Privacy policy.
How Pinnix looks after your data. Written in plain English, and honest about the bits that matter.
Who we are
Who controls your data, and how Team plans fit in.
Pinnix is a daily planner run by Pinnix Ltd, the data controller for the personal data described here. Our details are at the end of this policy. This policy covers your personal Pinnix account. If your employer provides Pinnix through a Team plan, our separate Data Processing Agreement also applies to your work data, but your private board and anything you record about your health stay covered by this policy and are never shared with your employer (see section 4).
What we collect, and why
Only what we need to run Pinnix.
We collect only what we need to run the service:
- Your email address, so you can sign in and we can contact you about your account. Lawful basis: performance of our contract with you.
- Your name, if you choose to give it. Lawful basis: contract.
- The tasks, plans and brain dumps you create, because that is the product. Lawful basis: contract.
- Usage signals, such as when you open the app and what you complete, so Pinnix can learn your focus patterns and improve. Lawful basis: our legitimate interest in running and improving the service, and, where you have chosen the features that rely on it, your consent.
- Payment information, if you subscribe to a paid plan. Your card details are handled by our payment processor and are never seen or stored on our servers. Lawful basis: contract.
We do not collect anything we do not need, and we do not sell your data.
Lawful bases, in short
The legal grounds we rely on to process your data.
We rely on contract to run your account and deliver the service, legitimate interest to keep Pinnix secure and to improve it, consent for optional things such as marketing-site analytics cookies and any special-category data you choose to record, and legal obligation where the law requires us to keep certain records. You can withdraw consent at any time where consent is the basis.
Special-category data (neurodiversity and health)
Health data is optional, private to you, and consent-only.
4.1Pinnix lets you optionally record self-reported neurodiversity or health information, for example during onboarding, so the app can work better for you. Under UK GDPR this is special-category data and we treat it with particular care.
4.2We only ever record it with your explicit, separate consent, and only because you have chosen to give it. You do not have to.
4.3This information is private to you. It is held on your personal board and is never shown to an employer, a manager or anyone else, at any sharing setting, even on a Team plan. You can withdraw your consent and delete this data at any time.
Where your data is stored, and international transfers
EU-hosted, with the AI task-breakdown processed in the US.
6.1Your Pinnix account data is stored on servers in the EU (Germany), which the UK recognises as providing an adequate level of protection. It is encrypted in transit and our backups are encrypted at rest.
6.2One important exception. The AI task-breakdown described in section 5 is processed by a provider in the United States. That means the task text you send for breakdown leaves the UK and EU.
6.3That transfer is protected by an appropriate UK safeguard: the UK International Data Transfer Agreement (IDTA), or the UK Addendum to the EU Standard Contractual Clauses. We keep a record of the mechanism we rely on, and a transfer risk assessment where one is required.
6.4We do not transfer your data anywhere else outside the UK or EU without a valid safeguard in place first.
How long we keep it
While your account is active, then deleted within 30 days.
We keep your data for as long as your account is active. If you close your account, we delete your personal data within 30 days, which also gives you a window to export anything you want to keep first. Routine encrypted backups are overwritten on their normal cycle and are not restored except for disaster recovery. Where the law requires us to keep certain records (for example, limited billing records for tax purposes), we keep only those, for only as long as required.
Your rights
Access, port, correct, delete, restrict, object.
Under UK GDPR you can:
- Access a copy of the personal data we hold about you.
- Port your tasks and plans, by exporting them in a standard format at any time.
- Rectify anything that is wrong.
- Erase your data by closing your account.
- Restrict or object to certain processing, and withdraw consent where we rely on it.
To exercise any of these, email hello@pinnix.co.uk. We respond within one month, and usually much sooner. There is no charge for a reasonable request.
Children
Pinnix is for adults, 18 and over.
Pinnix is for adults. It is not intended for anyone under 18, and we do not knowingly collect data from children.
Security
How we protect your data.
We protect your data with measures appropriate to its sensitivity, including: EU data residency, TLS encryption in transit, GPG-encrypted backups on-host and off-site, per-user data isolation, bcrypt password hashing and enforced two-factor authentication for administrator accounts, an append-only admin audit trail, and error monitoring that strips out personal data before any report is sent. No system is perfectly secure, but we take this seriously and keep our measures under review.
How we notify changes
We email you before a material change.
If we make a material change to this policy, we will tell you by email and update the date and version at the top. Earlier versions are available on request.
Contact and complaints
How to reach us, and the ICO.
For any data request, complaint or question, email hello@pinnix.co.uk. If you are not happy with our response, you can complain to the UK Information Commissioner’s Office at ico.org.uk.
Pinnix Ltd, registered in England and Wales, company number 16150227. Registered office: c/o Kingswood, Sidings Court, Lakeside, Doncaster DN4 5NU.
