Back to home

Privacy Policy

Last updated: 1 June 2025

thefamoso ("we", "our", or "us") operates the thefamoso focus-analytics service. This Privacy Policy explains what personal data we collect, why we collect it, and what rights you have over it. We take your privacy seriously — our product is built on the principle that your work patterns belong to you alone.

1. Who We Are

thefamoso is a software-as-a-service product providing personal focus and productivity analytics. References to "thefamoso", "we", "us" or "our" in this policy refer to the entity operating the service at thefamoso.com.

For questions about this policy, contact us at thefamoso.app@gmail.com.

2. What Data We Collect

2.1 Account data

When you register, we collect your name, email address, and a hashed password (or OAuth provider token). This is required to operate your account.

2.2 Integration data

When you connect Google Calendar, GitHub, or Slack, we receive OAuth access tokens and the activity data you authorise us to read:

  • Google Calendar: event titles, start/end times, attendee count, and recurrence flags. We do not read the event description or attendee email addresses beyond your own.
  • GitHub: public event types (push, pull request, review, comment, create) and timestamps from your personal feed. We do not clone your code or read file contents.
  • Slack: message timestamps and channel metadata used to measure communication volume. We do not store message body text.

2.3 Derived analytics data

We classify raw events into focus sessions (deep work, meetings, communication, context switching) and store aggregated daily summaries, insights, and recommendations. This derived data is tied to your account and is not shared with third parties.

2.4 Billing data

Payment is handled entirely by Stripe. We store only your Stripe Customer ID, subscription status, and plan tier. We never see or store full card numbers.

Our subscription model includes a one-time activation fee (€6.99 – €18.99 depending on plan) and a recurring daily service charge of €30.00/day. Full details of the billing structure are set out in our Terms of Service, section 3.

2.5 Technical data

We collect standard server logs (IP address, browser user agent, timestamp) for security and debugging purposes. These logs are retained for 30 days.

3. How We Use Your Data

  • To provide and improve the thefamoso analytics service.
  • To send transactional emails (account confirmation, billing receipts).
  • To generate weekly focus reports if you have an active subscription.
  • To detect and prevent abuse, fraud, or security incidents.
  • To comply with legal obligations.

We do not sell your data. We do not use your individual activity data for advertising. We do not share your data with your employer or any third party without your explicit consent.

4. Data Storage and Security

Your data is stored in the European Union (Supabase eu-central-1 region). OAuth tokens are encrypted at rest using AES-256-GCM with a per-user derived key before being written to the database. All data in transit is protected by TLS 1.2+.

Access to production data is restricted to authorised personnel only and is protected by multi-factor authentication.

5. Data Retention

  • Raw activity events: retained for 90 days (Personal plan), 1 year (Pro), 2 years (Elite), then permanently deleted.
  • Daily summaries and insights: retained while your account is active.
  • Account data: deleted within 30 days of account closure.
  • Billing records: retained for 7 years as required by financial regulations.

6. Third-Party Services

We use the following sub-processors to operate the service:

ServicePurposeLocation
SupabaseDatabase and authenticationEU (Frankfurt)
VercelApplication hostingEU / Global CDN
StripePayment processingEU / US
InngestBackground job processingUS
SentryError monitoringEU

All sub-processors are bound by data processing agreements and comply with GDPR requirements.

7. Your Rights (GDPR)

If you are located in the European Economic Area, you have the following rights under the General Data Protection Regulation (GDPR):

  • Access: request a copy of all personal data we hold about you.
  • Rectification: correct inaccurate data.
  • Erasure: request deletion of your account and all associated data ("right to be forgotten").
  • Portability: receive your data in a machine-readable format (Elite plan users can export directly; all users may request via email).
  • Restriction: request that we stop processing your data while a dispute is resolved.
  • Objection: object to processing based on legitimate interests.

To exercise any of these rights, email thefamoso.app@gmail.com. We will respond within 30 days.

8. Cookies

We use only strictly necessary cookies to maintain your authenticated session. We do not use advertising, tracking, or analytics cookies. No third-party cookies are set.

9. Children

thefamoso is not directed at children under the age of 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. Material changes will be announced via email and a notice in the dashboard at least 14 days before taking effect. Continued use of the service after that date constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions or to exercise your rights:
Email: thefamoso.app@gmail.com