Privacy Policy

1. What data we collect

We may collect account information, provider setting details, parent contact details, child profile information, attendance logs, care logs, food records, incident and injury records, uploaded photos, billing records, and technical usage data required to operate and secure the service.

2. Why we process data

We process data to provide the service, authenticate users, store and display childcare records, support parent access, manage billing, secure accounts, troubleshoot issues, prevent misuse, and meet legal or regulatory obligations where applicable.

3. Legal bases

Depending on the context, processing may be carried out because it is necessary for contract performance, compliance with legal obligations, legitimate interests in running and securing the service, or consent where consent is specifically required.

4. Child data

Providers are responsible for ensuring they have a lawful basis and appropriate authority to upload, store, and share child-related data through the service. We do not independently verify that every provider has obtained all required notices, permissions, or consents.

5. Who we share data with

We may share data with service providers who help us operate the platform, such as hosting, storage, email delivery, payment processing, security, and infrastructure providers. We do not sell personal data.

6. Storage and security

We use technical and organisational measures intended to protect data, but no online service can be guaranteed to be completely secure. Users are responsible for maintaining password security and limiting access to authorised staff and family members only.

7. Retention

We retain data for as long as reasonably necessary to operate the service, meet contractual and legal obligations, resolve disputes, enforce terms, and maintain system integrity. Providers remain responsible for any statutory retention obligations that apply to their childcare records.

8. International transfers

Depending on the infrastructure used to operate the service, data may be processed or stored outside your home jurisdiction. Where required, we aim to use appropriate contractual or technical safeguards for those transfers.

9. Your rights

Depending on applicable law, you may have rights to request access, correction, deletion, restriction, objection, portability, or withdrawal of consent where consent is the legal basis. Some rights may be limited where data must be retained for legal, safeguarding, billing, or record integrity reasons.

10. Parents and linked access

Parent access is created and managed by provider users. If a parent believes they have been given incorrect or inappropriate access, they should contact the provider directly and notify us as soon as possible.

11. Cookies and technical logs

We may use session cookies, authentication cookies, and technical logs necessary for login, account security, navigation, and service reliability.

12. Changes to this policy

We may update this policy from time to time. Continued use of the service after changes take effect means the updated policy will apply from that point onward.