Data Protection Policy - WordFokus

Data Protection Policy

Last Updated: April 3, 2025

Introduction

At WordFokus, we are committed to protecting the personal data of our users. This Data Protection Policy explains how we collect, process, and safeguard your data in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

Data Controller

For the purposes of applicable data protection laws, WordFokus is the data controller for personal information collected through our Google Docs add-on.

What Personal Data We Process

We collect and process the minimum amount of personal data necessary to provide our services:

  • User Preferences: Settings such as your preferred focus mode, word count targets, font preferences, and other customization options.
  • Writing Statistics: Data about your writing sessions including word counts, writing duration, and writing patterns. This information is used solely to provide you with analytics about your own writing habits.
  • Payment Information: For premium subscribers, we process payment details through secure third-party payment processors.

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Performance of a Contract: Processing necessary for the performance of our agreement with you to provide the WordFokus service.
  • Legitimate Interests: Processing necessary for our legitimate interests, such as to improve and optimize our service, provided these interests are not overridden by your rights.
  • Consent: Where applicable, we process data based on your explicit consent.
  • Legal Obligation: Processing necessary to comply with our legal obligations.

How We Use Your Data

We use your personal data only for specific, explicit purposes:

  • To provide and maintain our service
  • To personalize your experience
  • To process payments for premium features
  • To improve our service based on usage patterns
  • To communicate with you regarding service updates or inquiries

Data Security Measures

We implement appropriate technical and organizational measures to protect your personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage:

  • Secure Storage: User data is stored within the secure Google Workspace environment
  • Limited Access: Only authorized personnel have access to systems where data is processed
  • Encryption: Data is encrypted during transmission
  • Regular Assessments: We conduct regular assessments of our data protection measures

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

  • User Preferences and Writing Statistics: Retained until you uninstall the add-on or delete the data through our settings
  • Payment Information: Retained as required by applicable tax and accounting laws

International Data Transfers

As a Google Docs add-on, data is stored within Google's infrastructure and may be transferred to various Google data centers around the world. Google maintains compliance with international data transfer requirements.

Your Data Protection Rights

Depending on your location, you have the following rights:

For Users in the European Economic Area (EEA), UK, and Similar Jurisdictions:

  • Right to Access: You have the right to request copies of your personal data.
  • Right to Rectification: You have the right to request that we correct inaccurate information.
  • Right to Erasure: You have the right to request that we delete your data under certain circumstances.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your data.
  • Right to Data Portability: You have the right to request that we transfer your data to another organization or directly to you.
  • Right to Object: You have the right to object to our processing of your personal data.
  • Rights Related to Automated Decision Making: You have rights related to automated decision making and profiling.

For California Residents:

  • Right to Know: You have the right to request information about the personal information we collect and how it is used.
  • Right to Delete: You have the right to request deletion of your personal information.
  • Right to Opt-Out: You have the right to opt-out of the sale of your personal information.
  • Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within the timeframe required by applicable law.

Data Breach Notification

In the event of a data breach that affects your personal data, we will notify you and the relevant supervisory authority in accordance with applicable law.

Children's Data

Our services are not directed to children under 13 years of age. We do not knowingly collect personal data from children under 13. If we become aware that we have collected personal data from a child under 13, we will take steps to delete such information.

Changes to This Policy

We may update this Data Protection Policy from time to time. We will notify you of any changes by posting the new policy on our website and updating the "Last Updated" date. You are advised to review this policy periodically for any changes.

Data Protection Officer

While we do not formally appoint a Data Protection Officer, privacy inquiries can be directed to:

Complaints

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with your local data protection authority.