We enforce TLS 1.2 everywhere. Data at rest is encrypted by default and we secure all sensitive information with strong hashing algorithms like AES-256 and AES-128.
GDPR is a priority to us. We have specific processes and tools in place to ensure compliance and protect your data and privacy.
Penetration & Security Audits
Our systems are penetration tested and audited annually by an independent security firm.
Join 2,000+ amazing businesses already using TimeTackle
Network, application, and data security is vital for any enterprise solution
Our systems and processes are independently audited and tested annually. For network security, we use TLS 1.2 and Google Cloud Platform data centers certified with ISO 27001 and SOC2 compliance. For our code, infrastructure, and tracking outside threats, we use Google Cloud monitoring services.
Data encryption in transit and at rest
We use TLS 1.2 to encrypt the data in motion and follows several security measures to help ensure the authenticity, integrity, and privacy of all data in transit. We also use Google Cloud Platform that encrypts data at rest managed the same way as for Google’s production services.
Annual penetration tests
We penetration test our service annually to make sure our application and infrastructures are not vulnerable. We also make sure our code goes through a thorough code review process.
Principle of least privilege policy
Application infrastructure is completely hosted on Google Cloud with least privilege access policy. We also have logging in place to audit any authorized access. Furthermore our application infrastructure is completely separated from our public facing website for enhanced security.
Frequently asked questions
What permissions does TimeTackle need?
When you login to TimeTackle you provide TimeTackle permission to read your calendars. This is a read-only permission, that means, we can’t write or edit any information on your calendars. This permission enables features like calendar exporting.
If you want to use the Google Sheets Sync feature then you will need to provide an additional limited write permission to your Google Drive. This additional permission allows TimeTackle to create new files to your Google Drive. TimeTackle can only read and edit files created by itself. The application can not access any other files in your Google Drive.
Are you ISO 27001 and SOC2 certified?
TimeTackle itself is not ISO 27001 or SOC2 certified. However, we are completely hosted on Google Cloud Platform (GCP) which is compliant to these standards and has been for several years.
How secured is the payment method?
We use Stripe as our payment service provider. Stripe is certified to PCI Service Provider Level 1. This is the most stringent level of certification available. So you can be rest assured that security is not an issue.
Can we control data retention?
Yes, of course! Once you set a data retention period, TimeTackle will automatically delete data older than the retention period from its storage and database.
* This feature is only available to our business users
Are you HIPAA compliant?
Using our product does not in itself meet HIPAA (Health Insurance Portability and Accountability Act) compliance standards. The duty to comply still rests with the account holder and is dependent on what data is collected and how it is shared. However it is possible to use our system without breaching any of those requirements.
How is my account secured?
Login is secure using secure OAuth 2.0 authentication with single sign-on (SSO) provided by Google or Microsoft. Application programming interface (API) secured through HTTPS.
How is my data protected?
We protect all customer data at the storage and database level using Google Cloud Platform (GCP) encryption at rest mechanisms. At the account level, customers can set their own data retention limits.
Where are you located?
TimeTackle is a California LLC , based in San Jose, CA, USA. Our data centers are in the United States using Google Cloud.
What is your stability and uptime?
We aim for 99.99% uptime. We use active monitoring and alerting using Google Cloud Monitoring. For internal anomalies, we use Google Cloud Logging.
Trusted by 40,000+ satisfied users!
The best teams around the world use TimeTackle. Our users love us and we thrive off their feedback.
Gcal2Excel has saved me countless hours – and now I actually look forward to the weekly export process! Cheers to Sam and his crew, for their hard work and dedication!
I used to take time each week to re-type and organize my Google calendar into an email before I found GCal2Excel. It’s worked seamlessly and saved me time!
When I literally stumbled upon Gcal2Excel I felt like God had totally blessed me! I use Gcal2Excel for tons of reasons at our office. It was truly a life saver.
Gcal2Excel was exactly what I was looking for. I can export all three of my calendars periodically and easily keep up to date with client sessions and payments. So much simpler and quicker!
I’ve been using Gcal2Excel for the past few years. Since then, generating the listings for my weekly newsletter has been a snap! Now, I can’t imagine doing without it.