KidSync — Privacy Policy

Last updated: 25 April 2026

KidSync is a family schedule organiser. We handle your family's data with the same care we would expect for our own. This policy explains what we collect, why we collect it, how it's protected, and how you can take it back.

1. Data we collect

From parents (when you create or join a family)

• Account info from Google Sign-In: display name, email, profile photo, Google account ID. Used to authenticate you and identify your row in the family.
• Phone number (optional): only if you choose to add it for WhatsApp share features.
• Family code: a 6-digit code for your family. Lets co-parents and guardians join.

From children (when you set up Kid Mode)

• Display name and avatar: entered by parent.
• 4-digit PIN: stored hashed, used only for Kid Mode entry.
• We do not collect children's email, phone, or any direct contact information.

What you create in the app

• Activities (titles, times, locations, recurring rules, assigned managers)
• Contacts (names + phone numbers + role tags for nanny, driver, etc.)
• Help requests sent from Kid Mode
• Activity history (audit log of edits)
• Optional: opt-in mirror to your phone's native calendar (Google/Apple/Outlook) — KidSync writes to it but never reads from it

Automatically

• Crash reports via Sentry (PII fields like email, phone, names, activity titles are stripped before transmission)
• Push notification tokens from Firebase Cloud Messaging — needed to deliver alerts

2. What we don't collect

• ❌ Location. We don't track GPS, geofences, or breadcrumbs. (Location features are not part of Phase 1.)
• ❌ Phone contacts. KidSync's contact list is separate from your phone's address book.
• ❌ Audio or microphone access.
• ❌ Browsing history or app usage outside KidSync.
• ❌ Advertising IDs. No ad SDKs are integrated.

3. How we use your data

Strictly to operate KidSync:

• Show your family's calendar across devices
• Detect scheduling conflicts
• Send notifications about activities, reassignments, kid requests, and Help button events
• Generate the optional weekly AI brief (using Google Gemini through Firebase AI Logic — Google contractually does not train on your data)
• Diagnose crashes (with PII removed)

We do not use your data to:

• Show ads
• Train models
• Sell, license, or transfer to anyone outside Anthropic's Firebase environment
• Share with marketing partners, analytics partners, or any third-party advertiser

4. Where your data lives

All your data is stored in Google Cloud Firestore (asia-south1, Mumbai region). Encrypted in transit using TLS, encrypted at rest using Google's default AES-256 encryption.

The only third parties who technically have any access:

• Google (Firebase): our infrastructure provider. Has access only as your bank's cloud provider does — for operational maintenance and only under legal compulsion. They don't read your data for advertising.
• Google (Gemini for AI brief): sees your weekly schedule once a week. Per Google's Vertex AI terms, they don't train models on this data.
• Google (Firebase Cloud Messaging): delivers push notifications. Notification payloads are scrubbed of activity titles — Google sees only an activity ID.
• Sentry: crash reports only. PII-scrubbed before transmission.

That's the complete list. KidSync employs no analytics partners, no advertising partners, no data brokers, no marketing automation, no behaviour-tracking tools.

5. Children's privacy

KidSync is designed for family use, including children under 13.

• Children's profiles are created and controlled only by parents/guardians.
• Children do not sign up for accounts and do not provide personal contact information directly.
• Kid Mode shows children only their own scoped data.
• Parents can delete a child's profile at any time, which removes all associated data within 30 days.

We comply with India's Digital Personal Data Protection Act (DPDP) 2023 children's-data provisions and operate consistently with COPPA (US) and GDPR-K (EU) principles even though India and Gulf are our primary markets.

6. Your rights

You can do all of the following directly from inside the app, without contacting support:

• Access: view all your family data on any signed-in device
• Export: More → Privacy → Export My Family Data — downloads everything as JSON
• Correct: edit any field at any time
• Delete a child: Children → [child] → Delete (instant)
• Delete the entire family: More → Privacy → Delete Family Forever (5-second hold-to-confirm, requires re-authentication, wipes all data within 30 days)

If you'd rather contact us, email romiuknw@gmail.com with the subject line "Privacy request" — we'll respond within 30 days.

7. Security

• Encryption in transit: TLS 1.2+ for all network traffic
• Encryption at rest: AES-256 (Google Cloud default)
• Firestore Security Rules: server-enforced rules ensure only family members can access their own family's data
• Role-based access: grandparents see only permitted children; nannies write only within assigned hours; children see only their own data
• PIN hashing: children's Kid Mode PINs are hashed
• No KidSync employee accesses your data routinely. KidSync is operated by a small team. Production database access is restricted and logged.

8. Retention

• Active families: we keep your data as long as your family exists in the app.
• Deleted families: data is wiped from active databases immediately and from backups within 30 days.
• Audit logs: kept indefinitely while the family exists, deleted with the family.
• Inactive families (no sign-in for 24 months): we'll email you once at 21 months, once at 24 months, then archive the family.

9. Help requests

When a child taps the Help button in Kid Mode, the request (reason and optional message, max 100 characters) is stored in Firestore so parents can act on it. KidSync does not analyse the content, share it with anyone, or use it for anything other than displaying it to the parents.

The Help button is a messaging feature, not an emergency service. For real emergencies, children should be taught to call local emergency services (police, ambulance, fire).

10. Changes to this policy

If we make a meaningful change, we'll notify you in-app and by email. Cosmetic updates (typos, link fixes) won't trigger a notification but will update the "last updated" date at the top.

11. Contact

Privacy questions, complaints, or requests: romiuknw@gmail.com

Operating address (data controller for India + Gulf): KidSync, Muscat, Sultanate of Oman.

This privacy policy was written to be read, not to hide things. If anything's unclear, email us — we'll fix the wording.