Privacy Policy

Last updated: December 2025

1. Data Controller

Tone ("we", "us", "our") is provided by Andrii Kobtsev ("the Data Controller"), operating as AK Software (Gewerbe registration pending, Hamburg, Germany).

Contact Information:

Name: Andrii Kobtsev
Business Name: AK Software
Address: Alsterkrugchaussee 560, 22335, Hamburg, Germany
Gewerbe Registration: Registration pending
Email: privacy@checktone.app

2. Information We Collect

Tone collects the following information:

Slack User Data: User ID, display name, timezone, team ID
Preferences: Tone analysis settings, auto-analysis preferences, strictness level
Message Analysis Data: Tone analysis results, improvement statistics (aggregated data only, NOT message content)
Usage Data: Number of tone checks, subscription tier, quota usage

2.1 Legal Basis for Processing (GDPR)

We process your personal data based on:

Your consent (when you install and use Tone)
Contractual necessity (to provide the service you've subscribed to)
Legitimate interests (improving our service, preventing abuse)

You can withdraw consent at any time by uninstalling Tone or contacting support@checktone.app.

3. How We Use Your Information

We use your information to:

Analyze message tone and provide improvement suggestions
Track your communication improvement statistics
Manage subscriptions and usage quotas
Improve our service

4. Data Storage and Security

Your data is stored on Supabase (PostgreSQL database) hosted in the European Union
We use industry-standard encryption (TLS/SSL) for data in transit
Data at rest is encrypted using AES-256 encryption
Access to data is restricted to authorized personnel only
Regular security audits and updates are performed
Data retention: Statistics retained while you use the service; deleted upon request within 30 days

Important: We do NOT store your actual message content. We only store aggregated statistics (e.g., "user had 5 tone issues this week").

5. Data Sharing

We do not sell or share your personal data with third parties. Team statistics only show aggregated, anonymized metrics.

6. Message Content

We do NOT store your message content. Messages are analyzed in real-time and only aggregated statistics are stored. Your actual messages are never saved to our database.

7. Google Calendar Integration

If you connect Google Calendar:

We have read-only access to your calendar events
We use this to provide context-aware tone analysis (e.g., understanding if you're in a meeting or have a busy schedule)
We do not modify, create, or delete calendar events
You can disconnect at any time by running /tone-configure

8. Cookies and Tracking

Our website (checktone.app) uses cookies and similar tracking technologies to analyze site usage and measure advertising performance.

What cookies do we use?

Google Analytics: We use Google Analytics to understand how visitors use our website. This helps us improve the site and measure the effectiveness of our marketing efforts.
Google Ads: We use Google Ads conversion tracking to measure the effectiveness of our advertising campaigns and understand which ads lead to app installations.

What data is collected?

Page views and navigation patterns
Time spent on pages
Button clicks (e.g., "Add to Slack" button)
Traffic sources (where visitors came from)
Device and browser information
IP addresses (anonymized by Google Analytics)

Your choices:

When you first visit our website, you'll see a cookie banner asking for your consent
You can choose to "Accept All" or "Reject All" cookies
Your choice is saved in your browser's local storage
If you reject cookies, no tracking scripts will be loaded
You can change your mind at any time by clearing your browser's local storage and revisiting the site

Opting out:

To opt out of Google Analytics tracking, you can install the Google Analytics Opt-out Browser Add-on
To opt out of Google Ads personalized advertising, visit Google Ads Settings
You can also reject cookies when you first visit our site using the cookie banner

Third-party privacy policies:

Google Analytics: https://policies.google.com/privacy
Google Ads: https://policies.google.com/privacy

Note: Cookies are only used on our website (checktone.app). The Tone app for Slack itself does not use cookies. All data collection within the app for Slack is covered in other sections of this privacy policy.

9. Your Rights Under GDPR

You have the following rights under the General Data Protection Regulation:

Right to access: Request a copy of your personal data
Right to rectification: Correct inaccurate data
Right to erasure ("right to be forgotten"): Request deletion of your data
Right to restrict processing: Limit how we use your data
Right to data portability: Receive your data in a machine-readable format
Right to object: Object to processing based on legitimate interests
Right to withdraw consent: At any time, without affecting prior processing
Right to lodge a complaint: With the Hamburgische Beauftragte für Datenschutz und Informationsfreiheit or your national data protection authority

To exercise these rights, contact privacy@checktone.app. We will respond within 30 days as required by GDPR.

10. Data Retention

We retain your aggregated statistics while you use Tone. You can request deletion at any time by contacting support.

11. Third-Party Services and AI Providers

We use the following third-party services that process your data:

Slack: For app functionality and user authentication

AI Providers for Tone Analysis:

Messages are sent to ONE of the following providers (based on your configuration) for real-time analysis:

Anthropic Claude API: Messages processed transiently and NOT stored or used for training. Backend logs automatically deleted within 7-30 days. Zero data retention available for enterprise customers.
- Privacy: https://www.anthropic.com/privacy
Google Gemini API: Messages retained for up to 55 days solely for abuse monitoring. NOT used for model training. Processed in accordance with Google Cloud data processing terms.
- Privacy: https://ai.google.dev/gemini-api/terms

Important: We do NOT store your messages. AI providers process messages only for generating tone analysis and may retain them temporarily (7-55 days) for abuse prevention as outlined above.

Stripe: For payment processing (if you subscribe)

Supabase (PostgreSQL): For data storage (EU-hosted)

These services have their own privacy policies. We recommend reviewing them.

12. Contact

For privacy questions, contact: privacy@checktone.app

13. Changes to This Policy

We may update this policy. Changes will be posted here with an updated date.

14. International Data Transfers

Your data is stored exclusively in the European Union (Supabase EU region). When messages are sent to AI providers for analysis:

Anthropic Claude: Processed with appropriate safeguards under Standard Contractual Clauses (SCCs)
Google Gemini: Processed under Google Cloud's data processing terms with regional controls

We ensure adequate protection for any data transfers outside the EEA through Standard Contractual Clauses and your explicit consent.

15. Governing Law and Data Protection Authority

This Privacy Policy is governed by German law and the General Data Protection Regulation (GDPR). For data protection inquiries, contact our Data Protection Officer at privacy@checktone.app.

If you believe your data protection rights have been violated, you have the right to lodge a complaint with:

Hamburgische Beauftragte für Datenschutz und Informationsfreiheit (Hamburg Data Protection Authority)
Or your local EU data protection authority

16. Security Incidents

If we discover a security breach or unauthorized access to your data, we will:

Notify affected users within 72 hours as required by GDPR
Report the incident to Slack at feedback@slack.com immediately, as required by Slack Marketplace security guidelines
Take immediate steps to contain and remediate the breach
Provide transparent communication about the incident and steps taken to prevent future incidents

For security concerns or to report a suspected security issue, contact: security@checktone.app

← Back to Home