counting.to
Last updated: March 11, 2026
counting.to ("we," "our," or "us") is operated by Mortal Enterprises Pte Ltd, a company registered in Singapore.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our countdown timer application at counting.to.
Please read this Privacy Policy carefully. By using counting.to, you agree to the collection and use of information in accordance with this policy.
Account Information
When you sign in using Google OAuth, we collect:
You may also optionally provide:
Countdown Data
When you create countdowns, we collect:
Images
You may upload images for countdown backgrounds. We store:
Contact Information
If you contact us through our contact form, we collect:
Payment Information
If you subscribe to a paid tier, we generate and store the following in connection with your subscription:
We do not store your credit card number, expiry date, or CVC. All payment processing is handled directly by Stripe.
Technical and Log Data
When you access counting.to, our infrastructure providers may automatically collect:
This data is collected by our backend infrastructure provider (Convex) as part of standard server operations. We do not use this data for profiling or targeted advertising.
We use the information we collect to:
We do not use your information for targeted advertising or sell it to third parties.
We do not sell your personal information. We share your information only with the following third-party service providers who assist us in operating our service:
We may also disclose your information if required to do so by law, regulation, legal process, or enforceable government request, or to protect the rights, property, or safety of Mortal Enterprises Pte Ltd, our users, or the public.
We use cookies solely for authentication purposes to maintain your login session. We do not use third-party advertising cookies or tracking cookies.
| Cookie | Purpose | Type | Duration |
|---|---|---|---|
| Session/auth cookie | Maintains your login session after authenticating via Google OAuth | Essential (first-party) | Session / [specify duration, e.g., 30 days] |
If Convex or any other infrastructure provider sets additional cookies as part of service delivery, those are limited to operational purposes. We do not permit any third-party advertising or tracking cookies on counting.to.
You can control cookies through your browser settings. However, disabling essential cookies will prevent you from logging in to counting.to.
We do not use Google Analytics or similar third-party tracking or analytics services. We maintain internal audit logs only for operational purposes such as subscription events, URL assignments, and payment processing.
Your data is stored on infrastructure provided by Convex (US-based). Payment data is processed and stored by Stripe (US-based with global operations).
We implement appropriate technical and organizational measures to protect your data, including:
In the event of a data breach that may affect your personal information, we will make reasonable efforts to notify affected users without undue delay, and where required by law (including the PDPA, GDPR, or other applicable legislation), notify the relevant authorities within the prescribed timeframes.
You may opt out of non-essential communications (such as feedback requests and surveys) at any time by submitting a request through our contact form at counting.to/contact. Essential service-related communications (such as billing notifications and security alerts) cannot be opted out of while your account remains active.
You can delete your account directly from your account settings. When you delete your account:
We recommend exporting any data you wish to keep before deleting your account.
If you delete a countdown (while your account is active), you may contact us within 60 days to request restoration. However, restoration requests are reviewed on a case-by-case basis, and we cannot guarantee that deleted countdowns can be recovered.
We recommend downloading any data you wish to keep before deleting your account. To request a copy of your data, please contact us via counting.to/contact. We will respond to data export requests within 30 days.
counting.to is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at counting.to/contact and we will take steps to delete such information promptly.
In jurisdictions where a higher minimum age applies (for example, 16 in certain EU member states under the GDPR), that higher age threshold applies.
Our service providers are primarily based in the United States. By using counting.to, your information may be transferred to and processed in countries outside your country of residence, which may have different data protection laws.
We take steps to ensure that your data is treated securely and in accordance with this Privacy Policy regardless of where it is processed. Our key service providers (Convex and Stripe) maintain appropriate safeguards for international data transfers, including Standard Contractual Clauses (SCCs) approved by the European Commission where applicable.
Mortal Enterprises Pte Ltd complies with the Personal Data Protection Act 2012 (PDPA) of Singapore. This section outlines your rights and our obligations under the PDPA.
We have designated a Data Protection Officer (DPO) to oversee our compliance with the PDPA. You may contact our DPO for any questions, concerns, or requests relating to your personal data:
By creating an account and using counting.to, you consent to the collection, use, and disclosure of your personal data as described in this Privacy Policy. Where we rely on deemed consent (e.g., where the collection is necessary to provide you with the Service), we will inform you of the purpose at or before the time of collection.
You may withdraw your consent for us to collect, use, or disclose your personal data at any time by:
Please note that withdrawing consent may affect our ability to provide the Service to you. We will inform you of the likely consequences of withdrawing consent before processing your request.
You have the right to:
To exercise any of these rights, please contact our Data Protection Officer. We will respond to your request within 30 days. In some cases, we may need to verify your identity before processing your request.
We do not engage in telemarketing. If we ever send marketing communications (e.g., via email), we will obtain your prior consent and provide an easy way to opt out. We comply with the Do Not Call provisions under the PDPA.
We retain your personal data only as long as necessary for the purposes for which it was collected, or as required by law. When your data is no longer needed, we will delete or anonymize it.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR).
Mortal Enterprises Pte Ltd is the data controller for your personal data. Contact details are provided in the "Contact Us" section below.
We process your personal data under the following legal bases:
| Processing Activity | Legal Basis |
|---|---|
| Account creation and authentication (Google OAuth) | Performance of contract |
| Storing and displaying your countdowns | Performance of contract |
| Payment and subscription processing (Stripe) | Performance of contract |
| Responding to contact form submissions | Legitimate interest (responding to inquiries) |
| Internal audit logs (subscription events, URL assignments) | Legitimate interest (service operations and security) |
| Technical log data (IP, browser, device) | Legitimate interest (security and fraud prevention) |
| Service-related communications | Performance of contract |
| Marketing communications (if any) | Consent |
Under GDPR, you have the right to:
To exercise any of these rights, please contact us via counting.to/contact. We will respond to your request within 30 days.
Where your data is transferred outside the EEA, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission. Our primary service providers (Convex and Stripe) maintain such safeguards for data transferred to the United States.
If you believe we have not handled your data properly, you have the right to lodge a complaint with your local data protection authority (e.g., the Information Commissioner's Office in the UK, or your national supervisory authority in the EU).
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA).
| Category | Examples | Collected |
|---|---|---|
| Identifiers | Name, email, IP address | Yes |
| Commercial information | Subscription history, payment records | Yes |
| Internet activity | Pages visited, interactions with the Service, browser/device info | Yes (limited; no third-party tracking) |
| Geolocation | General location inferred from IP address | Incidental only (not actively collected or used) |
| Biometric | Fingerprints, facial recognition | No |
| Professional/employment | Job title, employer | No |
To exercise your CCPA rights, contact us via counting.to/contact. We will verify your identity before processing your request and respond within 45 days.
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
Your continued use of counting.to after any changes constitutes your acceptance of the updated Privacy Policy.
If you have questions or concerns about this Privacy Policy or our data practices, please contact us: