Privacy Policy

We collect only what is necessary to provide the service:

• Account data — email address and password (hashed) when you sign up.
• Reminder data — titles, descriptions, deadline dates, and category selections you enter.
• Notification preferences — whether you have push or email notifications enabled.
• Push subscription tokens — browser-generated tokens used to deliver push notifications to your device.
• Plan information — whether you are on the free or premium plan.

We do not collect payment card details directly. Payments are handled by Stripe, subject to their own privacy policy.

• To send you deadline reminders via push notification and/or email, based on your preferences.
• To enforce plan limits (e.g. the 5-reminder limit on the free plan).
• To authenticate you and keep your account secure.
• To improve the service based on aggregate, anonymised usage patterns.

We do not sell your data. We do not use your data for advertising.

Your data is stored in Supabase (PostgreSQL), hosted on AWS infrastructure in the US. All data is encrypted in transit (TLS) and at rest. Row-level security policies ensure that each user can only access their own data.

We retain your data for as long as your account is active. If you delete your account, all associated data is permanently removed within 30 days.

We use the following third-party services to operate NobodyReminds.me:

• Supabase — database and authentication.
• Vercel — hosting and edge functions.
• Resend — transactional email delivery (premium users only).
• Stripe — payment processing (premium plan).

Each of these providers has their own privacy policy and data processing terms. We have data processing agreements in place where required.

We use cookies strictly necessary for authentication (session tokens managed by Supabase Auth). We do not use tracking or analytics cookies.

Theme preferences (dark/light mode) are stored in your browser's localStorage and never sent to our servers.

You have the right to:

• Access — request a copy of the data we hold about you.
• Rectification — correct inaccurate data.
• Erasure — delete your account and all associated data.
• Portability — receive your reminder data in a machine-readable format.
• Object — opt out of any non-essential processing.

To exercise any of these rights, email us at hello@nobodyreminds.me.

NobodyReminds.me is not directed at children under 13. We do not knowingly collect data from children. If you believe a child has provided us with their data, please contact us immediately.

We may update this policy from time to time. We will notify you of significant changes via email or an in-app notice. The "Last updated" date at the top of this page always reflects the most recent version.

Questions or concerns? Reach us at hello@nobodyreminds.me or visit nobodyreminds.me.