Privacy Policy
Last Updated: April 8, 2026 Version: 2.0
Introduction
At Caregiver Sync, we understand that coordinating care for your loved ones is built on trust. This Privacy Policy explains how we collect, use, protect, and share your information.
1. Information We Collect
1.1 Account Information
When you create an account, we collect:
- Email address - For authentication and communication
- Display name - How you’re identified within your family circle
- Profile picture (optional) - An avatar for your account
1.2 Family & Care Data
We collect information you provide about caregiving activities:
- Care logs - Medication, meals, hygiene, mood, sleep, and activities
- Vital signs - Temperature, blood pressure, heart rate, blood oxygen levels (if recorded)
- Care recipient information - Name, care preferences
- Family notes - Shopping lists, tasks, and reminders
- Timeline entries - Care activities with timestamps
1.3 Health Data
Important Health Information Notice: Caregiver Sync allows you to record and store vital health signs for your care recipients. This includes:
- Body temperature
- Blood pressure (systolic/diastolic)
- Heart rate
- Blood oxygen levels (SpO2)
- Weight measurements
- Blood glucose levels (if recorded)
How We Handle Health Data:
- Health data is encrypted in transit and at rest using industry-standard encryption (AES-256)
- Health information is only shared with members of your family circle
- We do NOT sell, share, or disclose your health data to third parties for any purpose
- Health data is NOT used for advertising, marketing, or insurance purposes
- You can delete any health data entry at any time
- Health data is permanently deleted within 30 days of account deletion
Medical Disclaimer: Caregiver Sync is not a medical device. The health data you record is for informational purposes only and should not be used for medical diagnosis or treatment. Always consult qualified healthcare professionals for medical decisions.
1.4 Photo & Media Data
Profile Pictures:
- You may upload a profile picture to personalize your account
- Profile pictures are stored securely in encrypted cloud storage
- Profile pictures are only visible to members of your family circle
- You can delete or change your profile picture at any time
- Profile pictures are deleted within 30 days of account deletion
Photo & Media Access:
- The App may request access to your device’s photo gallery solely for the purpose of selecting a profile picture
- We do NOT access your photos for any other purpose
- We do NOT upload or store any photos other than the profile picture you explicitly select
- We do NOT scan, analyze, or process your photo gallery
1.5 Family Member Information
- Family circle details - Names, roles (Owner, Admin, Member), join dates
- Invitation codes - For adding new family members
1.6 Information Collected Automatically
- Device Information - Device type, OS, unique device identifiers
- Usage Data - Features used, time spent, crash logs
- Location Data - Approximate location for family proximity (if enabled)
1.7 Android Permissions
POST_NOTIFICATIONS Permission (Android 13+):
- On Android 13 and higher, we require your explicit permission to send push notifications
- This permission allows the App to display notifications for:
- Care reminders and medication alerts
- Activity updates from family members
- Emergency alerts and important notifications
- You can revoke this permission at any time through your device settings
- If you deny this permission, you will not receive push notifications, but the App will still function
VIBRATE Permission:
- The App may request permission to vibrate your device
- This permission is used for:
- Notification alerts to ensure you don’t miss important care updates
- Haptic feedback when you interact with certain App features
- You can disable vibration in your device settings or App preferences
- This permission is optional and the App functions without it
Other Android Permissions:
- Camera/Photos - For uploading profile pictures only
- Storage - For offline data caching and App functionality
- Internet - Required for syncing data across devices
1.8 iOS Permissions
UIBackgroundModes:
- The App uses specific background modes to ensure reliable care coordination:
- Background Refresh: Allows the App to sync care data in the background when you’re not actively using it
- Remote Notifications: Enables receiving and processing push notifications even when the App is closed
- Background Processing: Performs periodic data syncs to ensure your care information is always up-to-date
iOS Background Features:
- Background sync helps ensure all family members see the latest care updates
- Notifications are delivered even when the App is not actively running
- Background processing is optimized to minimize battery impact
- You can disable background refresh in your device settings, but this may affect the App’s ability to sync data in real-time
Other iOS Permissions:
- Notifications - For care reminders, activity updates, and alerts
- Camera/Photo Library - For selecting profile pictures only
- Face ID/Touch ID - Optional biometric authentication for secure account access
2. How We Use Your Information
We use your information to:
2.1 Primary Purposes
- Coordinate family care - Enable real-time sharing of care activities between family members
- Maintain your account - Authentication, profile management, preferences
- Provide core features - Timeline, care logs, family notes, analytics
- Sync across devices - Ensure your data is up-to-date on all your devices
- Send notifications - Care reminders, activity updates, emergency alerts
- Health tracking - Store and display vital signs you record for care recipients
2.2 Secondary Purposes
- Improve the App - Analyze usage patterns to enhance features and fix bugs
- Prevent fraud - Detect suspicious activity and protect accounts
- Comply with legal obligations - Meet regulatory requirements
- Communicate with you - Send important updates about the service
2.3 What We Do NOT Do
- ❌ Sell your personal information
- ❌ Share your data with third parties for advertising
- ❌ Use your data for AI training without explicit consent
- ❌ Monitor your care decisions for insurance purposes
- ❌ Share your health data with healthcare providers without your consent
- ❌ Use your photos or media for any purpose other than profile pictures
3. Data Safety & Security
We implement industry-leading security measures to protect your information:
3.1 Encryption
- In Transit - All data is encrypted using TLS 1.3 (HTTPS)
- At Rest - Data is encrypted in our database using AES-256 encryption
- Health Data - Additional encryption protocols for sensitive health information
3.2 Access Control
- Row-Level Security (RLS) - Families can only access their own data
- Authentication - Passwordless OTP (One-Time Password) system
- Role-Based Permissions - Owner, Admin, Member roles control access
- Biometric Authentication - Optional Face ID/Touch ID on supported devices
3.3 Data Minimization
- We only collect what is necessary to provide the service
- You can delete your data at any time
- We automatically delete data after account closure
3.4 Secure Hosting
- Database - Supabase (built on PostgreSQL) hosted on secure infrastructure
- Storage - Encrypted cloud storage for profile pictures
- Backups - Automated backups with encryption
4. Data Sharing and Disclosure
4.1 Within Your Family Circle
Your care data is shared only with:
- Family members you invite to your care circle
- Based on role permissions you configure
4.2 Third-Party Services
We use trusted third parties to operate the App:
| Service | Purpose | Data Shared |
|---|---|---|
| Supabase | Database & Authentication | Email, Encrypted Data |
| Firebase/OneSignal | Push Notifications | Device Token (Encrypted) |
| RevenueCat | Subscription Management | Purchase tokens, subscription status |
| Anonymous Analytics | App Improvement | Anonymous usage data only |
RevenueCat - Subscription Management:
- RevenueCat is our trusted payment processing partner for in-app purchases and subscriptions
- We share only the minimum data required to process subscriptions:
- Purchase receipt/tokens (encrypted)
- Subscription status (active/inactive/expired)
- App Store account identifiers
- RevenueCat does NOT have access to your:
- Care logs or health data
- Family member information
- Profile pictures or media
- Personal communications
- RevenueCat is committed to privacy and comply with applicable data protection laws
- Learn more about RevenueCat’s privacy practices: revenuecat.com/privacy
4.3 What We Do NOT Share
We do NOT share your personal information with:
- Ad networks
- Data brokers
- Insurance companies
- Healthcare providers (without explicit consent)
- Any other third party for their own purposes
4.4 Legal Requirements
We may disclose data if required by law, including:
- Responding to legal processes
- Protecting our rights and property
- Preventing fraud or abuse
- Ensuring safety of users
5. Your Privacy Rights
You have the following rights regarding your personal information:
5.1 Access Rights
- View your data - See all information we hold about you
- Download your data - Export your care logs and family data
- Account history - See your activity within the App
5.2 Deletion Rights
- Delete your account - Permanently remove your account and all associated data
- Delete specific data - Remove individual care logs or entries
- Right to be forgotten - We erase your data within 30 days of request
- Health data deletion - You can delete any health data entry at any time
5.3 Correction Rights
- Update your info - Edit your profile, care logs, and preferences anytime
- Fix inaccuracies - Correct any errors in your data
- Update health data - Correct or modify any vital signs entries
5.4 Portability Rights
- Export your data - Download your family’s care data in a readable format
- Transfer your data - Move your data to another service
5.5 Objection Rights
- Opt-out of analytics - Disable anonymous usage tracking
- Disable notifications - Turn off push notifications at any time
- Revoke permissions - Modify or revoke any granted permissions through device settings
To exercise these rights, contact us at: devmicto@gmail.com
6. Children’s Privacy
6.1 Children Under 13
The App is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.
