Privacy Policy

Last updated: February 2026

Ember respects your privacy.

This Privacy Policy explains what data Ember collects, why it’s collected, and how it’s handled. Ember is built and operated in the EU and is designed to collect the minimum amount of data required to provide the service.

If you have questions, you can contact us at hello@theember.app.

1. Our principles

Ember is built around these privacy principles:

• We collect as little data as possible
• We never sell user data
• We don’t track individual behavior in the app
• We don’t run ads
• We don’t train AI models on your data
• We are transparent about our infrastructure

Your work belongs to you.

2. What data Ember collects

Account data

When you create an account, we collect:

• Email address
• Optional display name

This data is used only to:

• Authenticate you
• Associate you with workspaces
• Send essential emails (login, account, billing)

Workspace & content data

When you use Ember, we store:

• Workspaces, projects, tasks, milestones
• Task metadata (status, estimates, assignments)

This data exists solely to provide the Ember service.

Ember does not analyze task content, descriptions, or titles for analytics, profiling, or advertising.

Usage data (inside the app)

Ember does not use behavioral analytics.

We do not track:

• Clicks
• Navigation paths
• Session recordings
• Heatmaps
• User-level activity timelines

We only collect anonymous, aggregated metrics, such as:

• Number of active users
• Number of workspaces, projects, and tasks
• Feature usage totals

These metrics cannot be used to identify individual users and are used only to operate and improve Ember.

Website analytics

The Ember website uses Plausible Analytics to measure general traffic.

Plausible:

• Does not use cookies
• Does not collect personal data
• Does not track users across websites
• Is GDPR-compliant by design

This data is used only to understand overall website usage.

3. Payments and billing

Payments are processed by Paddle (paddle.com).

Ember does not store credit card details.
Paddle may collect and process billing information according to their own Privacy Policy.

Paddle is GDPR-compliant and acts as a data processor for payment-related data.

4. Emails

Ember sends essential emails only, such as:

• Login and verification emails
• Account-related notifications
• Billing-related messages

We do not send marketing emails without explicit consent.

Email delivery is handled by a third-party provider acting as a data processor.

5. Data processors

Ember uses the following subprocessors:

• Supabase: database, authentication, and hosting
• Paddle: payment processing
• Plausible Analytics: website analytics
• Vercel: application hosting

All subprocessors are GDPR-compliant and process data only on Ember’s instructions.

6. Data storage and security

• Data is stored securely using industry-standard practices
• Access is restricted to what is necessary to operate the service
• Regular backups are performed for paid team workspaces

While no system is 100% secure, Ember takes reasonable steps to protect your data.

7. Data retention

• Account and workspace data is retained while your account is active
• You may delete your account at any time
• When an account is deleted, associated data is removed immediately

8. Your rights (GDPR)

If you are in the EU, you have the right to:

• Access your data
• Correct your data
• Request deletion of your data
• Export your data
• Object to certain processing

You can exercise these rights by contacting hello@theember.app.

9. Children’s privacy

Ember is not directed at children under 18.
We do not knowingly collect data from children.

10. Changes to this policy

If this Privacy Policy changes, we will update the date at the top of this page.
Material changes will be communicated clearly.

11. Contact

If you have questions about this Privacy Policy or how Ember handles data, contact:

hello@theember.app

Ember is built to respect your focus and your privacy.