Last updated: June 29, 2026
This Privacy Policy explains how Tempolio ("we", "us", "our") collects, uses, and protects your information when you use our time tracking, project management, and invoicing platform. We built Tempolio to make your work easier, not to harvest your data — this document is here to show you exactly what we do and don't do with it.
To provide the service, we collect:
We process your personal data under the following legal bases, as required by the General Data Protection Regulation (GDPR):
We use the information above strictly to:
We do not use your data for profiling, automated decision-making, or targeted advertising.
We rely on a small set of trusted infrastructure providers to run Tempolio. Each only receives the data it needs to perform its function:
We do not sell your data to third parties, and we do not use tracking for advertising purposes. These providers process your data solely to deliver the service to you.
We have verified that each of these providers maintains appropriate data protection practices. Where required under GDPR, we rely on their data processing agreements and Standard Contractual Clauses (see International Data Transfers below).
Tempolio is operated from Uruguay. Our infrastructure providers — Clerk, Supabase, Paddle, Resend, and Vercel — are based in the United States and may process your data in the United States or other countries outside your jurisdiction.
If you are located in the European Economic Area (EEA), the United Kingdom, or Switzerland, this means your personal data may be transferred to countries that do not provide the same level of data protection as your home country.
To protect your data during these transfers, we rely on the following safeguards:
Tempolio uses only essential cookies required for authentication and payment processing. We do not use advertising or analytics tracking cookies.
We retain your data for as long as your account remains active. If you delete your account, we keep your data for 30 additional days in case you change your mind, after which it is permanently and irrecoverably deleted.
We may retain certain limited data beyond this period only if required by law (for example, transaction records for tax compliance).
We take reasonable technical and organizational measures to protect your data, including encryption in transit (TLS/HTTPS), secure authentication through Clerk, and access controls that limit who can access production systems. No system is perfectly secure, but we are committed to maintaining protections appropriate to the sensitivity of the data we handle.
In the event of a data breach that poses a risk to your rights and freedoms, we will:
If the breach is unlikely to result in a risk to your rights and freedoms, we may not notify you individually, but we will still document the breach internally and notify the relevant authority if required.
You can access, export, or delete your data at any time directly from your account settings. If you need help with any of this, reach out and we will take care of it.
If you are located in the EEA, the United Kingdom, or Switzerland, you have the right to:
To exercise any of these rights, contact us at support@tempolio.com. We will respond to your request within 30 days.
If you are a California resident, you have the right to:
Note on payments. Paddle acts as the merchant of record for all subscription transactions on Tempolio. This means Paddle handles billing, taxes, and payment data directly, and maintains its own privacy policy governing how it processes that information.
Tempolio does not use your personal data for automated decision-making or profiling that produces legal effects or similarly significant effects on you. Features like the Pulse Score and revenue projections are calculated from data you enter and are provided as informational estimates only — they do not affect your access to the service or any rights under these terms.
Tempolio is not directed at, and should not be used by, anyone under the age of 16. We do not knowingly collect personal data from anyone under 16. If we become aware that we have collected data from a person under 16, we will delete it promptly.
If we make material changes to this Privacy Policy, we will notify you by email at least 30 days before the changes take effect. We will also update the "Last updated" date at the top of this page. Your continued use of Tempolio after the changes take effect constitutes acceptance of the updated policy.
If you have any questions about this Privacy Policy, how we handle your data, or if you wish to exercise any of your rights described above, contact us at:
Email: support@tempolio.com
For GDPR-related inquiries, you may also contact us at the same email address. As a small, independently operated service, we do not have a dedicated Data Protection Officer, but we take every privacy inquiry seriously and will respond within 30 days.