BabyLock Privacy Policy

Journal entries, reflection responses, mood check-ins, and photos you create in BabyLock are stored on your device by default, not on our servers. We do not see or keep a server-side copy of that private content as part of the core BabyLock experience.

Because this information is stored locally on your device, deleting the app, erasing your device, or losing access to your device may permanently delete it.

We collect the minimum amount of information needed to operate BabyLock and provide the features you choose to use, such as:

• your name and email address, if you provide them;
• your push notification token, so we can deliver reminders or unlock-related notifications;
• subscription, billing, and entitlement metadata provided through Apple and RevenueCat so we can manage purchases and access;
• diagnostic, crash, and analytics information about app usage and performance; and
• technical data needed for backend APIs and notification delivery.

We use analytics and crash reporting tools to understand app stability, feature usage, and reliability. We do not use those tools to collect the contents of your journal entries, mood responses, or photos. We do not sell personal information, and we do not use user-generated content for advertising.

We use information we collect to:

• provide core app functionality;
• send push notifications you enable;
• manage subscriptions and service access;
• monitor reliability, troubleshoot issues, and improve the product;
• respond to support requests and comply with legal obligations.

Depending on the features you use, BabyLock may request the following iOS permissions:

• Push Notifications: to help bring you back into BabyLock when certain apps are locked and an unlock flow is ready.
• App Tracking Transparency: so we can measure the performance of our advertising.
• Camera: so you can take a picture as part of a reflection.
• Photo Library or Camera Roll: so you can view, select, or edit pictures for a given day.
• Screen Time or Family Controls: BabyLock uses Apple's iOS Family Controls APIs to block and unlock selected apps on your device.
• Face Data: BabyLock does not use facial recognition, biometric identification, face templates, or face geometry. If a photo contains a face, we do not extract face data or use it for identity verification.

You can manage app permissions at any time in iOS Settings. Some features may not work if the required permission is denied.

We do not sell your personal information. We use service providers only where needed to operate BabyLock, including:

• Cloudflare, for backend APIs and push notification alert infrastructure;
• PostHog, for product analytics;
• Sentry, for crash reporting and diagnostics;
• RevenueCat, for paywalls, subscriptions, and entitlement management;
• Apple App Store, for payments and billing.

These providers may process only the information needed to perform their services for us and remain subject to their own terms and privacy policies.

Information stored on your device generally remains there until you delete it, uninstall the app, reset your device, or lose access to the device. We cannot recover local-only content deleted from your device because we do not keep it on our servers.

Server-side account and service data may be retained as long as reasonably needed to operate the service, comply with law, resolve disputes, or enforce agreements.

BabyLock is designed for parents and caregivers. It is not intended for children to create their own accounts independently. If you believe personal information about a child was provided to us in a way that should be removed, contact support@babylock.app.

We use reasonable administrative, technical, and organizational measures to protect information we process. No method of storage or transmission is completely secure, so we cannot guarantee absolute security.

Depending on how you use BabyLock, you may be able to review, update, or delete certain account information, disable notifications, uninstall the app, or manage subscriptions through Apple. If you delete the app, local content stored only on your device may also be deleted and cannot be restored by us. You can also contact us regarding privacy requests where applicable law gives you those rights.

We may update this Privacy Policy from time to time. When we do, we will post the updated version on this page and revise the "Last updated" date.

BabyLock is operated by Caldera LLC. If you have privacy questions, contact support@babylock.app.