or as notified (e.g., by email). We recommend checking this page regularly to stay informed of any changes.