Apple App Store Compliance: This Privacy Policy satisfies the requirements of Apple's App Store Review Guidelines (Section 5.1 — Privacy) and Apple's App Privacy Details requirements, including the App Privacy Nutrition Label. It covers all data types collected by the Family Hub iOS application and associated web services.

1. Who We Are

Family Hub is a family organizer application developed and operated by Family Hub, Inc. ("Family Hub," "we," "us," or "our"). Family Hub provides a shared family calendar, AI-powered meal planning, real-time location sharing, task management, shopping lists, document storage, and an AI family assistant ("Dobby") through our mobile applications and web platform.

Company Name	Family Hub, Inc.
Website	family-hub.ai
App Store Listing	Family Hub — Family Organizer
Primary Market	United States
Privacy Contact	[email protected]
Support Contact	[email protected]
Mailing Address	To be updated upon company registration

2. Scope of This Policy

This Privacy Policy applies to:

The Family Hub iOS application (App Store)
The Family Hub Android application (Google Play)
The Family Hub web application at family-hub.ai
All associated backend services and APIs operated by Family Hub, Inc.

This Policy applies to all users of Family Hub, including account holders ("Parents" or "Account Owners"), secondary adult family members ("Members"), and child accounts created and managed by a parent or guardian ("Child Members").

This Privacy Policy does not apply to third-party services or websites that Family Hub may link to. Those services have their own privacy policies, which we encourage you to review.

3. Information We Collect

We collect information in three ways: information you provide to us directly, information collected automatically when you use our services, and information received from third parties in connection with delivering our services.

3.1 Information You Provide Directly

Account Registration

Full name
Email address
Password (stored as a bcrypt hash — we never store your plaintext password)
Profile photo (optional)
Family name (e.g., "The Johnson Family")

Family Members

Names and profile photos of family members you add
Each member's role (parent/guardian or child)
Date of birth for child accounts (used to apply appropriate content settings and parental consent mechanisms; not shared with third parties)

Calendar and Tasks

Event titles, dates, times, locations, and descriptions you create
Task names, due dates, assignments, and completion status
Recurring event patterns and reminder settings

Meal Planning and Recipes

Dietary preferences and restrictions (e.g., vegetarian, nut allergy, gluten-free)
Recipes you save, create, or import
Meal plans and cooking history
Shopping list items and grocery preferences

Location Information

GPS coordinates, when you choose to enable location sharing (Plus and Premium tiers only)
Named Places ("geofences") you create, including their address and radius
Manual check-ins you choose to share
Driving behavior data (speed, acceleration, braking events) for Premium subscribers who enable Driving Safety Reports

Documents

Files you upload to the Document Vault (e.g., insurance cards, medical records, school documents)
Document names, expiry dates, and descriptions you provide

Communications

Messages sent within Family Chat
Voice messages sent within Family Chat (Plus and Premium tiers)
SOS alerts you trigger, including the GPS coordinates at the time of the alert

AI Assistant (Dobby) Interactions

Text queries you submit to Dobby, our AI family assistant
Voice queries you submit to Dobby (Premium tier only)
Dobby's responses and any follow-up interactions

Subscription and Payment

Subscription tier (Free, Plus, or Premium)
Billing history and subscription status

Note: Payment card details are processed exclusively by Stripe, Inc. Family Hub never receives, stores, or transmits your full payment card number, CVV, or bank account details. We receive only a tokenized reference from Stripe.

3.2 Information Collected Automatically

Device and Technical Information

Device type, operating system, and OS version
App version
Device identifier (IDFV — Identifier for Vendor on iOS; not IDFA, which requires explicit consent)
IP address (used for security and fraud prevention; not used for targeted advertising)
Crash reports and diagnostic data

Usage Information

Features used and frequency of use (e.g., how often the Family Map is opened)
Session duration and navigation patterns within the app
Notification interaction data (whether push notifications are opened)

Location Information (Automatic)

GPS coordinates, accuracy, speed, and bearing — collected in the background when a Plus or Premium subscriber has enabled live location sharing
Device battery level — included with each location update
Accelerometer data — collected locally on-device during detected drive sessions (Premium subscribers with Driving Safety Reports enabled). Crash detection analysis occurs on-device; only flagged events are sent to our servers.

