Privacy Policy

Last updated: January 15, 2026

Important Notice: This privacy policy is a template and should be reviewed by legal counsel before publication. It is designed to be GDPR and COPPA compliant, but legal review is essential.

CyberNanny ("we," "our," or "us") is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services (collectively, the "Service").

Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the Service.

1. Information We Collect

1.1 Information You Provide

We collect information you provide directly to us, including:

  • Account Information: Name, email address, password, and phone number when you create an account
  • Profile Information: Information about family members you wish to protect, including names and relationships
  • Payment Information: Credit card or payment information processed through our secure payment processors
  • Communications: Information you provide when you contact our support team

1.2 Information Collected Automatically

When you use our Service, we automatically collect certain information, including:

  • Device Information: Device type, operating system, unique device identifiers
  • Usage Data: Features used, time spent on the app, crash data
  • Communication Patterns: Metadata about communications (not content) to detect threats

1.3 Communication Monitoring Data

Our Service monitors communications to detect potential threats. We want to be completely transparent about this:

  • Pattern Analysis: We analyze communication patterns to identify grooming behavior or scam tactics
  • Minimal Content Access: We access message content only when our AI detects a potential threat
  • On-Device Processing: Most analysis occurs on the device to minimize data transmission
  • Alert Generation: When threats are detected, alerts are generated for designated family members

2. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our Service
  • Detect and alert you to potential online threats
  • Process your transactions and send related information
  • Send you technical notices, updates, and support messages
  • Respond to your comments, questions, and customer service requests
  • Develop new features and services
  • Monitor and analyze trends, usage, and activities
  • Detect, investigate, and prevent fraudulent transactions and abuse

3. Data Security

We implement industry-standard security measures to protect your information:

  • Encryption in Transit: All data transmitted between your device and our servers uses TLS 1.3 encryption
  • Encryption at Rest: Sensitive data is encrypted using AES-256 encryption
  • Access Controls: Strict access controls limit who can access user data
  • Regular Audits: We conduct regular security audits and penetration testing
  • Incident Response: We maintain an incident response plan for potential data breaches

4. Data Retention

We retain your information for as long as your account is active or as needed to provide you services. Specifically:

  • Account Data: Retained until you delete your account
  • Communication Metadata: Retained for 90 days, then automatically deleted
  • Threat Alerts: Retained for 1 year for safety purposes
  • Payment Records: Retained as required by law (typically 7 years)

Upon account deletion, we will delete or anonymize your personal information within 30 days, except where retention is required by law.

5. Children's Privacy (COPPA Compliance)

Our Service is designed to protect children, and we take their privacy seriously:

  • Parental Consent: We require verifiable parental consent before collecting any information from children under 13
  • Limited Collection: We collect only information necessary to provide the protection service
  • No Advertising: We do not use children's information for advertising purposes
  • Parental Access: Parents can review, modify, or delete their child's information at any time
  • Parental Control: Parents can refuse further collection of their child's information

If you believe we have inadvertently collected information from a child without proper consent, please contact us immediately at privacy@cybernanny.app.

6. Your Rights Under GDPR

If you are a resident of the European Economic Area (EEA), you have certain data protection rights:

  • Right to Access: You can request copies of your personal data
  • Right to Rectification: You can request that we correct inaccurate information
  • Right to Erasure: You can request that we delete your personal data
  • Right to Restrict Processing: You can request that we limit how we use your data
  • Right to Data Portability: You can request your data in a machine-readable format
  • Right to Object: You can object to our processing of your personal data
  • Right to Withdraw Consent: You can withdraw consent at any time

To exercise any of these rights, please contact us at privacy@cybernanny.app. We will respond to your request within 30 days.

7. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act:

  • Right to Know: You can request disclosure of the categories and specific pieces of personal information we've collected
  • Right to Delete: You can request deletion of your personal information
  • Right to Opt-Out: You can opt-out of the sale of your personal information (note: we do not sell personal information)
  • Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

8. Data Sharing and Disclosure

We may share your information in the following circumstances:

  • With Your Consent: When you explicitly authorize sharing
  • Family Sharing: With designated family members as configured in your account
  • Service Providers: With third-party vendors who assist in providing our Service
  • Legal Requirements: When required by law, subpoena, or legal process
  • Safety: To protect the rights, property, or safety of CyberNanny, our users, or the public
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

9. Third-Party Services

Our Service may contain links to third-party websites or integrate with third-party services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies.

Third-Party Services We Use:

  • Payment Processing: Stripe (for payment processing)
  • Analytics: Privacy-focused analytics (no personal data shared)
  • Cloud Infrastructure: AWS/Google Cloud (with appropriate data processing agreements)

10. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the European Commission
  • Data Processing Agreements with all service providers
  • Compliance with applicable data protection laws

11. Cookies and Tracking

Our website uses minimal cookies necessary for functionality:

  • Essential Cookies: Required for website functionality
  • Analytics Cookies: Privacy-focused analytics (can be disabled)

We do not use advertising cookies or cross-site tracking.

12. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by:

  • Posting the new policy on this page
  • Updating the "Last Updated" date
  • Sending you an email notification for significant changes

13. Contact Us

If you have questions or concerns about this privacy policy or our data practices, please contact us:

For GDPR-related inquiries, you may also contact our EU Representative at: [EU Representative details to be added]