We collect information you provide directly when you create an account, set up a workspace, or contact us for support.

• Account information: name, work email address, and password (hashed).
• Organisation data: workspace name, billing details, and team member profiles.
• Usage data: timesheet entries, project assignments, approval decisions, and generated invoices.
• Communications: support requests and any correspondence you send us.

We also collect certain information automatically when you use TymLogged, including IP address, browser type, device identifiers, pages visited, and feature interactions. This data is used solely to operate and improve the service.

We use the information we collect to:

• Provide, maintain, and improve TymLogged's features and functionality.
• Process transactions and send related billing notices.
• Send transactional and operational emails (e.g., timesheet reminders, approval notifications).
• Respond to support requests and troubleshoot issues.
• Monitor usage patterns to detect fraud, abuse, or security incidents.
• Comply with applicable legal obligations.

We do not sell your personal information to third parties, nor do we use it for purposes unrelated to providing the TymLogged service.

We may share your information only in the following limited circumstances:

• Service providers: trusted third-party vendors (e.g., cloud hosting, email delivery, payment processing) that process data on our behalf under strict data-processing agreements.
• Within your organisation: workspace administrators and project leads can see the data their team members submit within their workspace.
• Legal requirements: when required by law, court order, or to protect the rights and safety of TymLogged or its users.
• Business transfers: in the event of a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction with advance notice.

We implement industry-standard security measures to protect your data, including:

• Encryption of data in transit (TLS 1.2+) and at rest (AES-256).
• Role-based access controls so only authorised team members can view sensitive data.
• Regular security audits and vulnerability assessments.
• Strict internal access policies limiting employee access to user data.

No method of transmission over the internet is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

TymLogged uses cookies and similar technologies to maintain your session, remember your preferences, and understand how you interact with the service. These cookies are strictly necessary for the application to function correctly.

We do not use advertising or cross-site tracking cookies. You may disable cookies in your browser settings, though this will prevent you from signing in to TymLogged.

We retain your account and workspace data for as long as your subscription is active. If you close your account or your organisation's workspace is deleted, we will delete or anonymise your personal data within 90 days, unless we are required to retain it for legal or regulatory purposes.

Depending on your location, you may have the right to:

• Access the personal data we hold about you.
• Request correction of inaccurate or incomplete data.
• Request deletion of your personal data (subject to legal retention obligations).
• Object to or restrict certain processing activities.
• Export your data in a machine-readable format (data portability).
• Lodge a complaint with your local data protection authority.

To exercise any of these rights, please contact us at privacy@tymlogged.com. We will respond within 30 days.

TymLogged is designed for professional use and is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with their information, please contact us and we will delete it promptly.

We may update this Privacy Policy from time to time. When we do, we will revise the 'Last updated' date at the top of this page and, for material changes, notify workspace administrators by email at least 14 days before the changes take effect. Your continued use of TymLogged after the effective date constitutes acceptance of the revised policy.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out:

• Email: privacy@tymlogged.com
• Website: https://tymlogged.com
• Company: Webfascia Digital Solutions