Location data is only collected when a family member has explicitly enabled location sharing. Each family member can pause or disable their location sharing at any time from within the app. Location collection stops immediately when sharing is paused or disabled.

3.3 Information From Third Parties

Third Party	Data Received	Purpose
Google Maps Platform	Reverse-geocoded address strings from latitude/longitude coordinates	Display human-readable location names on the Family Map
Google Maps Directions API	Estimated travel times and traffic data	Calculate smart departure times for calendar events
Firebase (Google)	Push notification delivery receipts	Confirm delivery of family alerts and SOS notifications
Stripe, Inc.	Subscription status and payment events (webhooks)	Maintain accurate subscription tier and billing records
Apple Push Notification Service (APNs)	Push notification delivery tokens	Deliver notifications to iOS devices

4. How We Use Your Information

4.1 Providing and Operating the Service

Creating and managing your Family Hub account and family group
Displaying your family's shared calendar, tasks, shopping lists, and meal plans
Showing the real-time Family Map to Plus and Premium subscribers
Sending geofence arrival and departure notifications when a family member enters or leaves a named Place
Delivering SOS alerts and crash detection notifications
Generating AI-powered meal suggestions and shopping lists through Dobby
Processing and fulfilling subscription purchases via Stripe

4.2 Safety and Security

Authenticating users and preventing unauthorized account access
Detecting and responding to fraudulent activity, abuse, and security incidents
Delivering SOS and crash detection alerts — safety-critical notifications bypass Do Not Disturb on iOS (Critical Alerts) and use high-priority delivery on Android
Maintaining audit logs of SOS events and crash detection events for safety purposes

4.3 Improving the Service

Analyzing aggregated, anonymized usage patterns to understand how families use Family Hub and to prioritize new features
Using crash reports and diagnostic data to identify and fix software bugs
Evaluating and improving the accuracy of Dobby's AI responses (using aggregated interaction data only; individual conversations are not used to train AI models without your explicit consent)

4.4 Communications

Sending transactional emails (account verification, password reset, subscription receipts)
Sending in-app and push notifications related to your family's activity (geofence alerts, SOS alerts, calendar reminders, departure reminders, low battery warnings)
Sending product update announcements and feature release notifications (you may opt out of marketing communications at any time)

4.5 Legal Compliance

Complying with applicable laws, regulations, and legal processes
Enforcing our Terms of Service
Responding to lawful requests from government authorities

Our absolute commitments: We do not use your personal information for targeted advertising. We do not sell your data to third parties. We do not use your location data for any purpose other than delivering the Family Hub location features you have enabled. These commitments are not qualified by tier, territory, or time period.

5. Legal Basis for Processing (US & International)

For users in the United States, our use of your information is governed by our Terms of Service and applicable US federal and state law, including the California Consumer Privacy Act (CCPA/CPRA) where applicable.

For users in jurisdictions with data protection laws (including the EU, UK, and others), we process your personal information on the following legal bases:

Legal Basis	Data Processed	Example
Contract performance	Account data, subscription data, core app features	Displaying your calendar and sending your location updates to family members
Legitimate interests	Diagnostic data, crash reports, usage analytics	Fixing bugs that affect app reliability
Consent	Location data, camera/photo library access, push notifications	Collecting GPS coordinates for the Family Map (you explicitly grant permission)
Legal obligation	Account and transaction records	Responding to a valid court order
Vital interests	SOS event data, crash detection data	Sharing GPS coordinates with family members during an SOS event

6. How We Share Your Information

We do not sell, rent, or license your personal information to any third party. We share information only as described below.

6.1 Within Your Family Group

Family Hub is designed to share certain information within your family group. When you use Family Hub:

Your current location (if enabled) is visible to all members of your family group
Your name, profile photo, and battery level are visible to all family members
Messages you send in Family Chat are visible to all family members
Calendar events, tasks, shopping lists, and meal plans you create are shared with your family group
SOS alerts you trigger are sent immediately to all family members

Location sharing is always visible and consensual — every family member can see that location sharing is active, who is sharing, and what data is being shared. Family Hub cannot be configured to hide location collection from the person being tracked. Each member controls their own location sharing.

