BurnrBurnr

Privacy Policy

Last updated: March 3, 2026

1. Introduction

Burnr ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and share your information when you use our time tracking and budget management platform ("the Service").

2. Information We Collect

We collect the following types of information:

Account information

Name, email address, profile picture, job title, and company details you provide during registration and onboarding.

Usage data

Time entries, project data, client information, budget allocations, and other content you create within the Service.

Calendar data

If you connect a Google Calendar, we access calendar events to auto-generate time entries. We only read event titles, times, and durations. We do not access event descriptions, attendees, or other calendar metadata.

Payment information

Billing is handled by Stripe. We do not store your credit card details. Stripe's privacy policy governs payment data processing.

Technical data

Browser type, IP address, and device information collected automatically when you access the Service.

3. How We Use Your Information

  • To provide and maintain the Service
  • To authenticate you and manage your account
  • To process time entries and generate reports
  • To send transactional emails (invitations, alerts, weekly digests)
  • To process payments via Stripe
  • To improve the Service and fix issues
  • To comply with legal obligations

4. Data Sharing

We do not sell your personal data. We share information only with:

  • Workspace members — team members within your workspace can see shared project data, time entries, and reports as permitted by their role
  • Service providers — we use Supabase (database & authentication), Stripe (payments), Resend (transactional email), and Google APIs (calendar sync) to operate the Service
  • Legal requirements — we may disclose data if required by law or to protect our rights

5. Data Storage & Security

Your data is stored securely on Supabase infrastructure with row-level security policies. We use HTTPS for all data transmission, enforce secure authentication via Supabase Auth, and apply role-based access controls within the application. We regularly review our security practices.

6. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will delete your personal data within 30 days, except where we are required to retain it for legal or compliance purposes.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Export your data in a portable format
  • Object to or restrict certain data processing
  • Withdraw consent where processing is based on consent

To exercise these rights, contact us at hello@tryburnr.com.

8. Cookies

We use essential cookies for authentication and session management. These are strictly necessary for the Service to function and cannot be disabled. We do not use tracking or advertising cookies.

9. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties.

10. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal data from children.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email or an in-app notice. Continued use of the Service after changes constitutes acceptance of the updated policy.

12. Contact

If you have questions about this Privacy Policy, please contact us at hello@tryburnr.com.

TermsPrivacy