TaskPacer

Privacy Policy

TaskPacer | taskpacer.com

Effective date: 11 April 2026

Last updated: 11 April 2026

We believe privacy should be explained in plain language — not hidden in legalese. This policy tells you exactly what data TaskPacer collects, why, where it goes, and how you can control it.

1. Who we are

TaskPacer is a free web application that generates personalised AI automation roadmaps for professionals. It is operated by TaskPacer (the "Data Controller").

Contact for privacy matters: privacy@taskpacer.com

Subject line: Privacy Request — TaskPacer

2. What data we collect and why

2.1 Quiz inputs (when you generate a roadmap)

When you use our roadmap generator, we collect:

| Data | Example | Why |
|------|---------|-----|
| Job title / profession | "Marketing Manager" | To generate a relevant roadmap |
| Workflow preference | "Writing content" | To personalise your top automation tasks |
| AI fluency level | "A little experience" | To calibrate tool recommendations |
| Goal | "Save time" | To rank your roadmap priorities |
| Anonymous session ID | `x-session-id` from your browser | To link quiz answers to a roadmap result |

Important: These inputs are stored in our database (Supabase) for 90 days so we can improve the product. They are not linked to your name or email unless you choose to provide your email separately. Your quiz data is anonymised — it is tied to a session ID, not your identity.

2.2 Email address (only if you choose to provide it)

You may optionally share your email to:

  • Receive roadmap updates when tool recommendations change for your profession
  • Join the waitlist for a paid plan

When you submit your email, we collect:

  • Your email address
  • Your profession (shared with our newsletter platform as a tag)
  • Your plan interest (Personal or Implementation) — if you click a pricing CTA

We never sell your email address. You can unsubscribe at any time using the link in any email we send.

2.3 Analytics (PostHog and Plausible)

We use PostHog and Plausible to understand how people use TaskPacer — which steps users complete, where they drop off, and what helps us improve the product. PostHog stores analytics data using your browser's localStorage.

We only activate analytics after you give consent via the cookie banner. If you decline, no analytics data is collected.

3. How your data is processed by AI

When you generate a roadmap, your profession, workflow, fluency level, and goal are sent to Anthropic's Claude API (an AI service) to produce your personalised output. Anthropic processes this data on our behalf as a data processor.

Your inputs are not used to train Anthropic's models (per Anthropic's API terms). Anthropic does not receive your email address.

4. Third-party services we use

The following services process data on our behalf. Each has its own privacy policy linked below.

| Service | Purpose | Data shared | Privacy Policy |
|---------|---------|-------------|----------------|
| **Anthropic** | AI roadmap generation | Profession, workflow, fluency, goal | [anthropic.com/privacy](https://www.anthropic.com/privacy) |
| **Supabase** | Database (stores quiz results, waitlist) | All quiz inputs, email (waitlist), session ID | [supabase.com/privacy](https://supabase.com/privacy) |
| **PostHog** | Product analytics | Browser events, session data (consent required) | [posthog.com/privacy](https://posthog.com/privacy) |
| **Plausible** | Privacy-friendly web analytics | Page views and referrer data (consent required) | [plausible.io/data-policy](https://plausible.io/data-policy) |
| **Resend** | Transactional email | Email address | [resend.com/legal/privacy-policy](https://resend.com/legal/privacy-policy) |
| **Beehiiv** | Newsletter | Email address, profession tag | [beehiiv.com/privacy](https://www.beehiiv.com/privacy) |
| **Vercel** | Website hosting & CDN | IP address, request logs | [vercel.com/legal/privacy-policy](https://vercel.com/legal/privacy-policy) |

All of these services are bound by Data Processing Agreements (DPAs) with us, and operate under appropriate safeguards for international data transfers (Standard Contractual Clauses where applicable).

5. Legal basis for processing (GDPR)

If you are in the European Union or EEA, we process your data on the following legal bases:

| Processing activity | Legal basis |
|--------------------|-------------|
| Generating your AI roadmap | Legitimate interest — delivering the service you requested |
| Storing quiz responses for product improvement | Legitimate interest — improving product quality |
| Sending transactional emails (e.g. roadmap confirmation) | Performance of a contract |
| Newsletter subscription | Consent (you opt in explicitly) |
| Waitlist registration | Consent (you opt in explicitly) |
| Analytics | Consent (you accept via cookie banner) |

6. Data retention

| Data | Retention period |
|------|-----------------|
| Quiz responses (Supabase `quiz_responses`) | 90 days, then automatically deleted |
| Roadmap cache (anonymised — no personal data) | Indefinite |
| Waitlist entries | Until the relevant product launches + 12 months |
| Newsletter subscribers (Beehiiv) | Until you unsubscribe |
| Email contacts (Resend) | Until you unsubscribe + 30 days |
| Analytics events | 1 year |

7. Cookies and local storage

TaskPacer does not use tracking cookies. We use browser localStorage for:

  • Storing your analytics consent decision
  • Analytics (only if you consent)

You can clear your localStorage at any time via your browser settings.

8. Your rights (GDPR — EU/EEA users)

If you are in the EU or EEA, you have the following rights:

  • Right of access (Art. 15): Request a copy of the data we hold about you
  • Right to erasure (Art. 17): Ask us to delete your data
  • Right to rectification (Art. 16): Ask us to correct inaccurate data
  • Right to restrict processing (Art. 18): Ask us to pause processing your data
  • Right to data portability (Art. 20): Receive your data in a structured format
  • Right to object (Art. 21): Object to processing based on legitimate interest

To exercise any of these rights, email privacy@taskpacer.com with the subject line "GDPR Request — [Right you are exercising]". We will respond within 30 days.

You also have the right to lodge a complaint with your local supervisory authority (e.g. the Dutch Autoriteit Persoonsgegevens if you are in the Netherlands).

9. Your rights (CCPA — California residents)

If you are a California resident, you have the right to:

  • Know what personal information we collect and how it is used
  • Delete your personal information
  • Opt out of the sale of personal information (we do not sell personal information)
  • Non-discrimination for exercising your privacy rights

To submit a request, email privacy@taskpacer.com with "CCPA Request" in the subject line.

10. Data security

We use industry-standard security measures:

  • All data in transit is encrypted via HTTPS/TLS
  • Supabase database is encrypted at rest
  • We use environment variables for all API keys — no credentials in code
  • Access to production data is limited to the product owner (TaskPacer)

We will notify you and the relevant supervisory authority within 72 hours if a data breach occurs that affects your personal data.

11. International data transfers

TaskPacer is operated from the EU. Some of our processors are based in the United States (Anthropic, PostHog, Resend, Beehiiv, Vercel). Where we transfer data outside the EU/EEA, we rely on:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • The EU-US Data Privacy Framework (DPF) where processors are certified

12. Children's privacy

TaskPacer is not directed at children under 16. We do not knowingly collect data from children. If you believe a child has submitted data, please contact us and we will delete it promptly.

13. Changes to this policy

We may update this policy as the product evolves. If we make material changes, we will notify subscribers by email at least 30 days before the change takes effect. The "last updated" date at the top of this page will always reflect the most recent version.

14. Contact

TaskPacer

Data Controller — TaskPacer

📧 privacy@taskpacer.com

🌐 taskpacer.com

For data protection requests, include "Privacy Request" in your email subject line.