Last modified November 23, 2022 with an effective date of November 23, 2022


This privacy policy ("Policy") informs you of practices when handling your Information through the Services (both as defined below). In this Policy, "Doist", "we" or "us" refers to Doist Inc., a company registered in Delaware with its registered address located at 251 Little Falls Drive, Wilmington, DE 19808. We are the data controller under the applicable privacy laws.

For the purpose of this Policy, "Information"means any information relating to an identified or identifiable individual. This includes Information you provide or generated when you use: (a) our apps, including Todoist and Twist (each an "App"and collectively the "Apps"); and (b) doist.com and any other dedicated Doist websites, such as todoist.com and twist.com which link to this policy ("Website"and together with the "Apps"the "Services"). When you use the Services, you accept and understand we collect, process, use and store your Information as described in this Policy. If you do not agree with this Policy, you must not use any of the Services. If you change your mind in the future, you must stop using the Services and you may exercise your rights in relation to your Information as set out in this Policy.

1. Information we collect

We will collect and use the following Information about you:

Children

Our Services are not targeted at children, and we do not knowingly collect Information from children under the age of 13. If you learn that a child has provided us with Information in violation of this Policy, please contact us as indicated below.

2. How we use your personal information

We use your Information to: Provide you with the Services. We will use your Information to perform our contractual obligation towards you to allow you to create an account and use the Services. The Information we process when doing so includes your registration information, information you provide to us when using the Services, identifiers, information you generate when using the Services, and information regarding your use of the Services such as transaction information. We also use your Information when you activate certain features of the Services, such as your Geolocation information when you use the location reminder feature. If you are a user of Todoist Pro, Todoist Business and Twist Unlimited, we will use your Payment Information for payment processing purposes as well as sales tax collection and reporting as required by law.

3. How we use cookies and similar technologies

Cookies are small files of letters and numbers that we store on your browser or the hard drive of your computer. They contain information that is transferred to your computer‘s hard drive.

Our Services uses Cookies to collect information about your browsing activities and to distinguish you from other users of our Services. This aids your experience when you use our Services and also allows us to improve the functionality of our Services.

We use the following cookies:

You can block cookies by setting your internet browser to block some or all cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to use our Services.

Except for essential cookies, all cookies will expire after maximum 2 years.

We share your Information with selected third parties, including:

Although we have in place security measures to maintain the privacy and integrity of your Information, the transmission of Information via the internet is not completely secure. We may also take extra steps to protect your Information and minimise the Information we process. For example, when we store your Information, we use AES 256 encryption, and when we send or receive your Information, it is encrypted with TLS 1.1 or above. Additionally, we are not responsible for how third party integration services may collect, use or share the Information you send from the Apps. Please review the privacy policy of such third party integration partners before connecting those services to the Apps.

5. Where we store your information

Your Information will be processed by our employees and service providers in the U.S. We take steps to ensure all transfers are protected by adequate safeguards, including the standard contractual clauses approved by the European Commission.

6. How long we store your information

Your Information is kept for as long as necessary to achieve the purposes set out above. Generally, it is stored for as long as you are registered and using our Services, and then for up to 6 years from the date you stop using the Services, or promptly following a valid erasure request (see below Your Rights: Erasure section). Some information we collect will be stored for longer where we have an overriding legitimate interest to retain such information (for example, information on suspicious behaviour of certain users of our Services and transaction records).

When deleting Information, we will take measures to make the Information irrecoverable or irreproducible, and electronic files which contain Information will be deleted permanently.

7. Your rights

If you are based in the EEA, you have certain rights in relation to your Information. You will find more information below on when which rights can apply. To exercise your rights, please contact us at https://todoist.com/contact.

Please note that payment information and integrations are not available via our API. In the case you want to obtain this information, please contact customer service at https://todoist.com/contact or https://twist.com/contact, (depending on which Doist Service product you are using). The right to access is not absolute. For example, we cannot reveal trade secrets, or give you Information about other individuals.

Other rights

You also have the following rights:

We welcome questions, comments and requests regarding this Policy. For additional details and frequently asked questions about our policies, please read our Security, Privacy and GDPR FAQs.

If you wish to make a complaint about how we process your Information, please contact us at https://todoist.com/contact and we will endeavour to deal with your complaint as soon as possible. This is without prejudice to your right to launch a claim with a data protection authority. You can also send an email to us at [email protected]. Alternatively, if you are based in Europe, you can send an email to our EU representative, DataRep at [email protected] or by filling out this form.

9. Changes

If we make any material changes to this Policy, we will post the updated Policy here and notify our users through the Services and/or newsletters. Please check this page frequently to see any updates or changes to this Policy.