Easy Do Ltd - Privacy Policy

Last Updated: April 17, 2026

1. WHO WE ARE

This Privacy Policy applies to Easy Do Ltd, registered in the United Kingdom at Seeds Hub, Empire Way, Wembley HA9 0RJ. All legal matters, claims, and disputes are governed exclusively by the laws of England and Wales, and subject to the jurisdiction of UK courts, regardless of the user's location. For privacy-related inquiries or data requests, contact sam.jegede@outlook.com.

2. TYPES OF DATA COLLECTED

We collect: Contact Data (email, username, hashed password, profile image); Technical Data (IP, browser, device); Usage Data (logs, AI interaction); Community Data (chat, streaming); Payment Data (via Stripe/PayPal); Sensitive Data (optional goals, behavioural info); App Permissions (if granted).

3. PURPOSE & LEGAL BASIS

We process data to operate services, verify/authenticate users, improve experience, enable community tools, process payments, and prepare future offerings. Legal bases include contract performance, legitimate interest, consent, and compliance with applicable law.

4. AI & PROFILING

AI is used for behavioural tracking, scheduling, and goal coaching. Profiling is for feedback only and not for decisions with legal or significant effects.

5. SENSITIVE DATA

Submission is voluntary and can be deleted at any time by the user.

6. COMMUNITY PARTICIPATION

Any content shared in community features may be visible to others. We are not liable for user misunderstandings, reliance, or consequences arising from such content.

7. APP PERMISSIONS

Device-level permissions are strictly opt-in and revocable by the user.

7a. GOOGLE SERVICES INTEGRATION (GOOGLE CALENDAR, GMAIL, OAUTH)

Easy Do offers an optional integration with Google services (specifically Google Calendar, and in limited flows Gmail) to let users sync scheduled tasks, reminders, and calendar events. Access is granted via Google OAuth 2.0 with the narrowest scopes required for the feature the user enables. Typical OAuth scopes requested include: https://www.googleapis.com/auth/calendar.events (create, read, and update calendar events the user schedules through Easy Do) and, where the user opts in to email-based reminders, https://www.googleapis.com/auth/gmail.send (send reminder emails on the user's behalf). We do not request broader scopes than necessary, and each scope is disclosed on the Google consent screen before the user grants access.

Specific data accessed via Google: when the Calendar scope is granted, we access and store only the minimum Calendar event data needed to sync the user's Easy Do tasks — event title, start/end time, description, event ID, and the user's primary calendar ID. When the Gmail send scope is granted, we do not read, list, store, or index any inbox messages or contacts; we use the API solely to send outbound reminder emails composed by the user or by Easy Do on the user's behalf. We do not access Google Drive, Google Contacts, Google Photos, or any other Google product beyond the scopes listed above.

Google API Services User Data Policy – Limited Use compliance: Easy Do's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically, data obtained from Google APIs is used only to provide and improve the user-facing Calendar / reminder features within Easy Do. We do not transfer this data to third parties except as necessary to provide or improve those user-facing features, to comply with applicable law, or as part of a merger, acquisition, or sale of assets with notice to users. We do not use Google user data for serving advertisements, including retargeted or personalised advertising. We do not allow humans to read Google user data, except (a) with the user's affirmative prior consent for specific messages, (b) where necessary for security purposes such as investigating abuse, (c) to comply with applicable law, or (d) where the data is aggregated and used for internal operations in accordance with the Limited Use requirements. We do not use Google user data to train, fine-tune, or develop generalised or non-personalised AI/ML models.

Storage, retention, and revocation: Google OAuth tokens are stored encrypted at rest and are used only server-side to call Google APIs on the user's behalf. The user can revoke Easy Do's access at any time from their Google Account at myaccount.google.com/permissions, or by disconnecting the integration from within Easy Do's settings; upon revocation we delete the stored tokens and any cached Google Calendar / Gmail data associated with that user within 30 days, subject to any legal retention obligations.

8. COOKIES & TRACKING

Essential cookies are always used. Optional cookies require consent where legally required. By continuing to use the service after notice, you consent to changes.

9. AGE RESTRICTIONS

The service is only for users aged 18+. We do not knowingly collect data from minors.

10. DATA SHARING

We share data only with vetted processors under contract. We are not liable for independent actions of third-party services outside our control.

11. INTERNATIONAL TRANSFERS

Data may be processed in countries outside your own. We apply recognised safeguards but accept no liability for foreign government access.

12. USER RIGHTS

Depending on your region, you may have rights to access, correct, delete, restrict, or object to processing.

13. DATA RETENTION

We keep data only as long as needed. Deletion requests will be honoured within legal limits.

14. SECURITY

We use encryption, restricted access, and regular audits. No system is 100% secure. We disclaim liability for breaches beyond our reasonable control.

15. OPTIONAL DATA STORAGE

You can opt in for enhanced personalisation. Non-consenting users' optional data is deleted after session end.

16. UPDATE POLICY

We can change this Privacy Policy at any time. All changes are binding upon continued use after notice. We do not require explicit consent unless mandated by law.

17. GOVERNMENT & LEGAL REQUESTS

We will comply with lawful orders but are not liable for any consequences of such disclosures.

18. THIRD-PARTY CONTENT

We are not responsible for accuracy, legality, or safety of content from other users or linked third parties.

19. USER RESPONSIBILITY

You are solely responsible for your actions, security of your account, and ensuring compliance with your local laws.

20. SERVICE AVAILABILITY

We do not guarantee uninterrupted service. We are not liable for downtime, data loss, or feature removal.

21. LIMITATION OF LIABILITY

To the maximum extent permitted by law, Easy Do Ltd is not liable for indirect, incidental, or consequential damages, or for claims arising from misunderstandings of content, AI output, or platform features.

22. CONTACT

Contact sam.jegede@outlook.com with subject "Privacy Request – Easy Do" for all privacy matters.