Legal

Privacy Policy

Effective date: January 20, 2026

Back to homepage

Lab Laps ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web-based application and services (collectively, the "Service").

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with our policies and practices, do not use the Service.

1. Information We Collect

1.1 Account Information

When you create an account, we collect the following information:

  • Email Address: Used for account authentication and communication
  • Password: Securely hashed and stored by Supabase Auth for authentication purposes
  • Full Name: Optional information you may provide in your account profile
  • User ID: A unique identifier assigned to your account

1.2 Project Data

We store the following data related to your use of the Service:

  • Timer projects, including project names, descriptions, and configurations
  • Timer settings, durations, and schedules
  • Groups and steps organization within projects
  • Project metadata such as creation dates and modification timestamps

This data is stored in Supabase to enable synchronization across your devices. Data is associated with your user account when you are logged in, or stored locally in your browser when using the Service without an account.

1.3 Shared Project Data

When you share a project via a share link, the project data is stored in our shared_projects database table. This includes:

  • The complete project data you choose to share
  • A unique share ID used to access the shared project
  • Creation timestamp and expiration date (shared projects expire after 30 days)
  • Your user ID if you created the share while logged in (optional)

Shared projects are accessible to anyone with the share link. We are not responsible for the distribution or use of share links you create.

1.4 Usage and Analytics Data

We collect anonymous usage statistics and performance metrics through:

  • Vercel Analytics: Collects anonymous page views, user interactions, and navigation patterns
  • Vercel Speed Insights: Collects performance metrics such as page load times and Core Web Vitals

This data is collected only if you consent to analytics cookies. The data is aggregated and anonymized and does not identify individual users.

1.5 Technical Information

We automatically collect certain technical information when you use the Service:

  • IP address (used for rate limiting and security purposes)
  • Browser type and version
  • Device information and operating system
  • Access times and dates
  • Pages viewed and features used

1.6 Cookies and Local Storage

We use cookies and local storage for the following purposes:

  • Authentication Cookies: Maintain your login session (necessary for the Service to function)
  • Cookie Consent Preferences: Remember your cookie consent choices
  • Local Storage: Store project data locally for offline access and faster loading

You can control cookie preferences through the cookie consent banner. Note that disabling necessary cookies may affect the functionality of the Service.

1.7 hCaptcha

We use hCaptcha to prevent spam and abuse during account registration and login. hCaptcha may collect information about your device and browsing behavior to determine if you are a human user. This information is processed by hCaptcha in accordance with their privacy policy.

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Authenticate your identity and manage your account
  • Synchronize your data across devices
  • Enable project sharing functionality
  • Analyze usage patterns to improve user experience (with your consent)
  • Monitor and prevent fraud, abuse, and security threats
  • Comply with legal obligations
  • Respond to your inquiries and provide customer support

3. Data Storage and Security

Your data is stored using the following services:

  • Supabase: User authentication, account data, and project data are stored in Supabase's secure cloud infrastructure. Supabase implements industry-standard security measures including encryption at rest and in transit.
  • Vercel: The Service is hosted on Vercel's platform, which provides secure hosting and content delivery.
  • Local Storage: Project data may be cached in your browser's local storage for performance and offline access.

We implement appropriate technical and organizational measures to protect your personal information. However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

4. Data Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Service Providers: We may share information with third-party service providers who perform services on our behalf, including Supabase (data storage and authentication), Vercel (hosting and analytics), and hCaptcha (bot protection). These providers are contractually obligated to protect your information.
  • Shared Projects: When you create a share link, the project data becomes accessible to anyone with the link. You are responsible for controlling who has access to your shared projects.
  • Legal Requirements: We may disclose your information if required by law, court order, or governmental authority, or to protect our rights, property, or safety, or that of our users or others.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

5. Your Rights and Choices

You have the following rights regarding your personal information:

  • Access: You can access your account information and project data through the Service
  • Correction: You can update your account information (name, email, password) through the account settings page
  • Deletion: You can delete your account and all associated data at any time through the account settings page or by contacting us
  • Data Export: You can access and download your project data through the Service
  • Cookie Preferences: You can manage cookie preferences through the cookie consent banner
  • Opt-Out of Analytics: You can disable analytics cookies through the cookie consent settings

To exercise these rights, please use the account settings page or contact us at support@lablaps.example. We will respond to your request within a reasonable timeframe.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. When you delete your account, we will delete or anonymize your personal information, subject to the following exceptions:

  • We may retain certain information as required by law or for legitimate business purposes
  • Shared projects may remain accessible until they expire (30 days) or are manually deleted
  • Backup copies may be retained for a limited period for disaster recovery purposes
  • Anonymized analytics data may be retained indefinitely

7. Children's Privacy

The Service is not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us so we can delete such information.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. By using the Service, you consent to the transfer of your information to these countries. We take appropriate measures to ensure your information receives adequate protection in accordance with this Privacy Policy.

9. Third-Party Services

The Service uses the following third-party services that have their own privacy policies:

We encourage you to review the privacy policies of these third-party services to understand how they handle your information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective date" at the top of this page. We will also notify you via email or a prominent notice on the Service if changes are material.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: support@lablaps.example

We will respond to your inquiry within a reasonable timeframe.