About Security Pricing Help
Open App

Privacy Policy

Last Updated: December 15, 2025

At KanbanTab, accessible from kanbantab.com, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by KanbanTab and how we use it.

1. The Two Modes of Operation

KanbanTab operates in two distinct modes, which affects how your data is handled:

A. Guest Mode (Unregistered)

If you use KanbanTab without signing in:

  • Local Storage Only: Your boards, items, and settings are stored locally in your browser using IndexedDB.
  • No Server Transmission: Your content data is never sent to our servers. It exists solely on your device.
  • Data Loss Risk: If you clear your browser data or use incognito mode, this data will be permanently lost. We cannot recover it.

B. Account Mode (Registered)

If you sign in with Google:

  • Cloud Sync: Your data is securely transmitted to our servers to allow synchronization across devices.
  • Encryption: Data is encrypted in transit (TLS/SSL) and at rest.
  • End-to-End Encryption (Optional): If you enable E2EE, your data is encrypted on your device before it reaches us. We store only the encrypted binary blob and have zero knowledge of the contents.

2. Information We Collect

Personal Information

When you register for an account, we collect the following information via Google OAuth:

  • Name: To display on your profile.
  • Email Address: To identify your account and send critical transaction emails (we do not send marketing spam).
  • Google ID: A unique identifier to link your account.

Google Data Access: We strictly limit our request to the openid email profile scopes. We do not request access to your contacts, Google Drive, Calendar, or any other personal data.

Payment Information

If you upgrade to Premium, payment processing is handled by Stripe. We do not collect or store your credit card information. We only store a reference ID (Customer ID) to manage your subscription status.

Usage Data

We do not use third-party analytics services (like Google Analytics) to track your behavior inside the app. We may collect standard server logs (IP address, browser type) strictly for security purposes and to prevent abuse of our API.

3. How We Use Your Information

We use the information we collect strictly for operational purposes:

  • To provide, operate, and maintain the KanbanTab service.
  • To process your transactions and manage your subscription status (via Stripe).
  • To detect and prevent fraudulent use or unauthorized access to our API.
  • To communicate with you regarding your account status (e.g., subscription confirmation or security alerts).

4. End-to-End Encryption (E2EE)

We offer an optional End-to-End Encryption feature. When enabled:

  • Your data is encrypted using AES-256 on your device.
  • Your encryption key is derived from a passphrase using PBKDF2.
  • We do not store your passphrase.

Consequently, if you lose your passphrase, we cannot recover your data. This architecture ensures that even in the event of a database breach or government subpoena, your data remains unreadable to us and third parties.

5. Third-Party Privacy Policies

KanbanTab uses minimal third-party services. We advise you to consult the respective Privacy Policies of these servers for more detailed information.

6. Data Retention and Deletion

We retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy.

  • Account Deletion: You may delete your account at any time by contacting support. Upon deletion, your personal data and board data are removed from our active databases.
  • Backups: Deleted data may remain in our secure backups for a limited period (up to 30 days) for disaster recovery purposes before being permanently overwritten.

7. Local Data Storage (IndexedDB)

KanbanTab is a "Local-First" application. This means we use browser storage technologies (specifically IndexedDB) to function.

  • Full Application State: We store your entire board data (Boards, Stacks, Items, Settings) in your browser. This enables the app to load instantly and work offline.
  • Sync Status: Whether you are a Guest or a Registered User, your data always resides locally on your device. If you are registered, this data is also synced to our cloud.

We do not use cookies for third-party tracking, advertising, or cross-site profiling.

8. Children's Information

We do not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

9. Consent

By using our website, you hereby consent to our Privacy Policy and agree to its terms.

10. Contact Us

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us.

Email: [email protected]