Privacy Policy

Last updated: 2026-05-24

Who we are

To Do Focused is a Chrome extension that replaces your new tab with a focus cockpit. This policy explains what data the extension and our website (todofocused.com) collect, why, and what you can do about it.

What we collect

  • Account info from Google Sign-In: your email, display name and profile picture URL. Used solely to authenticate and identify your data.
  • Your content: tasks, projects, Pomodoro history, preferences. Stored in your own row of our Supabase database, only readable by you (Row-Level Security).
  • Authentication tokens: short-lived session tokens stored locally in your browser.

What we do NOT collect

  • Browsing history. The blocker uses Chrome's declarativeNetRequest API which evaluates rules locally — we never see the URLs you visit.
  • Page content. The YouTube/Twitter content scripts run locally.
  • Analytics or behavioural tracking. The site uses no third-party analytics scripts.

How we use your data

Only to provide the extension's functionality. We do not sell, rent or share your data with third parties.

Where your data lives

Tasks and preferences live in Supabase (Postgres) under your user ID, protected by Row-Level Security. Authentication is handled by Supabase Auth + Google OAuth. Static assets are served from Vercel.

Your controls

  • Export: the My Account section in the extension exports a complete JSON of every table tied to your user.
  • Delete: the My Account section has a Delete account button. After confirming, your data enters a 7-day grace period (you can email us within the window to cancel) and is then permanently removed.
  • Disable site blocking: uninstall the extension or toggle categories off in the Blocking tab.

Contact

Questions or to cancel a pending deletion: hello@todofocused.com.