6.2 Service Providers

We share information with trusted service providers who assist us in operating Family Hub. All service providers are contractually required to use your data only to provide services to us and are prohibited from using it for any other purpose.

Provider	Service	Data Shared
Google Cloud Platform	Cloud infrastructure and hosting	All app data (encrypted at rest and in transit)
Google Maps Platform	Maps, geocoding, routing	GPS coordinates (for reverse geocoding and routing only)
Firebase (Google)	Real-time database, push notifications	Location updates, notification tokens
Stripe, Inc.	Payment processing	Email address, subscription plan, billing events
Anthropic / AI Provider	AI language model powering Dobby	Text content of queries submitted to Dobby (processed in real-time; not retained for model training)
Apple (APNs)	iOS push notification delivery	Device push tokens and notification payload
RapidSOS / Emergency Partner	Emergency dispatch (Safety Pack add-on only)	GPS coordinates and member name — only when emergency dispatch is triggered

6.3 Legal Requirements

We may disclose your information if required to do so by law, or if we believe in good faith that such disclosure is necessary to comply with a legal obligation, court order, or valid government request; protect the rights, property, or safety of Family Hub, our users, or the public; or prevent or investigate possible wrongdoing in connection with the service. We will notify affected users of any government data requests to the extent permitted by law.

6.4 Business Transfers

If Family Hub is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice in the app before your information is transferred and becomes subject to a different privacy policy.

6.5 What We Do Not Do

We Do NOT	We DO
Sell your location data to advertisers, data brokers, or insurance companies	Use your location only to show your family where you are on the Family Map
Display ads or allow advertisers to target you based on your data	Operate an entirely ad-free service funded by subscription revenue only
Track family members without their knowledge or consent	Require transparent, mutual location sharing — every member can see who is sharing and can pause at any time
Use your Dobby conversations to train AI models	Process Dobby queries in real-time and delete them from AI provider systems after response delivery

7. Children's Privacy

Important: Family Hub is designed for use by families including children. We take children's privacy seriously and comply with the Children's Online Privacy Protection Act (COPPA) and applicable state laws.

7.1 Child Accounts

Family Hub allows parents and guardians to create accounts for children under the age of 13. The following rules apply to child accounts:

Child accounts can only be created by an adult parent or guardian who is the Account Owner of the family group.
By creating a child account, the Account Owner provides verifiable parental consent for the collection and use of the child's information as described in this Policy.
We collect the minimum information necessary for child accounts: the child's first name, an optional profile photo chosen by the parent, and (if location sharing is enabled by the parent) GPS coordinates.
We do not require child accounts to provide an email address, date of birth for any purpose other than applying age-appropriate settings, or any other personal information beyond their first name.
Child accounts cannot independently enable location sharing — location sharing for a child must be configured by the parent or guardian who manages the account.
Child account data is treated with the same protections as adult account data and is never shared with third parties for advertising, analytics, or any commercial purpose.

7.2 Children Ages 13–17

For children ages 13 and over, Family Hub treats their accounts in the same manner as adult accounts, with the following additional protections:

Teen members can view their own location history and driving reports.
Teen members can pause their own location sharing at any time. Parents cannot override a teen's decision to pause location sharing — this is by design to preserve trust.
Family Hub does not display advertising to any user, including teenagers.

7.3 Parental Rights Under COPPA

If you are a parent or guardian and believe your child's information has been collected without your consent, please contact us at [email protected]. We will:

Verify your identity as the child's parent or guardian
Provide you with a description of the personal information we have collected from your child
Give you the opportunity to review and delete the personal information
Refuse to allow further collection or use of the information at your request

We do not knowingly collect personal information from children under 13 without verifiable parental consent. If we discover we have collected such information without consent, we will delete it promptly.

