Your Thinking. Our Priority.

At Todofi, we respect your ideas and your privacy. We want you to feel completely secure when using our platform. This Privacy Policy outlines our commitment to protecting the thoughts, notes, and information you entrust to us. We’ve written it to be as clear and friendly as possible, focusing on established, trusted industry standards.

Effective Date: October 26, 2026

1. Your Core Freedom: You Own Your Notes

Your notes, outlines, whiteboard sketches, kanban cards, calendar events, and mapped contexts are yours and yours alone. We do not claim any ownership over the content you create. Our mission is to provide the perfect *architecture* for your thought, not to control it. You are free to export or delete your notes at any time.

2. What We Collect (And What We Don't)

To provide a seamless experience, we collect only minimal, necessary information:

• Your Note Content: Naturally, we process and store the notes and visual structures you create so they are available when you need them. We *do not* read or analyze your personal note content for any purpose.
• Account Information: A username and email address are required to create an account, sync your notes across devices, and for basic service communication.
• Usage Data: We collect non-identifiable technical data (like browser type, operating system, and pages visited on our site) using standard tools. This helps us understand how the service is used and where to make improvements. We *do not* track your activity across other websites.

3. Keeping Your Ideas Safe: Industry Standards

We take security very seriously and employ modern, trusted measures to safeguard your information:

• Data Encryption: All your notes are encrypted both *in transit* (when being sent between your device and our servers) and *at rest* (when stored in our secure databases), using well-known, industry-standard cryptographic protocols like TLS and AES-256.
• Secure Servers: Our servers are hosted with reputable, major cloud providers known for their world-class security physical and digital infrastructure.
• Access Control: Within Todofi, only a strictly limited number of authorized personnel have access to the production databases, solely for maintenance and support purposes.

4. Minimal Data Sharing: No Selling

We will **never sell** your personal information or your note content. We only share data in these limited, necessary cases:

• Trusted Service Providers: We use trusted third-party companies for essential service components (like our cloud hosting provider and email delivery service). These partners are contractually obligated to keep your data confidential and only use it to perform specific, agreed-upon tasks on our behalf.
• Legal Requirements: If required by a valid legal process (such as a search warrant, subpoena, or court order), we must comply. We will notify you whenever legally possible and will narrow any data disclosure to the absolute minimum necessary.

5. Your Choices: Total Control

You have full control over your data:

• View and Edit: You can access, review, and change your note content and account information at any time.
• Export: We provide tools for you to easily download a copy of all your notes in standard formats.
• Delete: If you decide to leave, you can delete your account. This action will permanently remove all your personal data and note content from our active production systems.

6. Simple Cookies: Just to Remember You

We use very simple cookies for functional reasons, such as keeping you logged in between sessions and remembering your preferences. We do not use cookies for tracking you elsewhere on the web or for targeted advertising.

7. Changes to This Policy

We may update this policy occasionally as we improve our services. We will never reduce your rights under this policy without your explicit consent. Any significant changes will be clearly posted here, and we will notify you via the email address on your account if necessary.