TasksBoard logo TasksBoard

Your Data Stays Private. Always.

2M+ users trust TasksBoard with their Google Tasks. We built enterprise-grade security into every layer, not as an afterthought, but from day one.

Trusted Certifications

Built to the Highest Standards

Independently verified and certified by leading security bodies worldwide.

ISO 27001

ISO 27001

Certified
GDPR Compliant

GDPR

Compliant
CASA Tier III

CASA Tier III

App Defense Alliance
Google Cloud Partner

Google Cloud

Verified Partner

How We Protect Your Data

Built-In Security at Every Layer

Security is not a feature; it is our foundation. Every decision we make starts with privacy and trust.

Minimal OAuth Scopes

TasksBoard only requests the tasks scope from Google. We never request access to Gmail, Drive, Calendar, or any other Google data. You authorize only what's needed to manage your tasks.

End-to-End Encryption

All data transmitted between your browser and our services is protected with TLS 1.2+. Your tasks data lives in Google's infrastructure and is never stored on our servers in an unencrypted form.

Your Tasks Stay in Google

All your tasks and lists are stored exclusively in Google Tasks via the official Google Tasks API. We only render what Google sends us in real time, we never copy, index, or retain your task data on our own servers.

Secure Infrastructure

Powered by Google Cloud

Our infrastructure is built on Google Cloud Platform, one of the world's most secure and compliant cloud environments.

Data Hosting

Hosted in Google Cloud Platform data centers with native backup and high availability. GCP is ISO 27001 certified and SOC 2 Type II compliant, one of the world's most audited cloud environments.

TLS 1.2+ & AES-256

All data in transit is protected with TLS 1.2+. Data at rest uses AES-256 server-side encryption with key management via GCP IAM, industry gold standard for protecting sensitive information.

Private Network & WAF

All components that process user data operate within TasksBoard's private network on Google Cloud. Each user's session is fully isolated, with servers behind load balancers and a web application firewall.

Independent Verification

Audited. Verified. Transparent.

We don't just claim security, we prove it through continuous independent testing and open disclosure.

Automated Perimeter Testing

All assets in scope are continuously monitored using the GCP Security Command Center with automated vulnerability scanning. Security reports are available to enterprise customers upon request.

Vulnerability Disclosure Policy

We welcome external security researchers to responsibly disclose vulnerabilities. Our Vulnerability Disclosure Policy outlines how to report issues and our commitment to a timely, transparent response.

Google User Data Policy

All use of data received from Google Tasks API adheres strictly to the Google User Data Policy, including the Limited Use requirements, verified by Google directly via the Google Workspace Marketplace review process.

2M+ users trust TasksBoard · 4.8/5 on Google Workspace Marketplace · Trusted by teams at Google, universities, and enterprises worldwide

Have a Security Question?

We're happy to discuss our security practices in detail. Reach out to our team or read our full privacy policy.

Contact Us Read Privacy Policy