How does TASKIT protect my data?

TASKIT uses TLS 1.3 encryption, bcrypt password hashing, MFA, session revocation, and role-based access controls to protect your data.

Does TASKIT sell my personal data?

No. TASKIT does not sell personal data. We process data only to provide and improve our services.

How can I delete my data?

Contact hello@taskit.app to request data deletion. We process deletion requests within 30 days.

TASKIT Privacy Policy

Name: TASKIT OS
Price: 19 USD
Availability: InStock
Author: TASKIT

Version: 2026.05

Last Updated: May 16, 2026

This document is intended for production review and should be reviewed by qualified legal counsel before TASKIT is launched commercially.

Scope
Roles and Responsibilities
Personal Data We Collect
Workspace Content, Files, and Media
AI Features and Automation
How We Use Personal Data
Legal Bases for Processing
Analytics, Logs, and Security Monitoring
Integrations and Third Parties
Payments, Finance, and Contract Data
Cookies and Similar Technologies
Sharing and Disclosure
International Transfers
Retention
Security
Your Privacy Rights
CCPA/CPRA Notice
GDPR and EEA/UK/Swiss Rights
Children
Changes
Contact and Deletion Requests

1. Scope

This Privacy Policy explains how TASKIT processes personal data in connection with its AI-powered agency operations SaaS platform, including workspace management, finance and accounting modules, contracts management, AI assistants, realtime collaboration, file and media uploads, integrations, analytics, client portals, notifications, and workflow automation.

2. Roles and Responsibilities

For customer workspace content, TASKIT generally acts as a service provider or processor, and the customer organization acts as controller or business. For account, billing, security, abuse prevention, product analytics, and platform operations data, TASKIT may act as an independent controller. Customer administrators are responsible for configuring workspaces, inviting users, assigning roles, and responding to data subject requests relating to their workspace.

3. Personal Data We Collect

We may collect account identifiers, name, work email, role, company affiliation, authentication metadata, locale, device and browser data, IP address, user agent, audit events, support communications, billing and subscription data, integration configuration, workspace activity, notification preferences, and security events. We also process content that users upload or create, including tasks, briefs, contracts, invoices, client records, comments, media, files, AI prompts, AI outputs, and collaboration metadata.

4. Workspace Content, Files, and Media

TASKIT stores and processes user-generated content only to provide, secure, maintain, and improve the Services, comply with law, enforce our terms, and support authorized customer instructions. Users should not upload sensitive personal data unless their organization has a lawful basis and appropriate authorization. File and media handling may include virus scanning, thumbnails, transcoding, metadata extraction, access control checks, backup, retention, and deletion workflows.

5. AI Features and Automation

TASKIT includes AI assistants and automation workflows. AI features may process prompts, workspace context, files, task data, contracts, finance records, and integration data to generate summaries, recommendations, drafts, classifications, and workflow actions. AI outputs may be inaccurate or incomplete and should be reviewed before business, financial, legal, employment, or client-facing use. TASKIT may log AI requests, model responses, tool calls, safety evaluations, approvals, and execution traces for security, debugging, compliance, and auditability.

6. How We Use Personal Data

We use personal data to create and administer accounts, authenticate users, provide collaboration features, process files, operate AI assistants, manage subscriptions, provide customer support, send service notifications, maintain audit logs, detect fraud and abuse, enforce acceptable use restrictions, improve reliability, measure feature performance, comply with legal obligations, and protect TASKIT, customers, users, and the public.

7. Legal Bases for Processing

Where GDPR or similar laws apply, our legal bases may include performance of a contract, legitimate interests in operating and securing the Services, compliance with legal obligations, consent where required, and customer instructions for processor activities. Users may withdraw consent where processing depends on consent, but withdrawal does not affect prior lawful processing.

8. Analytics, Logs, and Security Monitoring

TASKIT may collect product analytics, performance metrics, realtime collaboration telemetry, error logs, authentication events, IP addresses, user agents, request identifiers, audit logs, and anti-abuse signals. These records help maintain security, investigate incidents, improve reliability, support enterprise audit needs, and satisfy legal and contractual obligations.

9. Integrations and Third Parties

Customers may connect third-party services such as cloud storage, social platforms, payment or finance tools, communication platforms, identity providers, analytics systems, and automation services. When users authorize integrations, TASKIT processes data received from those providers according to customer configuration, provider permissions, and applicable law. Third-party services are governed by their own terms and privacy notices.

10. Payments, Finance, and Contract Data

TASKIT finance, accounting, invoice, payroll, treasury, contract, and approval modules are operational tools. TASKIT is not a bank, accounting firm, law firm, tax advisor, payroll provider, or regulated financial advisor. Customers remain responsible for validating financial records, tax treatment, legal contracts, approval workflows, and regulatory compliance before relying on outputs.

11. Cookies and Similar Technologies

We use necessary cookies and similar technologies for authentication, security, session continuity, preferences, and fraud prevention. We may use analytics or preference technologies where permitted by law and user settings. See the Cookie Policy for more detail.

12. Sharing and Disclosure

We may share data with subprocessors and service providers, customer administrators, integration providers authorized by users, legal and compliance recipients when required, successor entities in corporate transactions, and parties needed to protect rights, safety, security, or service integrity. We do not sell workspace content.

13. International Transfers

TASKIT and its service providers may process data in countries other than the user’s location. Where required, TASKIT uses appropriate transfer mechanisms such as standard contractual clauses, data processing terms, technical safeguards, and risk-based transfer assessments.

14. Retention

We retain personal data for as long as needed to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and preserve audit evidence. Workspace retention may be configured by customers. Legal consent records, security logs, billing records, and audit logs may be retained longer where required for compliance and legal defense.

15. Security

TASKIT uses administrative, technical, and organizational safeguards designed to protect data, including access controls, encryption in transit, role-based permissions, audit logging, security monitoring, and incident response processes. No service can guarantee absolute security.

16. Your Privacy Rights

Depending on location, users may request access, correction, deletion, portability, objection, restriction, withdrawal of consent, or opt-out of certain processing. Workspace users should first contact their organization administrator for workspace content requests. TASKIT will assist customers in responding to valid requests as required.

17. CCPA/CPRA Notice

California residents may have rights to know, access, correct, delete, limit use of sensitive personal information, and opt out of sale or sharing. TASKIT does not sell personal information as commonly understood. TASKIT may disclose identifiers, internet activity, commercial information, professional information, and inferences to service providers for business purposes.

18. GDPR and EEA/UK/Swiss Rights

Individuals in the EEA, UK, and Switzerland may have rights under applicable data protection law. TASKIT will process processor data under customer instructions and will maintain reasonable assistance, confidentiality, security, subprocessors, transfer, and deletion commitments through a Data Processing Addendum where applicable.

19. Children

TASKIT is intended for business use and is not directed to children. Users must not create accounts for children or upload children’s data unless authorized by law and by their organization.

20. Changes

We may update this Policy from time to time. Material changes may trigger in-product notice, email notice, or re-acceptance where appropriate. Historical consent records are preserved.

21. Contact and Deletion Requests

Account deletion requests may remove or anonymize account data, subject to customer instructions, legal retention, audit requirements, security needs, and backup deletion cycles. Customers are responsible for exporting workspace data before deletion where needed.