Legal

Privacy Policy

Effective date: April 5, 2026 · Last updated: April 5, 2026 · Questions? ryan@choregate.io

Plain English summary: ChoreGate helps parents manage their children's internet access. We collect the minimum data necessary to make the service work. We never sell your data. We never look at your children's internet traffic. This policy explains exactly what we collect and why.

1. Who We Are

ChoreGate ("we," "us," or "our") is a family productivity service operated by ChoreGate, LLC. Our service allows parents to link their children's internet access to completion of daily chores, using WireGuard VPN technology.

Contact: ryan@choregate.io

2. Information We Collect

2.1 Account Information (Parents)

Email address and password hash (never stored in plaintext)
Name (optional, used for display purposes)
Payment information (processed by Apple App Store or Google Play — we never see your card number)

2.2 Child Profile Information

Child's first name (parent-provided)
Child's age (parent-provided, optional)
Chore list and completion timestamps
VPN connection status (connected / disconnected)
Internet lock status (locked / unlocked)
Lock history (when locks were applied and removed)

We do not collect, store, or inspect any information about what websites or apps your child uses. The VPN manages network access only — it is not a surveillance tool.

2.3 Device Information

WireGuard VPN IP address assigned to each child's device
Expo push notification token (to send you alerts)
Device OS type (iOS or Android) for compatibility purposes

2.4 Usage Data

App crash reports (to fix bugs)
API request logs retained for 30 days (for debugging and security)

3. Children's Privacy (COPPA)

ChoreGate is designed for use by parents and guardians. We do not knowingly collect personal information directly from children under 13. Child profiles are created and managed entirely by the parent or guardian. Children interact only with the chore portal page, which does not require account creation or collection of personal information.

If you believe we have inadvertently collected personal information from a child under 13 without parental consent, please contact us at ryan@choregate.io and we will delete it promptly.

ChoreGate complies with the Children's Online Privacy Protection Act (COPPA) and the Family Educational Rights and Privacy Act (FERPA) to the extent applicable.

4. How We Use Your Information

To operate the ChoreGate service (account management, chore tracking, VPN access control)
To send push notifications you've opted into (task completions, lock events)
To process subscription payments through the App Store / Google Play
To diagnose and fix bugs and service issues
To respond to support requests

We do not use your data for advertising, behavioral tracking, or to build profiles for sale to third parties.

5. How We Share Your Information

We do not sell, rent, or trade your personal information. We share data only in these limited circumstances:

Service providers: We use Supabase (database hosting) and cloud infrastructure providers. These providers process data on our behalf under data processing agreements.
RevenueCat: We use RevenueCat to manage subscription status. RevenueCat receives an anonymous user ID — not your email or name.
Expo: Push notifications are routed through Expo's notification service.
Legal requirements: We may disclose information if required by law, court order, or to protect the safety of users.

6. Data Retention

Account data is retained until you delete your account
Chore completion history is retained for 12 months, then automatically purged
Lock event history is retained for 90 days
API logs are retained for 30 days

When you delete your account, all associated data — including child profiles, chore history, and VPN configurations — is permanently deleted within 24 hours.

7. Security

We take security seriously:

Passwords are hashed with bcrypt (cost factor 12) — we cannot recover your password
All data is transmitted over TLS (HTTPS)
VPN private keys are generated per-device and stored encrypted at rest
We do not log internet traffic or DNS queries from child devices

No system is perfectly secure. If you discover a security vulnerability, please report it to ryan@choregate.io.

8. Your Rights

You have the right to:

Access: Request a copy of the data we hold about you and your family
Correction: Update or correct any inaccurate information
Deletion: Delete your account and all associated data at any time from the app (Settings → Delete Account)
Portability: Request an export of your data in a machine-readable format
Opt out: Disable push notifications at any time from the app (Settings → Notifications)

To exercise any of these rights, contact us at ryan@choregate.io. We will respond within 30 days.

9. Cookies and Tracking

The ChoreGate mobile app does not use tracking cookies. The web dashboard uses localStorage to store your authentication token — this data stays on your device and is not sent to any third party.

Our landing page does not use third-party analytics or tracking scripts.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you via push notification and update the "Last updated" date above. Your continued use of ChoreGate after changes take effect constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data:

Email: ryan@choregate.io
Response time: within 2 business days