Privacy Policy for HourSync

Last Updated: March 14, 2026

Thank you for using HourSync ("we," "us," or "our"). This Privacy Policy outlines how we collect, use, and protect your personal and non-personal information when you use our website at https://hoursync.com (the "Website") and our embeddable widget service (the "Service").

By accessing or using the Website or Service, you agree to the terms of this Privacy Policy. If you do not agree with the practices described in this policy, please do not use the Website or Service.

1. Information We Collect

1.1 Personal Data

We collect the following personal information from you:

Account Information: When you sign up for HourSync, we collect your name and email address through Google OAuth authentication. This information is used to create and manage your account, personalize your experience, and communicate with you about your account and our services.

Payment Information: We collect payment details to process your subscription payments securely. All payment information is processed by Stripe, a trusted third-party payment processor. We do not store your full payment card information on our servers. Stripe handles all payment data in accordance with PCI DSS standards.

Widget Configuration Data: We store the configuration data for your widgets, including business hours, appearance settings, Google Business Profile information, and domain allowlists. This data is necessary to provide the Service.

1.2 Non-Personal Data

We may use web cookies, local storage, and similar technologies to collect non-personal information such as your IP address, browser type, device information, and browsing patterns. This information helps us to enhance your browsing experience, analyze trends, improve our services, and ensure security.

We also collect usage data related to widget performance and API requests for service optimization and rate limiting purposes.

2. Purpose of Data Collection

We collect and use your personal data for the following purposes:

- To provide, maintain, and improve our Service
- To process your subscription payments and manage your account
- To sync opening hours data with Google Business Profile
- To display your widgets on authorized domains
- To send you important information regarding your account, service updates, and support communications
- To ensure security and prevent fraud
- To comply with legal obligations

3. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your data only in the following circumstances:

- With Google: We access your Google Business Profile data (with your explicit permission) to sync opening hours information. This is done through Google OAuth and Google Business Profile API.

- With Stripe: We share payment information with Stripe to process your subscription payments securely.

- With Service Providers: We may share data with trusted service providers who assist us in operating our Service, such as hosting providers (MongoDB Atlas, Cloudflare), monitoring services (Sentry), and email services (Resend). These providers are contractually obligated to protect your data.

- Legal Requirements: We may disclose your information if required by law or in response to valid legal requests.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. This includes encryption, secure authentication, rate limiting, and regular security assessments. However, no method of transmission over the Internet or electronic storage is 100% secure.

5. Data Retention

We retain your personal data for as long as your account is active or as needed to provide you with the Service. If you cancel your subscription, we may retain certain data for a reasonable period to comply with legal obligations, resolve disputes, and enforce our agreements.

6. Your Rights

You have the right to:
- Access your personal data
- Correct inaccurate or incomplete data
- Request deletion of your personal data
- Object to processing of your personal data
- Request data portability
- Withdraw consent for data processing

To exercise these rights, please contact us at [email protected].

7. Children's Privacy

HourSync is not intended for children under the age of 13. We do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us at the email address provided below.

8. Third-Party Links

Our Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using our Service, you consent to the transfer of your information to these countries.

10. Updates to the Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. Any updates will be posted on this page with an updated "Last Updated" date. We may notify you via email about significant changes.

11. Contact Information

If you have any questions, concerns, or requests related to this Privacy Policy, you can contact us at:

Email: [email protected]

For all other inquiries, please visit our Website or contact us through the support channels provided in your dashboard.

By using HourSync, you consent to the terms of this Privacy Policy.