Data Protection & Global Compliance (GDPR-Aligned)
Effective Date: Jan 1st, 2026
ChronoStreak is designed with privacy by default and data minimization as core principles. This section explains how ChronoStreak complies with global data protection standards, including the General Data Protection Regulation (GDPR).
1. Legal Basis for Processing (GDPR Article 6)
ChronoStreak processes personal data under the following lawful bases:
a) Contractual Necessity
Data is processed to:
-
Create and maintain your account
-
Track streaks, focus time, and targets
-
Provide dashboards and insights
Without this data, the service cannot function.
b) Legitimate Interest
We process limited metadata to:
-
Prevent abuse and cheating
-
Maintain platform stability
-
Improve reliability and performance
These interests do not override your fundamental rights.
c) Consent (Where Applicable)
Consent is used only for:
-
Optional communications
-
Supporter-related interactions
You may withdraw consent at any time.
2. Your Rights Under GDPR
If you are located in the EU, EEA, UK, or any region with similar laws, you have the following rights:
Right to Access
You may request:
-
Confirmation of whether we process your data
-
A copy of your personal data
Right to Rectification
You may request correction of inaccurate or incomplete data.
Right to Erasure (“Right to Be Forgotten”)
You may request deletion of:
-
Your account
-
All associated personal data
Unless retention is legally required.
Right to Restriction
You may request limited processing in specific situations.
Right to Data Portability
You may request your data in a structured, machine-readable format.
Right to Object
You may object to processing based on legitimate interest.
3. How to Exercise Your Rights
To exercise any data rights, contact us at:
Email: chronostreak.app@gmail.com
We may verify identity to prevent unauthorized access.
4. Data Retention Policy
ChronoStreak retains data only as long as necessary:
-
Active accounts: data retained while account exists
-
Deleted accounts: data removed within a reasonable period
-
Logs & backups: automatically purged on rotation cycles
We do not retain inactive user data indefinitely.
5. International Data Transfers
ChronoStreak may process data using global cloud infrastructure.
Safeguards include:
-
Secure data centers
-
Encrypted transmission
-
Industry-standard security controls
We do not transfer data to third parties for advertising or profiling.
6. Children’s Data
ChronoStreak is not intended for children under 16 (or the minimum age required in your jurisdiction).
We do not knowingly collect data from minors.
If such data is discovered, it will be deleted promptly.
7. Automated Decision-Making & Profiling
ChronoStreak:
-
Does not perform automated decision-making with legal effects
-
Does not profile users for advertising or behavior prediction
All streak logic is transparent and rule-based.
8. Cookies & Tracking Compliance
ChronoStreak uses:
-
Strictly necessary cookies only
We do not use:
-
Marketing cookies
-
Cross-site trackers
-
Behavioral profiling tools
Cookie consent banners are shown where legally required.
9. Data Breach Response
In the unlikely event of a data breach:
-
We will assess impact immediately
-
Notify relevant authorities if required
-
Inform affected users where legally necessary
10. Regulatory Complaints
If you believe your rights are violated, you may lodge a complaint with your local data protection authority.
We encourage contacting us first to resolve issues transparently.
11. Global Applicability (Non-EU Users)
ChronoStreak applies the same privacy standards globally, even where local law is less strict.
This includes alignment with:
-
GDPR (EU/EEA/UK)
-
Comparable privacy frameworks worldwide
12. Policy Updates
We may update this compliance section to reflect:
-
Legal changes
-
Platform evolution
-
Security improvements
Material changes will be communicated clearly.