Legal

Privacy Policy

Last updated: January 21, 2026

1. Introduction

Welcome to UnDHD ("we," "our," or "us"). We are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered task management service ("Service") available at undhd.com and app.undhd.com.

By using our Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, please do not use our Service.

2. Information We Collect

2.1 Information You Provide

We collect information you voluntarily provide when using our Service:

  • Account Information: Email address, name, and password when you create an account
  • Task Data: Tasks, projects, quarterly rocks, problems, comments, notes, and other content you create
  • File Attachments: Documents, images, and other files you upload to tasks and projects
  • Check-in Responses: Daily and weekly check-in information, including explanations for overdue tasks
  • Habit Data: Habit tracking information and completion records
  • Payment Information: Billing address and payment details (processed securely by our payment processor, Stripe)
  • API Keys: If you use our BYOK plan, your OpenAI API key (stored securely and encrypted)
  • Communications: Messages you send to us through contact forms or support channels

2.2 Information Collected Automatically

When you use our Service, we automatically collect certain information:

  • Usage Data: Features used, actions taken, time spent on the platform
  • Device Information: Browser type, operating system, device type
  • Log Data: IP address, access times, pages viewed, and referring URLs
  • Cookies and Similar Technologies: Session information, preferences, and authentication tokens

3. How We Use Your Information

We use the collected information for the following purposes:

  • Provide the Service: To create and manage your account, process tasks, run AI scheduling, and deliver core functionality
  • AI Features: To power context-aware scheduling, task categorization, time estimation, and project health assessment
  • Process Payments: To handle subscription billing and manage your account status
  • Improve the Service: To analyze usage patterns, identify bugs, and enhance features
  • Communications: To send account-related notifications, respond to inquiries, and provide customer support
  • Security: To protect against fraud, unauthorized access, and other illegal activities
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes

4. AI Processing and Third-Party Services

4.1 OpenAI Integration

Our Service uses OpenAI's API to provide AI-powered features such as smart scheduling, task categorization, and project health assessment. When you use these features:

  • Your task data is sent to OpenAI's servers for processing
  • OpenAI processes this data according to their Privacy Policy and API Data Usage Policy
  • For BYOK users: Your own OpenAI API key is used, and data processing is subject to your agreement with OpenAI
  • For Full plan users: We use our OpenAI API credentials, and OpenAI does not use your data to train their models (per their API data policy)

4.2 Other Third-Party Services

We use the following third-party services:

  • Stripe: Payment processing - Privacy Policy
  • Hosting Provider: Cloud infrastructure for data storage and application hosting
  • Analytics: To understand how users interact with our Service (anonymized data)

5. Data Storage and Security

We implement industry-standard security measures to protect your information:

  • Encryption in transit (TLS/SSL) and at rest
  • Secure password hashing
  • Regular security audits and updates
  • Access controls and authentication
  • API keys are stored encrypted and never logged

While we strive to protect your information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your information as follows:

  • Active Accounts: Data is retained while your account is active and for a reasonable period afterward
  • Deleted Accounts: Upon account deletion request, we delete your personal data within 30 days, except where retention is required by law
  • Backups: Backups may retain data for up to 90 days
  • Legal Requirements: We may retain certain information as required by applicable laws

7. Your Rights and Choices

Depending on your location, you may have the following rights:

  • Access: Request a copy of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data ("right to be forgotten")
  • Data Portability: Request your data in a portable format
  • Opt-out: Unsubscribe from marketing communications
  • Withdraw Consent: Withdraw consent where processing is based on consent

To exercise these rights, please contact us at privacy@undhd.com.

8. Cookies and Tracking

We use cookies and similar technologies for:

  • Essential Cookies: Required for authentication and core functionality
  • Preference Cookies: Remember your settings and preferences
  • Analytics Cookies: Understand usage patterns (can be disabled)

You can control cookies through your browser settings. Disabling certain cookies may affect Service functionality.

9. Children's Privacy

Our Service is not intended for children under 16 years of age. We do not knowingly collect personal information from children under 16. If we learn we have collected data from a child under 16, we will delete that information promptly.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws. We take appropriate safeguards to ensure your information remains protected in accordance with this Privacy Policy.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. We encourage you to review this Privacy Policy periodically.

12. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us: