Skip to content
SkyRockit
Legal

Privacy Policy

SkyRockit — Operated by Simoes Media · Effective Date: March 13, 2026 · Last Updated: March 13, 2026

1. Introduction

SkyRockit (“we,” “us,” “our”) is a cross-platform productivity application operated by Simoes Media. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use the SkyRockit application, website (myskyrockit.com), and related services (collectively, the “Service”).

We are committed to protecting your privacy and handling your data transparently. This policy applies to all users of SkyRockit worldwide, including users in Canada, the European Economic Area (EEA), the United Kingdom, the United States (including California), and all other jurisdictions.

By using the Service, you acknowledge that you have read and understood this Privacy Policy.

2. Information We Collect

2.1 Information You Provide Directly

Account Information: When you create an account, we collect your email address, display name, and password (stored in hashed form). If you sign up via Google OAuth, we receive your name, email address, and profile picture from Google.

User Content: Tasks, lists, areas, notes, journal entries, calendar events, tags, media files, and any other content you create within the Service. This is your data and you retain full ownership of it.

Payment Information: When you subscribe to SkyRockit Pro, payment is processed by Stripe, Inc. We do not store your full credit card number, CVV, or bank account details. We receive and store your Stripe customer ID, subscription status, plan type, and billing period dates.

Communications: If you contact us for support or feedback via email, we collect your email address and the content of your message.

Promo Codes: If you sign up using a promotional code, we store the code and its associated referral source for attribution purposes.

2.2 Information Collected Automatically

Device and Browser Information: Device type, operating system, browser type and version, screen resolution, and language preference.

Usage and Behavioral Data: We collect information about how you interact with the Service at the individual account level, including: sign-in and sign-out events, feature activations, subscription and trial lifecycle events (such as starting a trial, upgrading, or cancelling), aggregate counters of actions you take within the Service (such as the number of tasks created or notes written over a time window), and recency indicators (such as your last login date or last activity date). This information is used to personalize your experience, personalize product and marketing communications, understand engagement patterns, improve the Service, and identify users who may benefit from additional guidance or features. We do not collect or analyze the content of your tasks, notes, journal entries, or other User Content for these purposes — only metadata about your interactions.

Log Data: IP address, access timestamps, referring URLs, and error logs. Log data is retained for a maximum of 90 days for security and debugging purposes.

Cookies and Local Storage: We use essential cookies and local storage to maintain your authentication session and application preferences. See Section 8 for details.

2.3 Information We Do Not Collect

  • We do not collect biometric data.
  • We do not collect precise geolocation data.
  • We do not scan or analyze the content of your tasks, notes, or journal entries for advertising purposes.
  • We do not use your data to train third-party machine learning or AI models.
  • We do not sell, rent, or trade your personal information to third parties.
  • We do not display third-party advertising within the Service or share your data with advertising networks.

3. How We Use Your Information

We use your information for the following purposes:

  • Providing the Service: To create and manage your account, store and sync your content across devices, process your subscription, and deliver the features of SkyRockit.
  • Improving the Service: To understand how users interact with the application, identify bugs and performance issues, measure the impact of product changes, and develop new features.
  • Transactional Communications: To send account-related messages such as email verification, password resets, subscription confirmations, payment receipts, trial expiration notices, and responses to support requests.
  • Product and Marketing Communications: To send occasional messages about new features, product tips, educational content, promotional offers, and related products or services from Simoes Media. These communications may be personalized based on your subscription tier, feature usage, and account activity. You may opt out at any time by clicking the unsubscribe link in any marketing email or by emailing info@myskyrockit.com. Opting out does not affect transactional communications.
  • Security: To detect and prevent fraud, abuse, and unauthorized access to the Service.
  • Legal Compliance: To comply with applicable laws, regulations, and legal processes.

4. How We Store and Protect Your Information

4.1 Data Storage

Your data is stored on servers managed by Supabase, Inc., which uses Amazon Web Services (AWS) infrastructure. Data is stored in secure, access-controlled environments with encryption at rest and in transit (TLS 1.2+).

Media files (images, attachments) are stored in Supabase Storage with user-specific access controls. Files are accessible only through signed URLs with limited time validity.

4.2 Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS/HTTPS) and at rest.
  • Row Level Security (RLS) policies ensuring users can only access their own data.
  • Hashed passwords (handled by Supabase Auth).
  • Secure webhook signature verification for payment processing.
  • Regular security reviews of our codebase and infrastructure.

4.3 Data Retention

  • Active accounts: Your data is retained for as long as your account is active.
  • Deleted accounts: When you delete your account, all personal data and user content is permanently removed from our servers within 30 days. Backup copies may persist for up to an additional 30 days before being purged.
  • Log data: Retained for a maximum of 90 days.
  • Payment records: Transaction records are retained as required by applicable tax and financial regulations (typically 7 years).

5. Third-Party Services

We use the following third-party services to operate SkyRockit:

  • Supabase, Inc. — Purpose: Authentication, database, file storage, serverless functions. Data Shared: Account data, user content, media files. Privacy Policy: supabase.com/privacy
  • Stripe, Inc. — Purpose: Payment processing, subscription management, billing portal. Data Shared: Email, name, payment method, subscription details. Privacy Policy: stripe.com/privacy
  • Vercel, Inc. — Purpose: Web application hosting and deployment. Data Shared: IP address, request data (standard web server logs). Privacy Policy: vercel.com/legal/privacy-policy
  • Google LLC (OAuth) — Purpose: Optional sign-in authentication. Data Shared: Email, name, profile picture (only if you choose Google sign-in). Privacy Policy: policies.google.com/privacy
  • ClickFunnels (Etison LLC) — Purpose: Checkout, billing portal access, and contact record management. Data Shared: Email, name, subscription status, contact tags reflecting subscription lifecycle. Privacy Policy: clickfunnels.com/privacy
  • Loops, Inc. — Purpose: Email communications, marketing automation, newsletter delivery, lead magnet delivery, and lifecycle communication management. Data Shared: Email, name, subscription status, account lifecycle events (such as sign-up, sign-in, trial start, subscription activation), aggregate engagement metrics (such as last login date, feature usage counters, email opens, clicks, and unsubscribes), subscription source (which page or funnel the user signed up through), mailing list membership, custom contact properties (such as lead-magnet downloads and content engagement signals), and communication preferences. Privacy Policy: loops.so/privacy

We may add analytics services in the future (such as privacy-focused product analytics). This policy will be updated before any new tracking is implemented, and we will notify users of material changes.

We do not share your user content (tasks, notes, journal entries, etc.) with any third party except as necessary to provide the Service (i.e., storing it in our database infrastructure). Behavioral data shared with Loops consists of metadata about your interactions with the Service (for example, “user signed in”) and does not include the content of your tasks, notes, or other User Content.

6. Your Rights

6.1 All Users

Regardless of your location, you have the right to:

  • Access your personal data at any time through the application.
  • Export your data in JSON format via the Settings page.
  • Correct inaccurate personal data by editing your profile.
  • Delete your account and all associated data at any time.
  • Withdraw consent for optional data processing (e.g., unsubscribe from marketing emails).

6.2 Canadian Users (PIPEDA)

Under the Personal Information Protection and Electronic Documents Act (PIPEDA), you have the right to access, correct, and challenge the accuracy of your personal information held by us. To make a request, contact us at info@myskyrockit.com. We will respond within 30 days.

6.3 European Economic Area and UK Users (GDPR / UK GDPR)

If you are located in the EEA or UK, you have additional rights under the General Data Protection Regulation, including:

  • Right to erasure (“right to be forgotten”).
  • Right to restrict processing.
  • Right to data portability (we provide JSON export).
  • Right to object to processing based on legitimate interests.
  • Right to lodge a complaint with your local data protection authority.

Our legal bases for processing your data are:

  • Performance of a contract (Article 6(1)(b) GDPR) — for providing the Service, managing your account, and processing your subscription.
  • Legitimate interests (Article 6(1)(f) GDPR) — for improving the Service, ensuring security, preventing fraud, and sending product and marketing communications to existing customers under the soft opt-in provisions applicable to existing customer relationships. You have the right to object to processing based on legitimate interests at any time, including by unsubscribing from marketing communications.
  • Consent (Article 6(1)(a) GDPR) — for subscribers to our newsletter or other opt-in marketing lists where explicit consent has been collected.
  • Legal obligation (Article 6(1)(c) GDPR) — for retention of payment records as required by tax and financial regulations.

6.4 California Users (CCPA / CPRA)

If you are a California resident, you have the right to:

  • Know what personal information we collect and how it is used.
  • Request deletion of your personal information.
  • Opt out of the sale of personal information (we do not sell your information).
  • Non-discrimination for exercising your privacy rights.

To exercise any of these rights, contact us at info@myskyrockit.com.

7. Children’s Privacy

SkyRockit is not directed at children under the age of 13 (or 16 in the EEA). We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly. If you believe a child has provided us with personal information, please contact us at info@myskyrockit.com.

8. Cookies and Local Storage

SkyRockit uses the following types of cookies and local storage:

  • Essential (Authentication): Session cookies and local storage tokens used to keep you signed in. These are strictly necessary for the Service to function and cannot be disabled.
  • Preferences: Local storage entries that save your application settings (theme, sort preferences, feature toggles). These remain on your device and are not transmitted to our servers.
  • Analytics (Future): If we implement analytics in the future, we will use privacy-focused tools and update this policy accordingly. We will obtain consent where required by law before deploying any analytics cookies.

We do not use advertising cookies or tracking pixels. We do not participate in ad networks.

9. International Data Transfers

Your data may be processed in countries outside your country of residence, including the United States and Canada, where our infrastructure providers operate. We ensure appropriate safeguards are in place for such transfers, including standard contractual clauses and data processing agreements with our service providers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the “Last Updated” date at the top of this policy.
  • Notify you via email or in-app notification at least 14 days before the changes take effect.
  • Post the revised policy at myskyrockit.com/privacy.

Your continued use of the Service after the effective date of the revised policy constitutes acceptance of the changes.

11. Contact Us

If you have questions about this Privacy Policy or wish to exercise any of your privacy rights, contact us at:

Simoes Media (operating as SkyRockit)
Email: info@myskyrockit.com
Website: myskyrockit.com

For privacy-related requests, we will respond within 30 days.