Privacy Policy
Last updated: June 2026
What is Chronologs?
Chronologs is a visual timeline editor that lets you organise life's moments into meaningful timelines.
What data we collect
- Account information: your name and email address, used to create and identify your account.
- Timeline content: events, text, and images you add to your timelines.
- Google Photos (optional): if you connect Google Photos, we access only the photos you explicitly select using Google's Photos Picker. We do not access your broader Google Photos library.
How we use your data
- To provide the Chronologs service — creating, storing, and displaying your timelines.
- To import photos you select from Google Photos into your timelines.
- We do not sell, share, or use your data for advertising or analytics.
Google user data
Chronologs' use of data received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
- We access Google Photos only via the Picker API — you choose exactly which photos to import.
- Downloaded photos are stored as your timeline images and are not shared with any third party.
- You can disconnect Google Photos at any time from your account settings, which revokes our access.
Data protection and security
We use the following mechanisms to protect your data, including sensitive personal data and data received from Google APIs (OAuth tokens and selected photos):
- Encryption in transit: all communication between your browser and our servers is encrypted via HTTPS/TLS. This applies to all data transfers, including Google OAuth flows and photo imports.
- Encryption at rest: Google OAuth tokens and other sensitive credentials are encrypted at rest in our database using AES-256 encryption.
- No passwords stored: authentication uses secure session tokens; plaintext passwords are never stored.
- Minimal data access: we access only the specific photos you select via Google's Picker API. We do not request or store broad access to your Google account or Google Photos library.
- No third-party sharing: Google user data (OAuth tokens and photos imported from Google Photos) is never sold, shared, transferred, or disclosed to third parties.
- Access controls: your timelines and personal data are accessible only to you unless you explicitly share a timeline publicly. Staff access to production data is restricted and audited.
- Data minimisation: we collect only the data required to provide the service. Google user data is used solely for the purpose of importing the specific photos you choose — for no other purpose.
- Token revocation and data deletion: when you disconnect Google Photos from your account settings, your OAuth token is immediately revoked and deleted from our systems. Imported photos remain in your timelines until you delete them. Deleting your account removes all associated data, including any Google-sourced content.
Deleting your data
You can delete your account and all associated data by contacting us at support@chronologs.io.
Contact
Questions? Email support@chronologs.io.