プライバシーポリシー

English: Privacy Policy

1. Overview

WWM(Where Winds Meet) Scheduler ("Service") collects and uses minimal personal data to provide task tracking, roadmap viewing, currency statistics ("Jiangho Ledger"), and notifications. This Policy explains what we collect, how we use it, and how we protect it.

  • Service name: WWM Scheduler
  • Operator: onyx
  • Contact: [email protected]
  • Effective date: 2026-01-14

2. Information We Collect

# 2.1 Data from Google Sign-In (OAuth)

When you sign in with Google, we may receive:

  • Google account unique identifier ("sub")
  • Email (depending on consent/scope)
  • Name (depending on consent/scope)
  • Profile picture URL (depending on consent/scope)

# 2.2 Data You Create/Save in the Service

  • Task completion history: (task ID, period key for daily/weekly/monthly, completion status and timestamp, etc.)
  • User preferences/settings: language, time zone, layout/theme (dark/light), selected packs, hidden tasks, filter states, etc.
  • Notification settings: enabled status, schedule (time/days/rules), Do Not Disturb (DND) time window, etc.
  • Derived statistics for reports/forecast: aggregated gained/spent currencies, number of completed tasks, and related calculated values.

# 2.3 Web Push Notification Data (with your permission)

  • Push subscription details: endpoint, p256dh, auth keys
  • Required for sending web push notifications. If you unsubscribe, we stop using it.

# 2.4 Limited Technical Logs (Minimal)

For security and reliability, we may log limited information such as:

  • Request time, request path, and error logs (not intended for direct identification)
We do not intentionally collect sensitive information such as government IDs or financial account details.

3. How We Use Your Information

We use collected information to:

  • Authenticate you via Google and maintain your session
  • Sync your settings and task history across devices/browsers
  • Provide task tracking, history, and "Jiangho Ledger" statistics/forecasts
  • Send Web Push notifications if you opt in
  • Improve reliability and protect against abuse (debugging, security monitoring)

4. Data Retention and Deletion

  • We retain account data, settings, task history, notification settings, and push subscriptions as long as needed to provide the Service.
  • If you request deletion or use an in-service deletion feature, we will delete your data within a reasonable timeframe.
  • Deletion method: database record deletion (logical/physical deletion depends on our operational policy)

5. Data Sharing and Processors

We do not sell your personal data or share it with third parties for marketing.

We use the following providers to operate the Service:

  • Google OAuth (authentication)
  • Cloudflare (Pages hosting, Workers compute, D1 database, network security/delivery)

These providers may process data only to the extent necessary to provide their services.

6. International Data Processing

Cloudflare and Google operate global infrastructure. Your data may be processed and/or stored on servers located outside your country. We rely on these providers' security standards and policies when handling data.

7. Your Rights

You may:

  • Request access, correction, or deletion of your data
  • Withdraw Web Push notification permission (browser settings or in-service unsubscribe)
  • Request account deletion

Contact us at [email protected]

8. Security

We apply reasonable safeguards, including:

  • Encryption in transit (HTTPS)
  • Access control (authenticated APIs)
  • Data minimization and least privilege principles

9. Cookies / Sessions

We may use cookies (e.g., session cookies) to keep you signed in and to protect against security risks (such as CSRF). You can manage cookies via your browser settings.

10. Changes

If this Policy changes, we will notify users via an in-service notice or by updating this page.

  • Last updated: 2026-01-14