ImpactTracker.ai helps professionals track their work activities and outcomes. We take your privacy seriously and have implemented EU-compliant data protection measures.
Email address for authentication and account management.
Work activities and outcomes you submit through our natural language input system. This includes descriptions of tasks, meetings, results, and metrics.
Basic usage statistics to improve our service (pages visited, features used, error logs).
Your activity descriptions are sent to OpenAI's API (US-based) for natural language processing and insight generation. We implement PII detection to minimize sensitive data exposure.
Data is stored in Supabase (EU-hosted PostgreSQL) with encryption at rest and row-level security ensuring you can only access your own data.
We automatically detect and mask potentially sensitive information (emails, phone numbers, etc.) before processing. Description fields are encrypted in our database.
| Service | Purpose | Location | Data Shared |
|---|---|---|---|
| Supabase | Database & Authentication | EU | All user data |
| OpenAI | AI Processing | US | Activity descriptions (PII-filtered) |
| Vercel Analytics | Usage Analytics & Performance | US | Anonymous page views, performance metrics |
| Google Fonts | Web Typography | US | IP address (for font delivery) |
We use cookies and similar technologies to provide essential functionality and, with your consent, to analyze usage patterns. All cookies are categorized and managed according to GDPR requirements.
Required for authentication, security, and basic functionality. Cannot be disabled.
Help us understand usage patterns. Requires your explicit consent.
Enable enhanced features and personalization. Optional.
You can manage your cookie preferences at any time using the cookie settings section below.
Request a copy of all your personal data
Correct inaccurate personal data
Delete your account and all associated data
Export your data in machine-readable format
Limit how we process your data
Object to certain types of processing
We retain your data as long as your account is active and for legitimate business purposes.
When you delete your account, all personal data is permanently removed within 30 days, including from backups.
Some data may be retained longer if required by law or for legitimate interests (e.g., fraud prevention, legal claims).
For privacy-related questions or to exercise your rights:
Email: []
Response time: Within 30 days
You have the right to lodge a complaint with your local data protection authority if you believe we have not handled your data properly.
This privacy policy may be updated to reflect changes in our practices or legal requirements. We will notify users of material changes via email or through the application.
Last updated: 9/24/2025
Control which cookies and tracking technologies we use on your device. Your preferences will be saved and remembered for future visits.
These cookies are strictly necessary for the website to function properly. They enable core functionality such as security, network management, and accessibility.
These cookies help us understand how you interact with our website by collecting anonymous information about your visit, helping us improve our services.
Collects anonymous page views, navigation patterns, and performance metrics.
Data retention: 90 days | Provider: Vercel Inc. (US) |Privacy Policy
Your Rights: You can opt out of analytics at any time. This will not affect the functionality of the website.
These cookies enable enhanced functionality and personalization. The website will function without them, but some features may not be available.
Data retention: 1 year or until withdrawn
You can clear all stored cookie preferences and website data. This will remove all non-essential cookies and reset your preferences.
This action will reload the page and you'll need to set your preferences again.
Essential cookies: Legitimate interest (necessary for website functionality)
Analytics cookies: Your explicit consent (GDPR Article 6(1)(a))
Functional cookies: Your explicit consent (GDPR Article 6(1)(a))
You can withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.