Privacy Policy

Parallelo ("we", "us", "our") operates the Parallelo platform, a project management tool for mixed teams. This policy describes what data we collect when you use Parallelo, how we use it, and the choices you have.

Questions? Email us at privacy@parallelo.app.

Account data. When you sign up, we collect your email address, name, and profile picture. If you sign in with Google or GitHub, those providers pass your name and email to us. We store this alongside your user ID.

Workspace data. Tickets, comments, attachments, track names, cycle names, and any other content you create inside a workspace are stored in our database and associated with your workspace ID.

Usage data. With your consent, we collect page views, feature interactions, and session recordings to understand how the product is used. See Section 5 (Cookies) for details on opting out.

Error reports. When the application encounters an error, we may capture a stack trace, the current URL, and your user ID to help diagnose the problem.

Slack data. If you connect a Slack workspace, we store an encrypted OAuth token and receive Slack events (messages, reactions) to provide two-way ticket sync. We only read messages in channels where the Parallelo bot is invited.

• To create and manage your account and workspace.
• To deliver the core product features: boards, tickets, tracks, cycles, and Slack notifications.
• To send transactional emails (invitations, workspace alerts) — no marketing emails without your separate consent.
• To detect and fix bugs via error reporting.
• To understand aggregate usage patterns and improve the product (analytics, consent-gated).
• To comply with legal obligations.

We use the following third-party services to operate Parallelo. Each receives only the data necessary to perform their function.

We use two categories of cookies.

Necessary cookies are always active. They include your Clerk session token (required to keep you signed in) and the parallel-cookie-consent preference cookie (1-year expiry, SameSite=Lax).

Analytics cookies are optional and only set after you accept them via the cookie banner. These include Google Analytics cookies (_ga*) and Microsoft Clarity cookies (_clck, _clsk). Revoking consent removes these cookies immediately.

You can change your cookie preferences at any time using the "Manage preferences" option in the cookie banner, which reappears if you clear your browser data.

• Account data is retained for as long as your account exists.
• Workspace data is retained for 30 days after a workspace is deleted (soft delete), then permanently removed.
• Error reports are retained for 90 days in Sentry.
• Analytics data retention is governed by Google and Microsoft's respective policies.
• You can request deletion of your account and associated data at any time — see Section 7.

Depending on your jurisdiction, you may have rights to access, correct, export, or delete your personal data. To exercise any of these rights, email privacy@parallelo.app with "Data request" in the subject line. We respond within 30 days.

To delete your account and all associated data, go to Settings → Account → Delete account inside the app, or contact us at the email above.

All data in transit is encrypted via TLS. Slack OAuth tokens are stored encrypted at rest. Workspace data is isolated at the database level — no query on tenant data runs without a workspace ID filter. File attachments are stored on Cloudflare R2 with pre-signed, time-limited URLs.

If you discover a security issue, please email security@parallelo.app rather than creating a public issue.

If we make material changes, we will update the effective date at the top of this page and notify you by email at least 14 days in advance. Continued use of Parallelo after the effective date constitutes acceptance of the updated policy.

Parallelo
Email: privacy@parallelo.app