Skip to content
← Back to TaskDrop

Privacy Policy

TaskDrop is operated by 360 MAKER (ABN 44 137 669 949), Gold Coast, Queensland, Australia. For privacy-related enquiries, contact us at privacy@taskdrop.co.

Data We Collect

  • Account information (email, display name) — stored in Supabase
  • Task data (descriptions, uploaded files, results) — stored in Supabase (database) and Cloudflare R2 (file storage)
  • Payment information (processed securely by Stripe — we do not store card details)
  • AI processing data (task content sent to Anthropic for AI generation — not retained by Anthropic after processing)

How We Use Your Data

Your data is used solely to process your tasks and payments. We do not sell your data. Task content is sent to AI providers (Anthropic) for processing only.

Data Retention

Task data and files are automatically deleted 30 days after completion. You can delete all your data immediately using the "Destroy All My Data" button in Settings.

Your Rights (GDPR / Australian Privacy Act / CCPA)

Under the Australian Privacy Act 1988 (Cth), the EU General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA), you have the following rights:

  • Access: Request and export all your data from Settings
  • Correction: Request correction of inaccurate personal information
  • Deletion: Delete all your data at any time
  • Portability: Download your data in JSON format
  • Complaint: Lodge a complaint with the Office of the Australian Information Commissioner (OAIC) or your local data protection authority

Third-Party Services

  • Supabase — authentication and database (account data, task metadata)
  • Stripe — payment processing (payment and billing data)
  • Anthropic — AI task processing (task content sent for generation)
  • Cloudflare R2 — file storage and CDN (uploaded files and generated deliverables)

Cookie Policy

We use essential cookies required for authentication and session management. We do not use advertising or tracking cookies. Third-party services (Stripe, Supabase) may set their own cookies as described in their respective privacy policies.

Data Breach Notification

In the event of a data breach that affects your personal information, we will notify affected users within 72 hours of becoming aware of the breach, as required by the GDPR and the Notifiable Data Breaches (NDB) scheme under the Australian Privacy Act 1988. Where required, we will also notify the Office of the Australian Information Commissioner (OAIC). Notification will be sent via email and posted on our website.

Children's Privacy

TaskDrop is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will promptly delete it.

International Data Transfers

TaskDrop is operated from Australia. Your data may be transferred to and processed in countries other than your country of residence, including the United States (where our third-party service providers operate). We ensure appropriate safeguards are in place for international transfers in compliance with the Australian Privacy Act 1988, GDPR, and other applicable data protection laws.

Data Retention Details

  • Account data: Retained until you delete your account
  • Task data and files: Automatically deleted 30 days after task completion
  • Payment records: Retained for 7 years for tax and legal compliance
  • Server logs: Retained for 90 days for security and debugging

Last updated: March 2026