Privacy Policy

Last Updated: March 1, 2026

Clockbird ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our time tracking application, website, and related services (collectively, the "Service").

Clockbird is operated from the Republic of Albania. Our data protection practices comply with Albanian Law No. 9887, dated 10.03.2008, "On the Protection of Personal Data" (as amended), and are aligned with the EU General Data Protection Regulation (GDPR) to ensure a high standard of privacy protection for all users, regardless of location.

1. Data Controller

The data controller responsible for your personal data is:

Entity: Clockbird
Country: Republic of Albania
Email: clockbirdtimetracking@gmail.com
Website: https://clockbird.org

2. Information We Collect

2.1 Personal Information You Provide

We collect information that you voluntarily provide to us, including:

Account Information: Email address, first name, last name
Profile Information: Any additional information you add to your profile
Communication Data: Information in messages you send to us or through the Service

2.2 Information Collected Automatically

When you use our Service, we automatically collect certain information:

Time Tracking Data: Start times, end times, duration of tracked sessions, project associations, and task descriptions
Screenshots: Periodic screenshots captured during active tracking sessions (when enabled)
Device Information: Device type, operating system, browser type, and version
Usage Data: Pages visited, features used, and actions taken within the Service
Log Data: IP address, access times, and referring URLs
Cookies and Similar Technologies: Session cookies for authentication and preferences

2.3 Information from Third Parties

We may receive information about you from other users (such as when a project owner invites you to a project) or from third-party services you connect to your account.

3. How We Use Your Information

We use the information we collect to:

Provide the Service: Operate, maintain, and improve the time tracking platform
Authentication: Verify your identity and secure your account using email-based OTP
Communication: Send you service-related notifications, updates, and support messages
Analytics: Generate reports and analytics on your time usage and productivity
Payment Processing: Facilitate billing and payment for tracked time
Security: Detect, prevent, and address technical issues, fraud, and security breaches
Legal Compliance: Comply with legal obligations and enforce our Terms of Service
Improvement: Analyze usage patterns to improve and develop new features

4. Screenshot Data

4.1 Purpose of Screenshots

Screenshots are captured to provide transparency and verification of work performed during tracked time periods. They help establish trust between team members and project owners.

4.2 Screenshot Capture Frequency

When screenshot capture is enabled, screenshots are taken at configurable intervals during active tracking sessions. You will be notified when screenshot capture is active.

4.3 Screenshot Access

Screenshots are accessible to:

You (the user who captured them)
Project owners and administrators for projects where the time was tracked
Authorized personnel for support and compliance purposes

4.4 Screenshot Retention

Screenshots are retained for the duration of your account plus a reasonable period for backup and compliance purposes. You may request deletion of your screenshots subject to legal and contractual obligations.

5. Legal Basis for Processing

In accordance with Albanian Law No. 9887 "On the Protection of Personal Data" and the principles of the GDPR, our legal basis for collecting and using your information depends on the type of data and processing context:

Legal Basis	Examples
Contract Performance (Art. 6 of Law No. 9887)	Processing necessary to provide the Service you requested
Consent (Art. 6 of Law No. 9887)	Screenshot capture, marketing communications
Legitimate Interests	Security, fraud prevention, service improvement
Legal Obligation	Compliance with applicable Albanian and international laws and regulations

For users located in the European Economic Area (EEA), we also comply with GDPR requirements where applicable.

6. Information Sharing and Disclosure

We may share your information in the following circumstances:

6.1 With Your Consent

We may share your information when you give us explicit consent to do so.

6.2 Within Your Organization

Project owners and team administrators can access time tracking data and screenshots for projects you work on.

6.3 Service Providers

We may share information with third-party vendors who perform services on our behalf, such as:

Cloud hosting providers
Email service providers
Analytics providers
Payment processors

These providers are contractually obligated to protect your information and use it only for the purposes we specify, in accordance with Albanian data protection law and GDPR standards where applicable.

6.4 Legal Requirements

We may disclose your information if required by Albanian law, court order, or governmental authority, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.

6.5 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to the same privacy protections described in this policy.

7. Data Security

We implement appropriate technical and organizational measures to protect your information, as required by Article 27 of Albanian Law No. 9887 and aligned with GDPR standards, including:

Encryption of data in transit (HTTPS/TLS)
Encryption of sensitive data at rest
Regular security assessments and updates
Access controls and authentication measures

However, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your information.

8. Data Retention

We retain your information for as long as necessary to:

Provide the Service and maintain your account
Comply with legal obligations under Albanian law
Resolve disputes and enforce agreements
Maintain business records as required by applicable law

When you delete your account, we will delete or anonymize your personal information within 90 days, except where retention is required by Albanian law or other applicable legal obligations.

9. Your Rights

Under Albanian Law No. 9887 "On the Protection of Personal Data" (and GDPR for EEA residents), you have the following rights regarding your personal information:

Right of Access: Request a copy of your personal information we hold
Right to Rectification: Request correction of inaccurate or incomplete information
Right to Erasure: Request deletion of your personal information
Right to Restriction: Request restriction of processing in certain circumstances
Right to Data Portability: Request transfer of your data in a structured, commonly used format
Right to Object: Object to processing based on legitimate interests
Right to Withdraw Consent: Withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal

To exercise these rights, please contact us at clockbirdtimetracking@gmail.com. We will respond within 30 days as required by law.

10. Cookies and Tracking Technologies

10.1 Types of Cookies We Use

Essential Cookies: Required for authentication and basic functionality
Preference Cookies: Remember your settings and preferences
Analytics Cookies: Help us understand how you use the Service

10.2 Managing Cookies

You can control cookies through your browser settings. Note that disabling essential cookies may affect the functionality of the Service.

11. International Data Transfers

Your information may be transferred to and processed in countries other than Albania. When we transfer personal data outside of Albania, we ensure appropriate safeguards are in place, including:

Contractual clauses ensuring equivalent data protection standards
Adequacy decisions by the Albanian Commissioner for Data Protection or relevant authorities
Standard Contractual Clauses recognized under GDPR for transfers involving EEA residents
Other legally recognized transfer mechanisms under Albanian law

12. Children's Privacy

The Service is not intended for users under the age of 16. We do not knowingly collect personal information from children under 16. If we learn that we have collected information from a child under 16, we will delete that information promptly.

13. Third-Party Links

The Service may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the new Privacy Policy on this page
Updating the "Last Updated" date
Sending you an email notification (for significant changes)

Your continued use of the Service after any changes indicates your acceptance of the updated Privacy Policy.

15. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

Email: clockbirdtimetracking@gmail.com
Website: https://clockbird.org

16. Supervisory Authority

If you believe your data protection rights have been violated, you have the right to lodge a complaint with:

Albanian Commissioner for the Right to Information and Protection of Personal Data (IDP)
Website: https://www.idp.al
Address: Rruga "Abdi Toptani", Nr. 5, Tirana, Albania

If you are located in the EEA, you may also lodge a complaint with your local EU data protection supervisory authority.

17. Applicable Law

This Privacy Policy is governed by the laws of the Republic of Albania, in particular Law No. 9887, dated 10.03.2008, "On the Protection of Personal Data" (as amended). Our practices are also aligned with the EU General Data Protection Regulation (GDPR) to ensure adequate protection for all users.

← Back to Home Terms of Service →