Privacy

Your data is yours.

Last updated 2026-04-23. Effective on publication.

The short version

Timeline holds the minimum data it needs to let you track shifts, raise invoices, and show you’re compliant. We don’t sell it, we don’t share it with advertisers, and we don’t use it to train machine-learning models.

What we collect

  • Account data — your name, email, and ABN (for invoicing).
  • Work records — the clients you add, the shifts you log, events and notes inside those shifts, invoices you raise, expenses and kilometres you claim, credentials you store in the compliance passport.
  • Device & session — browser version, a session cookie to keep you signed in, and anonymous error reports when something crashes.

Timeline does not fingerprint you, track you across the web, or embed third-party advertising scripts.

Why we hold it

Your records exist so you can run your work from them — see a week at a glance, raise an invoice from completed shifts, pull a BAS summary, prove compliance on audit. They are retained while your account is active and for the retention periods the ATO and the NDIS Quality and Safeguards Commission require after that.

Who we share it with

We share work-related data only when you direct it outward:

  • Invoices go to the email addresses you nominate (participants, plan managers, NDIA).
  • Reminder emails are sent on your behalf when you tap send.
  • Reports you export are yours to attach wherever you need.

Our sub-processors are:

  • Google Cloud (Firebase, Australia-South-East) — hosts your data at rest and authenticates your sessions.
  • Stripe (AU entity) — processes monthly subscription payments by card or PayTo. Stripe sees your name, email, and the monthly fee amount; they never see your shift, client, invoice, or expense records.

Sub-processor change log

  • — removed GoCardless: Stripe PayTo covers bank-debit payments on the NPP rail; GoCardless is not integrated.
  • — initial publication: Google Cloud (Australia-South-East), Stripe (AU entity), GoCardless (AU entity).

No other party has access to your records. Each sub-processor operates under its own published privacy policy.

Your rights

You can, at any time:

  • Export a complete copy of your data from Settings → Export.
  • Correct or delete any record from inside the app.
  • Close your account and request permanent deletion of everything we hold.
  • Email support@timelineapp.com.au if you’d rather we do any of the above on your behalf.

Under the Australian Privacy Principles you also have the right to complain — first to us, then to the Office of the Australian Information Commissioner (oaic.gov.au) if you’re not satisfied.

Security

All data is encrypted in transit and at rest. Authentication uses a salted bcrypt-style flow (Firebase Authentication under the hood); we never see your password. Multi-factor authentication is available on accounts that enable it.

Changes to this policy

When we change anything material, we’ll tell you in-app and by email at least 30 days before it takes effect. The 2026-04-23 date at the top of this page will always reflect the most recent revision.

Contact

Questions, requests, or complaints: support@timelineapp.com.au.