Privacy policy

Privacy policy

Last updated: 12 August 2025

Last updated: 12 August 2025

Overview

Checklist Design ("we," "us," or "our") provides a Figma plugin and website (checklist.design) that display design checklists to help improve your design workflow. This Privacy Policy explains how we collect, use, and protect your information when you use our plugin and website.

We are committed to protecting your privacy and complying with applicable privacy laws, including the Australian Privacy Principles (APP), the European General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA).

Information we collect

Information stored locally within Figma plugin

The following data is stored locally within your Figma environment and is not transmitted to our servers:

  • Saved checklists and checklist items

  • Task completion status and progress

  • User preferences and settings within the plugin

  • Timestamps of local activities

Information collected on our website

Email subscriptions:

Email subscriptions:

Email subscriptions:

  • Email address (voluntarily provided for release updates)

  • Subscription timestamp

  • Email preferences and subscription status

Website Analytics (via Google Analytics):

Website Analytics (via Google Analytics):

Website Analytics (via Google Analytics):

  • Website usage statistics and patterns

  • Pages visited and time spent

  • Referral sources and user interactions

  • Device and browser information

  • Geographic location (general region)

  • This data is collected anonymously and aggregated

Information sent to our servers

We collect and store the following information on our servers:

Support queries:

  • Message content of your support request

  • Email address (optional, provided by you for follow-up purposes)

  • Timestamp of submission

Feedback:

Feedback:

Feedback:

  • Feedback message content

  • Timestamp of submission

  • This information is collected anonymously

Checklist content:

Checklist content:

Checklist content:

  • We maintain databases of checklist content that is synced to the plugin

  • No personal information is associated with this content delivery

How we use your information

We use the collected information for the following purposes:

  • Support queries: To respond to your support requests and improve our service

  • Feedback: To enhance our plugin features and user experience

  • Service delivery: To provide updated checklist content to the plugin

Data storage and security

Plugin data:

  • Local Storage: Your checklist progress and saved items are stored within Figma's environment. We do not have access to this locally stored data.

  • Server Storage: Plugin support and feedback data is stored securely using Supabase

Website data:

  • Newsletter Data: Email subscriptions are stored securely using Supabase

  • Analytics Data: Website usage data is processed and stored by Google Analytics

Security measures for all data:

  • Encrypted data transmission (HTTPS/TLS)

  • Secure database storage with access controls

  • Regular security monitoring

  • Industry-standard security practices

Data location:

Our servers are located in East US (Ohio).

Data retention

Plugin data:

  • Support Queries: 3 years from submission date

  • Feedback: 2 years from submission date

  • Local Plugin Data: Retained indefinitely within your Figma environment unless manually deleted

Website data:

  • Email subscriptions: Until you unsubscribe or request deletion

  • Website Analytics: As per Google Analytics data retention settings (26 months by default)

You may unsubscribe from our emails at any time using the unsubscribe link in any email or by contacting us. You may request deletion of your data at any time by contacting us at hello@georgehatzis.com.

Third-party services

We use the following third-party services:

  • Supabase: For database storage and backend services

  • Vercel: For web application hosting and API proxy services

  • Google Analytics: For website usage analytics and insights

These services have their own privacy policies, and we ensure they meet appropriate security standards.

International data transfers

As we serve users globally, your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for such transfers in compliance with applicable laws.

Your rights

Depending on your location, you may have the following rights:

  • Access: Request a copy of personal information we hold about you

  • Correction: Request correction of inaccurate information

  • Deletion: Request deletion of your personal information

  • Portability: Request transfer of your data to another service

  • Objection: Object to certain processing of your information

  • Withdrawal: Withdraw consent where processing is based on consent

To exercise these rights, contact us at hello@georgehatzis.com.

Security incidents

In the event of a security incident affecting your personal information, we will:

  • Assess and contain the incident promptly

  • Notify Figma within 24 hours as required

  • Notify affected users without undue delay where required by law

  • Take appropriate remedial action

Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on our website and updating the "Last Updated" date.

Contact us

If you have questions about this Privacy Policy, please contact us at hello@georgehatzis.com.