8. Data Retention

We retain your information for as long as your account is active and as necessary to provide you with Family Hub's services. The following specific retention periods apply:

Data Type	Retention Period	Notes
Account and profile data	Until account deletion + 30 days	30-day grace period allows account recovery
Location history (GPS waypoints)	30 days maximum	Deleted by nightly cron job. All tiers. Cannot be extended.
Geofence events (arrival/departure logs)	90 days	Allows review of recent family movements for safety purposes
SOS event records	1 year	Retained for safety audit purposes; accessible to Account Owner
Crash detection event records	1 year	Retained for safety audit purposes
Driving session data (routes and events)	90 days	After 90 days, aggregated weekly summary is retained; raw route data deleted
Family Chat messages	Until account deletion	Messages are stored to enable message history within the family group
AI assistant (Dobby) query logs	30 days (Family Hub servers)	Queries sent to AI provider are not retained by the provider after response delivery
Calendar events and tasks	Until deleted by user or account deletion	Completed past events retained until user deletes them
Documents in Document Vault	Until deleted by user or account deletion	Documents are encrypted at rest
Payment and subscription records	7 years	Required for financial and tax compliance
Diagnostic and crash logs	90 days	Used for debugging; automatically purged

When you delete your account, we begin the deletion process immediately. Most personal data is deleted within 30 days. Aggregate, anonymized analytics data that cannot be linked to you individually may be retained indefinitely. Subscription and transaction records are retained for 7 years as required by law.

9. Apple App Privacy Details (Nutrition Label)

9.1 Data Used to Track You

Family Hub does NOT use any data to track you across apps or websites owned by other companies. We do not use IDFA (Identifier for Advertisers). We do not participate in ad networks, data brokers, or behavioral tracking.

9.2 Data Linked to You

Data Category	Data Type	Purpose
Contact Info	Name, email address	Account creation, login, support communications
Health & Fitness	Dietary restrictions (if provided)	Personalizing meal planning suggestions via Dobby
Location	Precise location (GPS)	Family Map, geofencing alerts, departure reminders. Plus and Premium tiers only. Collected only when member enables location sharing.
Sensitive Info	Documents uploaded by user	Document Vault storage. Never analyzed, indexed for advertising, or shared.
User Content	Photos, messages, calendar events, recipes	Providing core app functionality (Family Chat, calendar, recipe library)
Identifiers	User ID (internal), IDFV	Account management and app functionality. IDFV only (not IDFA).
Usage Data	App interactions, feature usage	Improving the app and understanding feature adoption
Diagnostics	Crash data, performance data	Identifying and fixing bugs
Financial Info	Subscription tier (not payment card data)	Determining which features are available to the account

9.3 Data Not Linked to You

Aggregated crash reports (device type and OS version) are associated with crash reports but not linked to your account.

9.4 Data Not Collected

Family Hub does not collect: browsing history, search history, purchases (payment card data — handled exclusively by Stripe), other financial information, health data beyond dietary preferences for meal planning, or contacts from your device's address book.

10. Your Privacy Rights

10.1 Rights Available to All Users

Right to Access — You can view most of your personal data directly within the Family Hub app. You may also request a full export of your data by emailing [email protected].
Right to Correction — You can update your name, email address, profile photo, dietary preferences, and other information at any time from the app's Settings screen.
Right to Deletion — You can delete your account from Settings > Account > Delete Account. This initiates the deletion of your personal data within 30 days.
Right to Pause Location Sharing — Every family member can pause or disable their location sharing at any time from the Family Map screen. This takes effect immediately.
Right to Opt Out of Marketing Communications — You can opt out of marketing emails by clicking "Unsubscribe" in any marketing email or by adjusting notification settings in the app.

10.2 California Residents (CCPA/CPRA)

California residents have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):

Right to Know — You have the right to know what personal information we collect, use, disclose, and sell. We do not sell personal information.
Right to Delete — You have the right to request deletion of your personal information, subject to certain exceptions.
Right to Opt Out of Sale — We do not sell personal information. No opt-out is required, but it is available at family-hub.ai/privacy.
Right to Non-Discrimination — We will not discriminate against you for exercising your privacy rights.
Right to Correct — You have the right to request correction of inaccurate personal information.
Right to Limit Use of Sensitive Personal Information — We do not use sensitive personal information (such as precise geolocation) for any purpose other than providing the service features you have enabled.

To exercise any of these rights, contact us at [email protected] or through the in-app support channel. We will respond within 45 days of receiving a verifiable request, as required by CCPA.

10.3 Exercising Your Rights

To submit a privacy request, you can:

Email: [email protected] — include "Privacy Request" in the subject line
In-app: Settings > Privacy > Submit Data Request

We will verify your identity before processing any request. For account deletion requests, we may ask you to confirm the request from the email address associated with your account.

