🔒

Privacy Policy

Baby Tracker IL
Last updated: February 19, 2026

For privacy-related inquiries, contact us at tinoktracker@gmail.com.

1. Data Controller

Baby Tracker IL ("the App") is independently developed and operated from Tel Aviv, Israel.

2. About This Policy

This Privacy Policy explains how we collect, use, store, share, and protect your personal information, including special category health data, when you use Baby Tracker IL.

By creating an account, you agree to the practices described here. This policy is designed to comply with applicable data protection laws, including the Israeli Protection of Privacy Law (5741-1981) and the EU General Data Protection Regulation (GDPR) where applicable.

3. Legal Basis for Processing

Account data (email, name): Performance of a contract (GDPR Art. 6(1)(b)).
Device and technical data: Legitimate interest (Art. 6(1)(f)) to ensure compatibility and fix bugs.
Push notifications: Consent (Art. 6(1)(a)).
Advertising (free tier): Legitimate interest (Art. 6(1)(f)) for non-personalized ads via Google AdMob.
AI parenting assistant: Explicit consent (Art. 6(1)(a)).

Health data (GDPR Art. 9): The App processes health-related data such as pregnancy tracking, contractions, growth, vaccinations, feeding/sleep/diaper logs, and related medical information. The legal basis is your explicit consent (Art. 9(2)(a)). You may withdraw consent at any time by deleting your child profile or account.

4. Information We Collect

Information you provide:

Account details (email, display name, profile photo).
Child profile details (name, date of birth, due date, sex, birth metrics, clinic details).
Pregnancy, contractions, growth, medical records, milestones, feeding, sleep, diapers, and teeth tracking data.
AI assistant questions and responses.
Caregiver invitation data (emails, roles, invitation status).
Feedback messages sent in-app.

Automatically collected information: Device type, OS version, app version, language, and non-personalized ad interaction data (free tier only).

Biometric data: If enabled, biometric templates stay on your device and are never transmitted or stored by us.

Calendar access: Calendar entries are written locally on your device and not transmitted to our servers.

5. How We Use Your Information

Provide pregnancy and baby development tracking features.
Display Israeli medical timelines and WHO growth standards.
Generate growth charts and percentile comparisons.
Send optional reminders (feeding, sleep, diaper) if enabled.
Power the "Is This Normal?" AI assistant using contextual child data.
Support caregiver sharing and profile collaboration.
Respond to support/feedback, improve stability, and fix bugs.
Display non-personalized ads for free-tier users and process subscriptions via RevenueCat.

We do not use your data for commercial profiling, automated decision-making, or sale/rental to third parties.

6. Data Sharing and International Transfers

We do not sell, rent, or trade personal information. We use trusted processors such as Supabase, Resend, Expo, Google Gemini AI, Google AdMob, RevenueCat, and Apple APNs/Google FCM.

Some processors are based in the United States. International transfers rely on safeguards such as Standard Contractual Clauses (SCCs) and relevant compliance frameworks.

If you invite caregivers, they may view and edit child data according to assigned roles. You are responsible for having appropriate consent before sharing child data.

7. Data Security

Row-Level Security (RLS) at database level.
TLS 1.2+ encryption in transit.
AES-256 encryption at rest.
Secure authentication with JWT tokens.
Minimum-necessary access principle for service providers.

8. Data Breach Notification

In case of a qualifying personal data breach, we will notify competent authorities and affected users as required by applicable law (including GDPR Articles 33 and 34).

9. Children's Privacy

The App is intended for adults (parents/legal guardians), not for users under 16. Child-related data is entered by the adult account holder, who is responsible for data accuracy and legal authority to provide it.

If we learn that data from a person under 16 was collected without verified parental consent, we will delete it promptly.

10. Your Rights

Access, rectification, erasure, restriction, portability, objection, and consent withdrawal rights under applicable law.
Account deletion is available in-app (Settings > Delete Account) or by email request.
We respond to valid requests within 30 days (extendable by up to 60 days for complex cases).

You may lodge a complaint with the Israeli Privacy Protection Authority: gov.il/en/departments/the_privacy_protection_authority.

11. Data Retention

Data is retained while your account is active.
Deleted child profiles and deleted accounts are permanently erased within 30 days.
Feedback messages may be retained up to 12 months.
Caregiver invitations expire automatically after 7 days.
Infrastructure logs are subject to processor retention policies.

After deletion, data cannot be recovered.

12. Changes to This Policy

We may update this policy from time to time. For significant changes, we provide advance notice via email or in-app messaging. If changes affect health data processing, renewed explicit consent will be requested where required.

13. Governing Law

This policy is governed by the laws of the State of Israel. Disputes are subject to the competent courts in Tel Aviv-Jaffa, Israel.

For EU users, nothing in this policy limits your GDPR rights, including local complaint rights and access to courts in your country of residence.