Privacy Policy
Last updated: May 2026
1. General provisions
This Privacy Policy describes how TaskFly (taskfly.ru) processes and protects users' personal data. By using the service, you agree to the terms of this Policy. TaskFly is operated from Russia, and personal data processing is carried out in accordance with Federal Law No. 152-FZ "On Personal Data".
2. What data we collect
When you register and use the service, we may collect: your email address, username, Telegram ID (if you connect the bot), OAuth authorization data (Google, Yandex), the content of your tasks and projects, and usage data (analytics). We do not collect payment data directly — it is processed by payment providers.
3. How we use your data
Data is used solely to: provide the service's functionality, send notifications by email and Telegram (only if enabled in settings), improve the quality of the service, and contact you regarding support requests. We do not sell or share personal data with third parties, except where required by law.
4. AI processing and third-party data
When you use AI features (extracting tasks from text, voice, or photos), text is processed using the Claude API (Anthropic) and Whisper API (OpenAI). Before sending, data is automatically anonymized: names are replaced with [NAME], phone numbers with [PHONE]. A Data Processing Agreement (DPA) is in place with Anthropic. Data is not used to train models.
5. Data storage
All user data is stored on servers located in the Russian Federation, in accordance with Article 18 of Federal Law 152-FZ. Data is retained until the user deletes their account.
6. Your rights
You have the right to: receive information about the data we process, correct inaccurate data, delete your data (via account settings or by request to info@taskfly.ru), restrict processing, and receive your data in a machine-readable format. Requests are processed within 30 days.
7. Cookies
The service uses only technically necessary cookies to maintain your login session. Analytics and advertising cookies are not used.
8. Security
Data is protected using: password hashing (bcrypt), HTTPS for all data transfer, HTTP-only session cookies, and role-based access control. If you discover a vulnerability, please report it to info@taskfly.ru.
9. Contacts
For questions about personal data processing: info@taskfly.ru. The TaskFly team is responsible for personal data processing.