Privacy Policy

The controller of personal data is Gorazd Veselic (a natural person). Contact for privacy questions and exercising your rights: gorazd@spletnakoda.si.

Tendask is a garden-logging app that is offline-first — your data lives on your device first. It is synced to the cloud (Supabase, servers in the EU) only if you sign in with an account; without an account it stays solely on your device.

Your precise location coordinates (GPS) never leave the device for storage. From the coordinates we compute only an approximate cell on-device (H3 system, ~1 km resolution) and store only that cell in the cloud — never raw coordinates. (The weather service is an exception — see §5.)

• Account data (when signed in): email address (for code sign-in) or a Google account identifier (for Google sign-in). None of this exists without signing in.
• Garden content: tasks, areas, plants, notes, reminders, notification settings. Without an account this stays on the device; when signed in it syncs to the cloud.
• Approximate location: H3 cells (≈ 1 km and coarser), derived on-device. Precise coordinates are stored locally only and used solely for weather.
• Diagnostic data (Sentry): on an error/crash, an error report, stack trace, app version and device/OS type. Used for stability, not identification.

• Providing the service (keeping your garden log, syncing across devices) — contract (Art. 6(1)(b)).
• Location and notifications — consent (Art. 6(1)(a)); given via system permissions and withdrawable at any time in device or app settings.
• Diagnostics and security (fixing bugs, preventing abuse) — legitimate interest (Art. 6(1)(f)).

• Supabase (backend — authentication and database). Servers in the EU (Frankfurt). Stores: email, H3 cells, garden content, notification settings. No coordinates are sent.
• Open-Meteo (weather and geocoding). Fetching weather sends precise coordinates to the service; searching for a place sends the typed place name. Data is used only to answer the request and is not retained by us; Open-Meteo is free and requires no account.
• Sentry (error diagnostics). May process data outside the EU (e.g. the US) under Standard Contractual Clauses.
• Google (Google sign-in — optional). Sign-in performs a token exchange.
• Resend (delivery of sign-in code emails from no-reply@tendask.com). Receives the recipient address to deliver the message.

Account and garden data are kept while your account exists. Deleting your account (see §7) irreversibly deletes cloud data (cascade delete). Local data remains on the device until you sign out or remove the app. Diagnostic data is retained for a limited period per Sentry's policy.

Under the GDPR you have the right to access, rectification, erasure, restriction and portability of your data, and to object to processing. Directly available in the app:

• Data export (Settings → export) — all your data in a JSON file.
• Account deletion (Settings → delete account) — irreversible deletion of cloud data + wiping the local database.

For other requests email gorazd@spletnakoda.si. You may also lodge a complaint with the Slovenian Information Commissioner (ip-rs.si) or your local supervisory authority.

The app is not intended for, and does not target, children under 16.

We may update this policy; we will announce material changes in the app or on this page. The latest published version with its effective date always applies.