If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately, and we will take steps to delete such information.
6.2 Teenagers (13-17)
For Teenagers (13-17):
- We recommend parental supervision when using the App
- Parental consent is required before creating an account
- Parents should supervise when acting as a caregiver for elderly family members
- The App may contain features suitable for family caregiving situations
6.3 Children as Care Recipients
The App is designed to help families care for loved ones of all ages, including children:
- When a child is listed as a care recipient, their information is only accessible to family members
- Health data for child care recipients is stored with the same security as adult care recipients
- Parents/guardians have full control over what information is recorded about their children
- Child care recipient data is never shared outside the family circle
6.4 Educational Institutions
The App may be used by educational institutions with parental consent:
- Schools may use the App to coordinate care for students with special needs
- Written parental consent is required before any student information is shared
- Educational institutions must comply with all applicable student privacy laws (FERPA in the US, GDPR in Europe)
7. Data Retention
We retain your information as long as your account is active.
7.1 After Account Deletion
- Immediate Deletion - When you delete your account, ALL data is permanently removed immediately
- No Grace Period - Deleted accounts CANNOT be restored
- Permanent Removal - All data is instantly and permanently erased with no recovery option
7.2 Data-Specific Retention
- Care Logs - Retained indefinitely unless you delete them
- Health Data - Retained indefinitely unless you delete them
- Profile Pictures - Deleted within 30 days of account deletion
- Analytics Data - Aggregated and anonymized after 12 months
- Backup Data - Deleted according to our backup retention policy
7.3 Automatic Inactive Account Deletion
- 90-Day Inactivity Policy - Accounts not signed in for 90+ days are automatically deleted
- No Warning - Due to privacy and security reasons, no warning is sent before deletion
- Permanent Deletion - All data associated with inactive accounts is permanently wiped
- No Recovery - Inactive accounts cannot be restored after deletion
8. International Data Transfers
Your information may be transferred to and processed in countries other than your own.
8.1 Data Centers
- Our primary database is hosted on secure servers
- Data is encrypted during international transfers
- We comply with GDPR, CCPA, KVKK, and other applicable regulations
8.2 Cross-Border Protection
- We use Standard Contractual Clauses (SCCs) for data transfers
- Your data is protected regardless of where it is processed
- We maintain adequate safeguards for international data transfers
9. Changes to This Policy
We may update this Privacy Policy from time to time.
9.1 How We Notify You
- In-App Notification - Prominent notice within the App
- Email - For significant changes (at least 30 days notice)
- Website - Updates posted on our legal page
9.2 Your Choices
- Continued use of the App after changes constitutes acceptance
- You can delete your account if you do not agree with changes
10. Contact Us
If you have any questions, concerns, or requests regarding your privacy:
10.1 Contact Information
- Email: devmicto@gmail.com
- Response Time: Within 48 hours (usually faster)
- Language Support: English, Turkish, and all supported App languages
10.2 Data Protection Officer
For privacy-related inquiries:
- Email: devmicto@gmail.com
10.3 Regulatory Authority
You have the right to lodge a complaint with your local data protection authority.
Disclaimer
Caregiver Sync is not a medical device and does not provide medical advice. Always consult qualified healthcare professionals for medical decisions.
This Privacy Policy is part of our Agreement with you. By using Caregiver Sync, you agree to these terms.