PapaTimePrivacy Policy
Last updated: 2026-05-03
Heads up: This is a placeholder draft. Before production launch, this page will be reviewed by counsel and replaced with a definitive policy. PapaTime handles parental-control data for households with minors, so COPPA and GDPR-K compliance review is required.
What data does PapaTime collect?
- Waitlist email — when you submit the form, we store the email address (hashed for deduplication), the submission timestamp, the source (landing form, calculator, etc.), and a coarse rate-limit token bucket keyed on IP address.
- iPad app data — once the app is installed: the device identifier (random UUID), token balance, chore list, session history, and the parent's Telegram chat ID for routing notifications. Stored in Firebase (Firestore) under the PapaTime project.
- Telegram bot interactions — the bot processes parent messages to manage settings. Messages are not stored long-term beyond the operational state needed (most-recent command, current state machine).
What data does PapaTime not collect?
- No advertising IDs.
- No browsing history outside the app.
- No location.
- No microphone or camera access by the iPad app itself.
- No PII about minors beyond what is required for the chore + token system (the child's first name and chore activity).
Where is data stored?
Google Cloud Firestore (Firebase) under the PapaTime project, primary region us-central1. Cloud Functions run in the same region. Email sending uses Resend. Analytics use Plausible (cookieless, GDPR-compliant by design — no cross-site tracking, no ad networks).
How long do we keep data?
- Waitlist email: until you ask us to delete it, or 24 months from last interaction, whichever comes first.
- iPad app data: while the device is paired. Account deletion in the app is supported per Apple App Store policy.
How do I delete my data?
Email hello@trypapatime.com from the address on file, or use the unsubscribe link in any email we send you. Deletion completes within 7 days.
Do you sell or share data?
No. PapaTime does not sell, rent, or trade personal data. We do not run advertising. We share data only with strictly-necessary processors: Telegram (for the bot interface), Apple (for App Store distribution), Google Cloud / Firebase (for storage), Resend (for email), and Plausible (for cookieless analytics).
Who do I contact for privacy questions?
Email hello@trypapatime.com.