heyclock
PricingGuidesAbout

Privacy Policy

Effective Date: 1st October 2024
Last Updated: 17 October 2025

Heyclock is a service operated by Sunday Labs s.r.o., a company incorporated in the Czech Republic (“Sunday Labs”, “we”, “our”, “us”).

We are committed to protecting your privacy and ensuring your personal data is handled securely and transparently. This Privacy Policy explains how we collect, use, and protect your personal data when you use our website or services.

This Privacy Policy applies to all users of Heyclock worldwide. While it is designed to comply with the European Union’s General Data Protection Regulation (GDPR), we apply the same principles of privacy, security, and transparency to all users, regardless of location. Additional rights under other privacy laws—such as the UK GDPR and the California Consumer Privacy Act (CCPA/CPRA)—are respected where applicable.

1. Who We Are

Data Controller:

Sunday Labs s.r.o.
Sokolská 1883/8, Nové Město, 120 00 Praha 2, Czech Republic
support@heyclock.io

Sunday Labs s.r.o. is the data controller responsible for processing your personal data in connection with Heyclock.

You may contact us at any time regarding your data protection rights at support@heyclock.io.

2. Information We Collect

We collect only the minimum personal data necessary to provide and improve our services.

2.1 Personal Data You Provide

Email Address

We collect your email address when you voluntarily provide it, for example when you:

  • - create an account or sign in to Heyclock,
  • - subscribe to our newsletter, or
  • - contact us for support.

We use your email address to:

  • - communicate with you about your account or our services,
  • - send important updates and notifications, and
  • - send marketing and promotional emails only if you have opted in.

You may withdraw your consent or unsubscribe at any time by following the link in our emails or contacting us at support@heyclock.io. Withdrawal does not affect the lawfulness of processing that occurred before your withdrawal.

2.2 Automatically Collected Data (Usage Data)

We use Plausible Analytics, a privacy-focused analytics service, to understand general website usage and improve our services. Plausible does not use cookies, does not collect personal data, and does not track individual visitors. All analytics data is aggregated and anonymized. You can learn more about Plausible’s data practices here

2.3 No Other Personal Data Collected

We do not collect any other categories of personal information, such as names, addresses, phone numbers, or payment details, unless explicitly provided through Stripe during payment processing (covered in Section 4).

3. Legal Basis for Processing Your Information

Under the GDPR, we process your personal data based on the following legal grounds:

Account registration and communication
- Data processed: Email address
- Legal basis: Contract necessity (Article 6(1)(b) GDPR)

Sending updates or marketing
- Data processed: Email address
- Legal basis: Consent (Article 6(1)(a) GDPR)

Website analytics (via Plausible)
- Data processed: Aggregated, non-personal data
- Legal basis: Legitimate interest (Article 6(1)(f) GDPR), as it helps us understand service performance without tracking individuals.

You may withdraw consent at any time by clicking unsubscribe in any marketing email or contacting us at support@heyclock.io

4. Sub-Processors and Data Sharing

We engage trusted service providers (“sub-processors”) who process personal data on our behalf to help operate and support Heyclock. All sub-processors are bound by written Data Processing Agreements (DPAs) that ensure GDPR-level protection.

Our current sub-processors include:

Hetzner Online GmbH – Cloud hosting and infrastructure (Germany, EU). All data is stored within the EU.

Google Workspace (Google Ireland Ltd.) – Business email and document storage (EU/EEA; may involve Google LLC in the US). Safeguarded through Standard Contractual Clauses (SCCs).

Stripe Payments Europe Ltd. – Payment processing (EU; may involve Stripe Inc. in the US). Safeguarded through Standard Contractual Clauses (SCCs).

Plausible Analytics OÜ – Privacy-focused web analytics (Estonia, EU). Data remains within the EU; no personal data collected.

We may update this list from time to time and will notify users of any material changes. You have the right to object to a new sub-processor by contacting us.

We do not sell or rent personal data to any third parties.

International Transfers
For users outside the EU/EEA, your data may be transferred to and processed within the European Union, where our servers and primary operations are located. When data is transferred outside the EU/EEA, we ensure appropriate safeguards such as Standard Contractual Clauses (SCCs) and technical measures (e.g., encryption and access control).

5. How We Protect Your Information

We take your privacy seriously. We implement appropriate technical and organizational measures to protect your personal data, including encryption, access controls, pseudonymization, and regular security reviews. Although no online service can guarantee absolute security, we strive to maintain the highest reasonable standards of protection.

6. Your Rights Under GDPR

6.1 EU/EEA and UK Users

Under the GDPR and UK GDPR, you have the right to:

  • Access, rectify, or erase your personal data,
  • Restrict or object to processing,
  • Request data portability, and
  • Withdraw consent at any time.

To exercise these rights, contact support@heyclock.io You also have the right to lodge a complaint with your local supervisory authority.

6.2 California Residents

If you are a California resident, you may have additional rights under the CCPA/CPRA, including:

  • The right to request access to and deletion of your personal information, and
  • The right to know whether your data is sold or shared (we do not sell or share data).

You can exercise these rights by contacting support@heyclock.io

6.3 Other Regions

Depending on your jurisdiction, you may have similar privacy rights under local data protection laws, which we will honor to the extent required.

7. Data Retention

We will retain your email address for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. If you withdraw consent or close your account, we will delete or anonymize your data within 30 days, unless retention is required for legal or administrative reasons.

8. Third-Party Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as required by law or in the event of a merger, acquisition, or asset sale.

9. Cookies and Tracking Technologies

Heyclock does not use cookies for tracking purposes. Instead, we use Plausible Analytics, a privacy-focused analytics tool that does not use cookies and respects your privacy. No personal data is collected or stored by Plausible.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically. The “Last Updated” date at the top indicates the latest version. If material changes occur, we will notify you by email or via a notice on our website. Continued use of Heyclock after updates constitutes acceptance of the revised policy.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data-handling practices, please contact:

Sunday Labs s.r.o. Email: support@heyclock.io