Privacy Policy

Last updated: [DATE] · Applies to the FamilyTracking apps and familytracking.app

The plain-English summary

We collect the data needed to run a family locator — your account details, your device's location while you share it, your Circle structure, messages and settings — and nothing gathered for advertising, because we run none. Your location is visible only to Circles you joined; we never sell or broker it. Everything is encrypted in transit and at rest. You can pause sharing, export your data, and delete history or your whole account from the app, with deletion removed from backups within 30 days. The sections below are the binding detail.

1. Who we are

[ENTITY NAME], [registered address] (“FamilyTracking”, “we”), is the data controller for personal data processed under this policy. Contact: privacy@familytracking.app.

2. Data we collect

Account data: name, email and/or phone number, hashed credentials, plan status. Location data: device location while sharing is enabled, derived trips/stops, saved places, and history per your plan's retention (2/30/90 days). Content: messages, check-ins and photos shared in family chat. Device & diagnostics: device model, OS version, app version, battery level, crash and performance data. Billing: handled by Google Play / Apple — we receive subscription status, never card details. We collect no advertising identifiers and build no advertising profiles.

3. How we use it

To provide the service you configured (maps, alerts, SOS, reports); to secure accounts and prevent abuse; to provide support; to meet legal obligations; and to improve reliability using aggregated, non-identifying metrics. We do not use your data for advertising, do not sell it, and do not share it with data brokers.

4. Legal bases (EEA/UK)

Performance of contract (core service), consent (location sharing — withdrawable anytime in-app), legitimate interests (security, support, service reliability), and legal obligation. Children's accounts are created and consented to by a parent or guardian per Section 8.

5. Who can see your data

Members of Circles you joined see what membership shares (visible to you at acceptance and in Settings). Service providers process data under contract solely on our instructions: [hosting provider], [push-notification provider], [crash-analytics provider], [support-desk provider]. Authorities receive the minimum required by valid legal process; we prefer notifying users where lawful. No other disclosure occurs.

6. Retention & deletion

Location history is retained per plan (2, 30 or 90 days) and permanently deleted as it ages out. Account data persists while the account exists. Self-serve deletion of history ranges or the entire account takes effect immediately in production and within 30 days in rolling backups. Post-deletion, residual records required by law (e.g., billing) are retained only as long as mandated.

7. Security

TLS for all data in transit; encryption at rest with separated key management; need-to-know, audited internal access; no routine employee access to location data. Report vulnerabilities to security@familytracking.app.

8. Children

Accounts for children under 13 (or the applicable local age) are created, consented to and administered by a parent or guardian. Child data receives the same protections, is visible only within the family Circle, and is deleted on the same self-serve terms by the administering parent. We do not knowingly allow independent child accounts.

9. Your rights

Depending on your region (GDPR, UK GDPR, CCPA/CPRA and similar): access, portability/export, correction, deletion, restriction, objection, and the right not to be discriminated against for exercising them. Most are self-serve in the app; the rest via privacy@familytracking.app, answered within statutory deadlines. We do not sell personal information as defined by the CCPA. You may lodge complaints with your supervisory authority.

10. International transfers

Data is processed in [primary region(s)]. Where transfers cross jurisdictions, we rely on [adequacy decisions / Standard Contractual Clauses] with listed processors.

11. Changes

Material changes are announced in-app and on this page at least [14] days before taking effect, with the date above updated. Continued use after the effective date constitutes acceptance.