D
Devoted

Privacy Policy

Your privacy matters to us. This policy explains how Devoted handles your personal information.

Last Updated:January 19, 2026
Effective Date:January 19, 2026

1. Overview

Welcome to Devoted (“we,” “our,” or “us”). Devoted is an AI-powered task scheduling application designed to help you manage your time more effectively by intelligently scheduling your tasks based on your calendar availability, preferences, and patterns.

This Privacy Policy describes how we collect, use, disclose, and safeguard your information when you use our mobile application (“App”) and related services (collectively, the “Services”). Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Services.

By using Devoted, you consent to the data practices described in this policy. We are committed to protecting your privacy and ensuring transparency in how we handle your data.

2. Information We Collect

2.1 Information You Provide Directly

When you use our Services, you may provide us with the following information:

  • Account Information: Your email address and authentication credentials when you create an account or sign in using Google OAuth.
  • Task Data: The tasks, to-do items, and descriptions you enter into the app for scheduling.
  • Calendar Data: When you connect your Google Calendar, we access your calendar events to find optimal scheduling times.
  • Preferences: Your scheduling preferences, work hours, focus time settings, and other customizations you configure.
  • Feedback: Any feedback, ratings, or communications you send to us through the app.

2.2 Information Collected Automatically

When you use the App, we automatically collect certain information:

  • Device Information: Device type, operating system version, unique device identifiers, and mobile network information.
  • Usage Data: How you interact with the app, including features used, scheduling patterns, and session duration.
  • Log Data: Technical logs including crash reports, error logs, and performance metrics to improve app stability.
  • Analytics: Aggregated usage statistics to understand how users interact with our Services.

2.3 Calendar Integration Data

When you connect your Google Calendar account, we access calendar data to provide our scheduling services. This includes:

  • Event titles, times, and durations to identify available time slots.
  • Calendar metadata to understand your schedule patterns.
  • Busy/free status to avoid scheduling conflicts.
  • Multiple calendar accounts if you choose to connect them.

We use OAuth 2.0 for calendar access, which means we never see or store your Google password. You can revoke calendar access at any time through your Google Account settings.

3. How We Use Your Information

We use the information we collect to:

  • Provide Core Services: Schedule your tasks at optimal times based on your calendar availability and preferences.
  • AI-Powered Scheduling: Use machine learning to understand your patterns and improve scheduling recommendations over time.
  • Personalization: Learn your preferences (like preferring code reviews in the morning) to provide better scheduling suggestions.
  • Protect Focus Time: Enforce your work hours, break times, and protect focus blocks from fragmentation.
  • Day Planning: Enable the "Plan My Day" feature that optimizes your entire daily schedule.
  • Synchronization: Keep your data synced across devices and with your connected calendars.
  • Push Notifications: Send reminders and notifications about scheduled tasks (if enabled).
  • Improve Services: Analyze usage patterns to enhance features, fix bugs, and improve user experience.
  • Customer Support: Respond to your inquiries and provide assistance.
  • Security: Detect and prevent fraud, abuse, and security threats.

3.1 AI and Pattern Learning

Devoted uses AI to learn your scheduling patterns and preferences. This learning is personalized to your account and is used solely to improve your scheduling experience. Specifically:

  • We analyze your scheduling feedback (thumbs up/down) to improve future recommendations.
  • We learn when you prefer certain types of tasks (e.g., deep work in the morning).
  • We track which scheduled events you complete, reschedule, or cancel to refine our suggestions.
  • Pattern data is stored securely and associated only with your account.

4. Data Storage & Security

4.1 Data Storage

Your data is stored in the following ways:

  • Cloud Storage: Account data, tasks, preferences, and pattern learning data are stored on secure cloud servers.
  • Local Storage: The app caches calendar and task data locally on your device for offline access and faster performance.
  • Database: We use PostgreSQL databases with encryption for structured data.
  • Vector Storage: AI pattern learning uses secure vector databases for personalization.

