Privacy Policy

Last updated: March 26, 2026

1. Introduction

This Privacy Policy explains how GOVISIONARY SRL ("we", "us", "our") collects, uses, stores, and protects your personal data when you use Tasks (the "Service"). We keep data collection limited to what is needed to operate and improve the Service, and we handle it transparently.

2. Data Controller

GOVISIONARY SRL

Viale dell'Unione Europea 8, 21013 Gallarate (VA), Italy

Email: legal@govisionary.biz

3. Data We Collect

We collect only the data needed to provide, secure, and improve the Service:

Account Information — The email address and display name you provide when creating your account.
OAuth Tokens & Identifiers — Authentication tokens and user identifiers from third party OAuth providers such as GitHub, Google, and Discord. We use them only to enable the integrations you choose.
Usage Data — Basic usage information such as boards created, features used, and session metadata so we can improve reliability and product quality.

4. OAuth Integrations

We use third party OAuth providers only to support specific features. Data from these providers is never sold and is not used for purposes unrelated to the feature you requested.

GitHub OAuth

GitHub is used to connect repositories to boards. We access only the repository information required for that connection. We do not store or analyze code beyond what the feature needs to work.

Google OAuth & Google Drive

Google OAuth is used for authentication. Google Drive integration for team boards lets you attach and manage Drive files. We access only the files you explicitly select, and we do not store file contents on our servers.

Discord OAuth

Discord is used for authentication through Supabase. We retrieve only the standard profile identifiers needed to create and manage your account.

5. Data Security

We protect your data with security measures that follow industry standards:

Sensitive keys and OAuth tokens are encrypted with AES 256.
Encryption keys are managed entirely server-side and never exposed to the client.
Data is stored in Supabase with Row Level Security (RLS) policies and secure PostgreSQL infrastructure.

6. Data Sharing

We do not sell, rent, or share your personal data for marketing purposes. Data is shared only with infrastructure providers such as Supabase and Vercel when needed to operate the Service, and those providers remain subject to their own privacy policies and data processing obligations.

7. Data Retention

We keep your data for as long as your account is active or for as long as it is needed to provide the Service. When you delete your account, your personal data is permanently removed from our systems within 30 days unless the law requires a longer retention period.

8. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right to access your personal data.
Right to rectify inaccurate data.
Right to erasure ("right to be forgotten").
Right to data portability.
Right to object to processing.

To exercise any of these rights, please contact us at legal@govisionary.biz.

9. Cookies

We use only essential cookies required for authentication and session management. We do not use tracking cookies, advertising cookies, or any third-party analytics that track individual users.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated through the Service. If you continue using Tasks after those changes, the updated policy will apply.

11. Contact Us

If you have questions about this Privacy Policy or your personal data, contact us at legal@govisionary.biz

Terms & Conditions →← Back to home

3. Data We Collect

We collect only the data needed to provide, secure, and improve the Service:

Account Information — The email address and display name you provide when creating your account.

OAuth Tokens & Identifiers — Authentication tokens and user identifiers from third party OAuth providers such as GitHub, Google, and Discord. We use them only to enable the integrations you choose.

Usage Data — Basic usage information such as boards created, features used, and session metadata so we can improve reliability and product quality.

4. OAuth Integrations

We use third party OAuth providers only to support specific features. Data from these providers is never sold and is not used for purposes unrelated to the feature you requested.

GitHub OAuth

GitHub is used to connect repositories to boards. We access only the repository information required for that connection. We do not store or analyze code beyond what the feature needs to work.

Google OAuth & Google Drive

Discord OAuth

Discord is used for authentication through Supabase. We retrieve only the standard profile identifiers needed to create and manage your account.

5. Data Security

We protect your data with security measures that follow industry standards:

Sensitive keys and OAuth tokens are encrypted with AES 256.

Encryption keys are managed entirely server-side and never exposed to the client.

Data is stored in Supabase with Row Level Security (RLS) policies and secure PostgreSQL infrastructure.

8. Your Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

Right to access your personal data.

Right to rectify inaccurate data.

Right to erasure ("right to be forgotten").

Right to data portability.

Right to object to processing.

To exercise any of these rights, please contact us at legal@govisionary.biz.