Privacy Policy

Last Updated: April 2026

FamilyYak ("we", "us", "our") is a family life management app. We take your privacy seriously — especially when it comes to information about your children. This policy explains what data we collect, why, and how you can control it.

1. Data We Collect

Account Information

• Email address — used for authentication (via Supabase), household invitations, and account recovery
• Password — stored as a hash by Supabase; we never see or store your plaintext password

Household & Child Information

• Household name — chosen by you (e.g. "The Smiths")
• Location (optional) — city/state level, used to personalize AI suggestions
• Interests (optional) — topics you care about, used to personalize AI suggestions
• Child birth month and year — used to determine developmental stage. We intentionally do not collect exact birth dates
• Child notes (optional) — free-text notes you add about your child
• Child avatar selection — a chosen icon, not a photo

We do not collect child names for AI processing. When your data is sent to our AI provider, children are anonymized as "Child 1", "Child 2", etc.

Content You Create

• Task lists and items
• Progress on stage topic items
• Family decisions and notes
• Growth goals
• Routines
• Calendar subscriptions (iCal feed URLs you provide)

Analytics

We use PostHog for product analytics and error tracking. PostHog receives:

• An anonymous user identifier (your Supabase user ID — a UUID)
• Feature usage events (e.g. "viewed stage", "created task")
• Error reports for debugging
• Device type and browser information

We do not send your email address, child information, or any personally identifiable information to PostHog.

2. How We Use Your Data

• Provide the service — show you age-appropriate content, track your progress, manage your household
• AI-powered features — generate personalized insights, suggestions, and recommendations using the Claude API (by Anthropic). See Section 3 for details
• Improve the product — understand which features are used and fix bugs via anonymized analytics
• Communicate with you — household invitation emails and account-related notifications

3. AI Data Handling

FamilyYak uses Anthropic's Claude API to generate personalized insights and suggestions. When we send data to the AI:

• Child names are never sent — children are referred to as "Child 1", "Child 2", etc.
• Only the minimum context needed is sent: child's age (month/year), optional household location, interests, and child notes
• AI responses are cached in our database after first generation — we don't re-send your data for repeat views
• Anthropic does not use API inputs to train their models. See Anthropic's privacy policy for details

4. Data Storage & Security

• Your data is stored in a PostgreSQL database hosted by Supabase (AWS infrastructure)
• The application backend is hosted on Railway
• All connections use TLS/HTTPS encryption in transit
• Database backups are maintained by Supabase
• Authentication tokens use industry-standard RS256 JWT signing

5. Data Sharing

We do not sell your data. We share data only with:

• Supabase — authentication and database hosting
• Anthropic — AI features (anonymized, as described in Section 3)
• PostHog — anonymized analytics and error tracking
• Railway — application hosting
• Resend — transactional emails (household invitations)

We may disclose data if required by law or to protect the safety of our users.

6. Your Rights

You can:

• Access your data — everything you've entered is visible in the app
• Edit or correct — update your household, children, and content at any time
• Delete your account — use the account deletion feature in the app. This permanently removes your account, personal data, and disassociates you from any household content
• Request data export — contact us and we'll provide your data in a standard format

For EU/EEA users: you have additional rights under GDPR including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority. Contact us to exercise these rights.

7. Children's Privacy (COPPA)

FamilyYak is designed for use by parents, guardians, and caregivers — not by children. We do not knowingly collect personal information directly from children under 13. All child-related data (birth month/year, notes) is entered and managed by the parent or guardian.

If you believe a child under 13 has provided us with personal information without parental consent, please contact us and we will promptly delete it.

8. Cookies & Tracking

FamilyYak uses essential cookies for authentication (session tokens). Our analytics provider (PostHog) may use cookies or local storage for anonymous usage tracking. We do not use third-party advertising cookies.

9. Data Retention

We retain your data for as long as your account is active. If you delete your account, your personal data is permanently removed. Anonymized analytics data may be retained for product improvement purposes.

10. Changes to This Policy

We may update this policy from time to time. We'll notify you of significant changes via the app or email. Continued use after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or want to exercise your data rights, contact us at: privacy@familyyak.com