11. Data Security

We implement industry-standard security measures to protect your information:

Encryption in transit — All data transmitted between your device and Family Hub's servers uses TLS 1.2 or higher.
Encryption at rest — All data stored in our databases and file storage is encrypted at rest using AES-256.
Password hashing — Passwords are stored using bcrypt with a work factor of 12 or higher. We never store plaintext passwords.
Document Vault — Documents are encrypted with per-user keys before storage.
Access controls — Access to production systems and user data is restricted to authorized personnel on a need-to-know basis, with multi-factor authentication required.
Security audits — We conduct regular security reviews and penetration testing.
No indefinite location retention — GPS location data is automatically deleted after 30 days. There is no mechanism to retain it longer.

No method of electronic transmission or storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security. In the event of a data breach that affects your personal information, we will notify you as required by applicable law.

12. iOS App Permissions

Family Hub requests the following iOS system permissions. Each permission is optional unless otherwise noted, and we explain why we need each one:

Permission	Required?	Purpose and Usage
Location — Always (Background)	Optional	Required for live location sharing on the Family Map (Plus and Premium tiers). Only requested when you choose to enable location sharing. You may decline; the app functions without it (manual check-ins only).
Location — When In Use	Optional	Used for departure reminders and to display your location on the map when the app is in the foreground. Requested when you first open the Family Map.
Push Notifications	Strongly Recommended	Required to receive geofence alerts, SOS notifications, departure reminders, and low battery warnings. You can use the app without notifications, but safety features will be significantly limited.
Camera	Optional	Used to take photos for your profile picture or to scan documents for the Document Vault. Only accessed when you actively use these features.
Photo Library	Optional	Used to select existing photos for your profile picture or to upload images to the Document Vault. Only accessed when you actively use these features.
Microphone	Optional	Used for voice messages in Family Chat (Plus and Premium) and voice interaction with Dobby (Premium). Only accessed when you actively record a voice message or use voice input.
Motion & Fitness (Accelerometer)	Optional	Used for Crash Detection and Driving Safety Reports (Premium tier only). Accelerometer data is analyzed on-device; only flagged events are transmitted to our servers. Only active when drive detection is enabled.
Contacts	Never Requested	Family Hub does not access your device's Contacts. Family members are added by invitation via email or QR code, not by scanning your address book.
Bluetooth	Optional	Used for GPS watch integration (Safety Pack add-on). Only requested if you choose to connect a GPS watch device.

You can review and change these permissions at any time from your iPhone's Settings > Privacy & Security menu.

13. Third-Party Services and Links

Family Hub may contain links to third-party websites or services (such as recipe sources, school websites linked in calendar events, or external resources). These third parties operate independently of Family Hub and have their own privacy policies. We encourage you to review the privacy policies of any third-party services you visit through links in Family Hub. We are not responsible for the privacy practices, content, or security of third-party websites and services.

14. International Data Transfers

Family Hub is operated primarily for users in the United States. Our servers are located in the United States. If you are accessing Family Hub from outside the United States, please be aware that your information will be transferred to and processed in the United States.

For users in the European Economic Area, United Kingdom, or other jurisdictions with data transfer restrictions, we rely on Standard Contractual Clauses (SCCs) — approved by the European Commission — for transfers to our service providers, and adequacy decisions where applicable. We take steps to ensure that your information receives an adequate level of protection in the countries in which we process it, consistent with applicable data protection law.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will:

Update the "Last Updated" date at the top of this Policy
Post the revised Policy at family-hub.ai/privacy
Send an in-app notification to all users
For material changes that significantly affect how we use your data: send an email notification to all account holders at least 30 days before the change takes effect

Your continued use of Family Hub after the effective date of the revised Policy constitutes your acceptance of the changes. If you do not agree to the revised Policy, you should discontinue using Family Hub and may request deletion of your account.

16. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Inquiries	[email protected]
General Support	[email protected]
Website	family-hub.ai/privacy
In-App Support	Settings > Support > Contact Us
Response Time	We aim to respond to all privacy inquiries within 5 business days and no later than 45 days for formal rights requests under CCPA.

For urgent matters related to a child's data or a potential data breach, please include "URGENT" in your email subject line. These will be prioritized for same-day response.