Privacy Policy

Last updated: February 2025

Overview

Nudge ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our reminder application, in compliance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable privacy laws.

Data Controller

Nudge is the data controller responsible for your personal data. For any privacy-related inquiries, please contact us.

Information We Collect

We collect the following types of information:

  • Account Information: Email address and password when you create an account
  • Reminder Data: The reminders you create, including titles, times, and recurrence settings
  • Device Information: Device identifiers and platform information to enable cross-device sync
  • Usage Data: App usage statistics, crash reports, and performance data to improve our service
  • Technical Data: IP address, browser type, and operating system for security and troubleshooting

Legal Basis for Processing (GDPR)

We process your personal data based on the following legal grounds:

  • Contract Performance: To provide you with the Nudge service and sync your reminders across devices
  • Legitimate Interests: To improve our app, ensure security, and prevent fraud
  • Consent: For optional features like marketing communications (you can withdraw consent at any time)
  • Legal Obligation: To comply with applicable laws and regulations

How We Use Your Information

We use your information to:

  • Provide and maintain the Nudge service
  • Sync your reminders across all your devices in real-time
  • Send you reminder notifications
  • Improve and optimize our app
  • Communicate with you about updates, security alerts, and changes
  • Detect and prevent fraud or abuse

Data Retention

We retain your personal data only for as long as necessary to provide our services and fulfill the purposes outlined in this policy. Account data is retained while your account is active. If you delete your account, we will delete or anonymize your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes.

Data Storage & Security

Your data is encrypted in transit using TLS and at rest using AES-256 encryption. We use industry-standard security measures to protect your information, including secure cloud infrastructure, regular security audits, and access controls. Your reminder data is stored securely on our servers to enable cross-device synchronization.

International Data Transfers

Your data may be transferred to and processed in countries outside your country of residence, including the United States. When we transfer data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, to protect your personal data.

Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share data only in the following circumstances:

  • Service Providers: With trusted third parties who assist in operating our app (e.g., cloud hosting, analytics), bound by data processing agreements
  • Legal Requirements: When required by law, court order, or government request
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with prior notice to you
  • Safety: To protect the rights, safety, or property of Nudge, our users, or others

Your Rights

Depending on your location, you have the following rights regarding your personal data:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data ("right to be forgotten")
  • Right to Restriction: Request limitation of processing in certain circumstances
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent

To exercise any of these rights, please contact us. We will respond to your request within 30 days.

California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the CCPA:

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information held by us
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising your privacy rights

Cookies and Tracking

Our website uses essential cookies to ensure proper functionality. We may use analytics cookies to understand how visitors interact with our site. You can control cookie preferences through your browser settings. The Nudge app does not use cookies but may use similar technologies for authentication and preferences.

Children's Privacy

Nudge is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information promptly. If you believe we may have collected information from a child under 16, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. For significant changes, we will provide additional notice via email or in-app notification.

Complaints

If you are located in the EEA and believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local Data Protection Authority. A list of EU Data Protection Authorities can be found at edpb.europa.eu.

Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us.