This policy describes how the Just Todo It mobile application (“the App”) handles information when you use it. The App is a client for Google Tasks: your task lists and tasks remain stored and controlled by Google unless described below.
Who is responsible
The developer of the App (as shown on the Google Play listing) is responsible for the App’s behavior on your device. Google processes account and Tasks data under Google’s Privacy Policy. If the App is configured to use Supabase, Supabase processes authentication data under Supabase’s Privacy Policy (see also the Supabase section below).
Information the App accesses
- Google account sign-in. The App uses Google’s sign-in on your device. Google may receive technical data related to authentication as described in Google’s Privacy Policy.
-
Google Tasks. With your permission, the App requests
OAuth access to the Google Tasks API
(
https://www.googleapis.com/auth/tasks) so it can read, create, update, and delete tasks and lists in your Google account. That data is processed by Google’s servers; the App does not replace Google as the primary store for your tasks. - Profile basics from Google. The App may display your name and email (or equivalent account label) returned by Google Sign-In so you can see which account is active.
Optional Supabase authentication
Depending on app configuration, after you sign in
with Google the App may exchange your Google ID token
with Supabase Auth
(signInWithIdToken) to create a session. If Supabase is not
configured or the exchange fails, the App can still operate in a
“direct” mode using only the Google account session on the device.
When Supabase is used, Supabase processes authentication data under Supabase’s Privacy Policy. The App uses Supabase’s public (anon) project key in the client; it does not embed a secret database password in the distributed app.
Data stored on your device
To work quickly and support offline-style use, the App may cache task data and pending changes on your device (for example using local storage and/or a local database). That data is tied to your device and the accounts you use; uninstalling the App or clearing app data removes that local copy (it does not delete your tasks in Google Tasks).
Background activity
The App may register background work (for example periodic sync) so tasks can stay up to date. Background runs use the same Google account and permissions you already granted; they do not introduce a separate account system beyond what is described above.
What we do not do
- The App is not designed to sell your personal information or to show third-party advertising based on a separate ad profile operated by the developer.
- The App does not require you to create a custom “Just Todo It” server account; sign-in is through Google (and optionally Supabase Auth as a session layer).
Children
The App is not directed at children under 13 (or the minimum age required in your region). Do not use the App for child-directed accounts if that would violate Google’s or your local rules.
International users
Google and Supabase (if used) may process data in countries where they operate. See their policies for details on transfers and legal bases.
Changes to this policy
The developer may update this page when the App or practices change. The “Last updated” date at the top will be revised when material changes are made.
Your choices
- Revoke the App’s access in your Google Account settings.
- Sign out inside the App where offered; clear app data or uninstall to remove local caches.
Deleting your data (Just Todo It)
Just Todo It does not create a separate “Just Todo It” login. You sign in with Google; your tasks live in Google Tasks under your Google account.
To stop this app from accessing your Google account
- Open Google Account → Third-party access and remove Just Todo It (or the app name shown for this OAuth client).
- In the App, use Sign out if available, then Clear storage / Clear data for the app in Android settings, or uninstall the App. That removes local caches and queued changes on the device.
What is deleted vs kept
- Removed from the device when you clear app data or uninstall: locally cached tasks, settings, and pending sync queues stored only on the device.
- Not deleted by this App: your task lists and tasks in Google Tasks. Delete or edit those in Google Tasks (e.g. tasks.google.com or another Google Tasks client) if you want them gone from Google.
- If your build uses Supabase Auth, authentication metadata is processed by Supabase per their policies; sign out and revoke Google access as above, and contact the developer via Play if you need help with Supabase-side deletion.
There is no extra retention period for local device data beyond what Android keeps after uninstall (if any). Google and Supabase retention follow their own policies.
Contact
For privacy questions about Just Todo It, use the contact details on the Google Play listing.