BabyTrack Privacy Policy
Last updated: 12 May 2026
1. Introduction
BabyTrack ("we", "our", "the app") is a baby care tracking application. We take your privacy and the privacy of your family seriously. This policy explains what data we collect, how we use it, and your rights.
2. Data We Collect
- Account information: Email address, name (used for authentication and identification).
- Baby profiles: Baby name, date of birth, gender.
- Care tracking data: Feeding records, sleep logs, nappy changes, activities, illness records, medications, growth measurements, milestones, vaccinations, allergens, and mood entries.
- Usage data: Feature usage patterns to improve the app (no personal health data is shared with analytics providers).
3. How We Use Your Data
- To provide and operate the baby care tracking service.
- To generate reports and insights about your baby's care patterns.
- To sync data across your devices.
- To enable shared access with caregivers you invite.
- If you opt in, to contribute anonymised benchmarks that help all parents.
4. Data Storage & Security
- All data is stored in Amazon Web Services (AWS) in the eu-west-2 (London, UK) region.
- Data is encrypted at rest and in transit using industry-standard encryption (AES-256, TLS 1.2+).
- Authentication is managed by AWS Cognito with secure password hashing.
- We do not sell, rent, or share your personal data with third parties for marketing purposes.
5. Children's Privacy (COPPA & Age Verification)
BabyTrack is designed for parents and caregivers, not for children. The app does not collect data directly from children. All data is entered by the parent or caregiver. We comply with the Children's Online Privacy Protection Act (COPPA) and do not knowingly collect information from children under 13.
6. GDPR Compliance
If you are in the European Economic Area (EEA), you have the following rights:
- Access: Request a copy of your personal data.
- Rectification: Correct inaccurate data.
- Erasure: Request deletion of your data ("right to be forgotten").
- Portability: Export your data in a standard format (CSV export available in-app).
- Restriction: Restrict processing of your data.
- Objection: Object to processing of your data.
Our legal basis for processing is your consent (account creation) and legitimate interest (providing the service).
7. Data Retention
Your data is retained as long as your account is active. If you delete your account, all associated data is permanently deleted within 30 days. Free-tier accounts retain 7 days of event history.
8. Third-Party Services
- AWS (Amazon Web Services): Cloud infrastructure (data storage, Lambda compute, Cognito authentication) hosted in eu-west-2 (London).
- Stripe: Payment processing for subscriptions on the web. We do not store credit card details.
- Apple In-App Purchase: Payment processing for subscriptions on iOS. Apple handles all card information directly.
9. Advertising
BabyTrack does not display advertisements. We do not share your data with advertising networks.
10. Changes to This Policy
We may update this policy from time to time. We will notify you of significant changes via the app or email.
11. Contact Us
If you have questions about this privacy policy or wish to exercise your data rights, please contact us at:
Email: privacy@babytrack.app