Privacy Policy

Last updated: January 7, 2026

1. Introduction

Welcome to DoBitly ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience on our website and in using our services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our collaborative project management platform.

2. Information We Collect

2.1 Information You Provide

We collect information that you provide directly to us, including:

  • Account information (name, email address, password)
  • Profile information and team member details
  • Project data, tasks, comments, and other content you create
  • Communication data when you contact us

2.2 Automatically Collected Information

We automatically collect certain information when you use our services:

  • Usage data and analytics (via Google Analytics)
  • Device information and browser type
  • IP address and location data
  • Cookies and similar tracking technologies

3. How We Use Your Information

We use the information we collect for the following purposes:

  • Service Delivery: Provide, maintain, and improve our services
  • Account Management: Process transactions, manage your account, and authenticate users
  • Communication: Send you technical notices, updates, security alerts, and support messages
  • Customer Support: Respond to your comments, questions, and requests
  • Analytics and Improvement: Monitor and analyze usage patterns, trends, and preferences to improve your experience and our services
  • Security: Detect, prevent, and address technical issues, fraud, and security threats
  • Legal Compliance: Comply with legal obligations, enforce our terms, and protect our rights

Data Usage for Experience Improvement: We use your data to personalize and improve your experience with our Service. This includes analyzing how you use our platform to enhance features, optimize performance, and provide better recommendations. We will never sell your personal information to third parties without your explicit consent, except in the event of a merger, acquisition, or sale of all or substantially all of our assets, where your information may be transferred as part of that transaction.

4. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to track activity on our website and hold certain information. Cookies are files with a small amount of data that may include an anonymous unique identifier. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our service.

We use Google Analytics to help analyze how users use our website. Google Analytics uses cookies to collect information such as how often users visit our website, what pages they visit, and what other sites they used prior to coming to our website. We use the information we get from Google Analytics only to improve our website and services.

5. Public Projects and Anonymous Usage

Important Privacy Notice: Projects created while logged out (in anonymous mode) are publicly visible to everyone visiting our website. These public projects serve as demonstrations of our platform's features and capabilities.

When you create a project without logging in:

  • All project content (titles, descriptions, tasks, epics) becomes publicly accessible
  • Your project may be displayed on our website as a demonstration of our features
  • Anyone visiting our website can view your project content
  • We recommend not including sensitive, confidential, or personal information in public projects

To make your project private and control access, you must create an account and claim ownership of the project. Once claimed, you can manage privacy settings and access controls for your projects.

6. Data Sharing and Disclosure

We do not sell your personal information. We do not sell, trade, or rent your personal information to third parties for their marketing purposes. We may share your information only in the following limited circumstances:

  • With Your Consent: When you have given us explicit consent to share your information
  • Service Providers: With trusted third-party service providers who perform services on our behalf (such as hosting, analytics, payment processing) under strict confidentiality agreements
  • Legal Requirements: To comply with legal obligations, court orders, or respond to legal requests from government authorities
  • Protection of Rights: To protect our rights, privacy, safety, or property, or that of our users or others
  • Business Transfers: In connection with a merger, acquisition, reorganization, or sale of all or substantially all of our assets, where your information may be transferred as part of that transaction. In such cases, we will provide notice before your information is transferred and becomes subject to a different privacy policy
  • Aggregated Data: We may share aggregated, anonymized, or de-identified data that cannot be used to identify you

No Sale Without Consent: We will never sell your personal information to third parties without your explicit consent, except in the event of a company sale or merger as described above. Your data is used solely to provide and improve our services.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit using SSL/TLS
  • Secure password storage using industry-standard hashing algorithms
  • Regular security assessments and vulnerability testing
  • Access controls and authentication mechanisms
  • Regular backups and disaster recovery procedures

However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account credentials.

7.1 Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of becoming aware of the breach.

8. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

8.1 General Rights

  • Right to Access: Request access to your personal information we hold
  • Right to Rectification: Request correction of inaccurate or incomplete information
  • Right to Erasure: Request deletion of your personal information ("right to be forgotten")
  • Right to Restrict Processing: Request restriction of processing of your information
  • Right to Data Portability: Request transfer of your data to another service provider
  • Right to Object: Object to processing of your information for certain purposes
  • Right to Withdraw Consent: Withdraw consent where processing is based on consent

8.2 California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

  • Right to know what personal information is collected, used, shared, or sold
  • Right to delete personal information held by businesses
  • Right to opt-out of the sale of personal information (we do not sell your information)
  • Right to non-discrimination for exercising your privacy rights

8.3 European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

  • All rights listed in section 8.1 above
  • Right to lodge a complaint with a supervisory authority
  • Right to information about automated decision-making and profiling

8.4 Exercising Your Rights

To exercise any of these rights, please contact us at privacy@dobitly.com. We will respond to your request within 30 days (or as required by applicable law). We may need to verify your identity before processing your request.

9. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. Specifically:

  • Account information is retained while your account is active and for a reasonable period after account closure
  • Project data and content are retained until you delete them or close your account
  • Legal and compliance records may be retained for longer periods as required by law
  • Analytics data may be retained in aggregated, anonymized form indefinitely

When we no longer need your personal information, we will securely delete or anonymize it in accordance with our data retention policies.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. When we transfer your information internationally, we take steps to ensure appropriate safeguards are in place:

  • We use standard contractual clauses approved by the European Commission
  • We ensure service providers are bound by appropriate data protection agreements
  • We comply with applicable data protection laws and regulations

By using our Service, you consent to the transfer of your information to countries outside your country of residence.

11. Third-Party Data Processors

We use third-party service providers to help us operate our Service and administer activities on our behalf. These service providers have access to your information only to perform specific tasks and are obligated not to disclose or use it for any other purpose. Our key service providers include:

  • Hosting Providers: For cloud infrastructure and data storage
  • Analytics Providers: Such as Google Analytics for usage analysis
  • Payment Processors: For processing payments (if applicable)
  • Email Service Providers: For sending transactional and marketing emails

These service providers are contractually bound to protect your information and use it only for the purposes we specify.

12. Marketing Communications

We may send you marketing communications about our services, new features, and updates. You can opt-out of receiving these communications at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Updating your account preferences
  • Contacting us at privacy@dobitly.com

Please note that even if you opt-out of marketing communications, we may still send you important service-related messages, such as security alerts, account notifications, and updates to our Terms or Privacy Policy.

13. Legal Basis for Processing (GDPR)

If you are located in the EEA, we process your personal information based on the following legal grounds:

  • Consent: When you have given clear consent for specific processing activities
  • Contract Performance: To perform our contract with you and provide our services
  • Legal Obligation: To comply with legal requirements and regulations
  • Legitimate Interests: For our legitimate business interests, such as improving our services, security, and fraud prevention, where these interests are not overridden by your rights

14. Children's Privacy

Our services are not intended for children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children under the applicable age. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@dobitly.com. If we become aware that we have collected personal information from a child under the applicable age, we will take steps to delete such information promptly.

15. Do Not Track Signals

Some browsers include a "Do Not Track" (DNT) feature that signals to websites you visit that you do not want to have your online activity tracked. Currently, there is no standard for how DNT signals should be interpreted. Our Service does not currently respond to DNT browser signals or mechanisms. However, you can control cookie preferences through your browser settings and our cookie consent banner.

16. Changes to This Privacy Policy

We may update our Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

  • Posting the new Privacy Policy on this page with an updated "Last updated" date
  • Sending an email notification to the address associated with your account (for material changes)
  • Displaying a prominent notice on our website

Your continued use of the Service after any changes to this Privacy Policy constitutes your acceptance of the updated policy. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Email: privacy@dobitly.com
Website: www.dobitly.com

For data protection inquiries, you can also contact our Data Protection Officer (if applicable) at the same email address.

View Terms and Conditions →