4.2 Security Measures

We implement robust security measures to protect your data:

  • Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS 1.3.
  • Encryption at Rest: Stored data is encrypted using AES-256 encryption.
  • OAuth Authentication: We use industry-standard OAuth 2.0 for Google Calendar integration.
  • JWT Tokens: Secure token-based authentication for API access.
  • Access Controls: Strict access controls ensure only authorized personnel can access user data.
  • Regular Audits: We conduct regular security audits and vulnerability assessments.
  • Secure Infrastructure: Our servers are hosted on enterprise-grade cloud infrastructure with SOC 2 compliance.

5. Third-Party Services

We use the following third-party services to provide and improve our Services. Each service has its own privacy policy governing its use of data:

5.1 Google Calendar API

We integrate with Google Calendar to read your events and create scheduled tasks. This integration uses Google's OAuth 2.0 and complies with Google's API Services User Data Policy.

5.2 AI Services

We use AI services (including Google Gemini and OpenAI) to power our intelligent scheduling features. Task descriptions and scheduling requests are processed by these services to generate scheduling recommendations. These providers have their own data protection practices.

5.3 Analytics & Error Tracking

  • Firebase Analytics: For understanding app usage patterns and performance.
  • Sentry: For error tracking and crash reporting to improve app stability.

5.4 Push Notifications

We use Firebase Cloud Messaging (FCM) to send push notifications for task reminders and updates. You can disable notifications in your device settings at any time.

6. Data Sharing

We do not sell your personal information. We may share your information only in the following circumstances:

  • Service Providers: With third-party vendors who perform services on our behalf (hosting, analytics, AI processing) under strict confidentiality agreements.
  • Legal Requirements: When required by law, legal process, or government request.
  • Protection: To protect the rights, property, and safety of Devoted, our users, or the public.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets, with notice to affected users.
  • With Your Consent: When you explicitly authorize us to share specific information.

We never share, sell, or rent your personal calendar data or task information to advertisers or data brokers. Your scheduling data is used exclusively to provide and improve our Services.

7. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the personal information we hold about you.
  • Correction: Request correction of inaccurate personal data.
  • Deletion: Request deletion of your personal data ("right to be forgotten").
  • Portability: Request your data in a portable, machine-readable format.
  • Restriction: Request that we limit how we use your data.
  • Objection: Object to certain types of data processing.
  • Withdraw Consent: Withdraw previously given consent at any time.

7.1 How to Exercise Your Rights

To exercise any of these rights, you can:

  • Use in-app settings to manage your data and preferences.
  • Disconnect calendar accounts through your Google Account settings.
  • Contact us at privacy@devoted.app with your request.
  • Request account deletion through the app settings.

7.2 California Residents (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect and the right to opt-out of the sale of personal information. As stated above, we do not sell personal information.

7.3 European Users (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR). Our legal basis for processing your data includes your consent, contractual necessity, and legitimate interests in providing and improving our Services.

8. Data Retention

We retain your personal information for as long as necessary to:

  • Provide you with the Services you requested.
  • Maintain your account and preferences.
  • Comply with legal obligations.
  • Resolve disputes and enforce agreements.

If you delete your account, we will delete or anonymize your personal data within 30 days, except where we need to retain certain information for legal compliance or legitimate business purposes. Anonymized data may be retained for analytics and service improvement.

9. Children's Privacy

Devoted is not intended for children under 13 years of age (or 16 in the EEA). We do not knowingly collect personal information from children under these ages. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@devoted.app, and we will take steps to delete such information.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. When we transfer data internationally, we implement appropriate safeguards including:

  • Standard Contractual Clauses approved by the European Commission.
  • Data processing agreements with all service providers.
  • Technical and organizational measures to protect data in transit and at rest.

11. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Posting the updated policy on our website and in the app.
  • Updating the "Last Updated" date at the top of this policy.
  • Sending you a notification through the app for significant changes.

We encourage you to review this Privacy Policy periodically. Your continued use of the Services after any changes indicates your acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Contact Information

Email: support@devoted.app

Privacy Inquiries: privacy@devoted.app

Website: devoted.app

We aim to respond to all inquiries within 30 days. For data protection related requests from EU residents, you also have the right to lodge a complaint with your local data protection supervisory authority.