Privacy Policy

Privacy Policy

Privacy Policy For TimeLock
 Effective Date: 05/10/2025


Who we are

Norry Holdings Ltd, trading as Time Lock (“Time Lock”, “we”, “us”), is the data controller for the Time Lock app and website. Contact us at support@timelockapp.com. For an overview of our legal bases, your rights, and data transfers, see our GDPR Notice at https://timelockapp.com/gdpr


Information we collect

Account details: email, display name, profile image.
Capsule content: photos, videos, audio, text and metadata that you upload.
Device/usage information: app version, device model, performance/crash data; limited analytics where you have consented.
Support communications: messages you send to us (email or in-app).
 

How we use information (and legal bases)

Provide the service (Contract): operate your account, store/retrieve capsules, enable sharing you initiate.
Security & service improvement (Legitimate interests): reliability, anti-abuse, diagnostics, privacy-preserving analytics.
Marketing & non-essential analytics (Consent): only if you opt in; you can opt out anytime in Settings or by contacting us.
Legal compliance: records and responses required by law.



Content privacy
We do not view your capsule contents by default. Limited, logged human access may occur only: (i) at your request for support, (ii) to investigate security or abuse, or (iii) where required by law.


Sharing you control
If you invite collaborators to a capsule, they can view the items you choose to share. You can revoke access at any time. We are not responsible for how recipients use content you choose to share with them.


Vendors / sub-processors
We use selected service providers to host and operate the service (e.g., server hosting, website hosting, email delivery, analytics/crash reporting). We keep an up-to-date list on our Sub-processors page: 
https://timelockapp.com/subprocessors. We do not sell your personal data.


International transfers
If personal data is transferred outside the EU/UK, we use approved safeguards (e.g., Standard Contractual Clauses / UK IDTA or equivalent).


Security
We apply appropriate technical and organisational measures designed to protect personal data against unauthorised access, alteration, disclosure, or loss. These measures include strict access controls (with MFA for administrators), key-based server access, least-privilege permissions, activity logging, regular maintenance/patching, off-server backups, and an incident-response process.
Important: Time Lock is for memories, not secrets. Please don’t store passwords, 2FA codes or banking details in capsules.


Retention

Your content: kept until you delete it or close your account.
Backups: may persist for up to 90 days and are not restored to live systems except for disaster recovery.
Security logs: 12 monthsSupport records: 24 months.
 

Your choices & rights

Delete your account & data in Settings.
Request access/export/deletion by emailing support@timelockapp.com. We verify account ownership (simple sign-in verification) and aim to respond within 30 days.
Manage marketing and non-essential analytics consent in Settings or by contacting us.
On the website, manage cookies via the cookie banner.
 

Payments
In-app purchases are processed by Apple or Google under their own privacy policies. We do not store card or bank details.


Children
The service is not directed to children under 13. If you believe a child has provided personal data, contact support@timelockapp.com and we will delete it.


Changes
If we make material changes, we will notify you and re-prompt for acceptance in the app where appropriate.ock (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://timelockapp.com/ or use the Timelock app. By using our services, you agree to the collection and use of information in accordance with this policy.