Privacy Policy
Last updated: July 8, 2026
This Privacy Policy explains how Still Family ("we", "us") collects, uses, and protects information when you use the Still Family mobile app and website. By using Still Family, you agree to this policy.
Information we collect
Account information
When you sign up, we collect your email address and display name. If you sign in with Google or Apple, we receive your name and email from that provider. Passwords are handled by our authentication provider and are never stored by us.
Family and child information you provide
Still Family is a tool for organising a child's life across homes. You may enter information about your family and children, including children's names, birthdays, school, care arrangements, medical notes and emergency contacts. Medical notes are sensitive information; you choose whether to provide them and are responsible for the accuracy of what you enter.
Coordination content
We store the content you create to run your family: calendar events, handovers, requests, expenses (including amounts and any receipt you attach), documents, and messages. Messages are relayed and then removed from our servers once delivered to recipients (they are stored on your device).
Photos and files
When you attach a receipt or document, the image is uploaded to secure storage so it can sync across your family's devices.
Device and technical information
To deliver notifications, we store a push notification token for your device. We may also collect limited diagnostic information to keep the app reliable.
Subscription and purchase information
If you subscribe, purchases are processed by the App Store or Google Play. We use RevenueCat to manage subscription status. We receive subscription state (e.g. active plan and expiry) but not your full payment card details.
How we use your information
- To provide and sync the app's features across your family.
- To send notifications you enable (e.g. handovers, requests).
- To manage your subscription and entitlements.
- To keep the service secure, reliable and to prevent abuse.
- To respond to your support requests.
Legal bases (EEA/UK)
Where the GDPR/UK GDPR applies, we process your data to perform our contract with you (providing the app), based on your consent (e.g. sensitive details you choose to add, notifications), and for our legitimate interests in keeping the service secure and functional.
How we share information
We do not sell your personal information. We share data only with service providers that help us run Still Family, under agreements that protect your data:
- Google Firebase (authentication, database, file storage, notifications, cloud functions) — Firebase Privacy.
- Apple / Google Sign-In for authentication.
- Apple App Store / Google Play for in-app purchases.
- RevenueCat for subscription management — RevenueCat Privacy.
Members of your family have access to shared content according to their role and permissions set within the app.
Where your data is stored
Your data is stored on Google Cloud infrastructure in the United States. If you use the app from outside the United States, your information will be transferred to and processed there. We rely on appropriate safeguards for such transfers where required by law.
Children's data
Still Family is intended for use by parents and adult caregivers. It is not directed to children for self-registration. Information about children is entered by a parent or responsible adult, who is responsible for having the authority to provide it. Optional child-view access is controlled by the family's adults and is limited by design.
Data retention and deletion
Messages are removed from our servers once delivered. Other content is retained for as long as your family keeps it or until you delete your account. When you delete your account (or request deletion), we delete your associated family data, uploaded files and authentication record. See our account deletion page for how to do this.
Your rights
Depending on where you live, you may have the right to access, correct, delete, or export your personal data, and to object to or restrict certain processing (GDPR/UK GDPR). If you are in California, you have rights under the CCPA/CPRA, including the right to know and to delete; we do not sell or share your personal information for cross-context behavioural advertising. To exercise any right, contact us at marcuswlc92@gmail.com.
Security
We use industry-standard measures, including encrypted connections and access controls that restrict data to members of your family. No method of transmission or storage is completely secure, but we work to protect your information.
Changes to this policy
We may update this policy from time to time. We will update the "Last updated" date above and, where appropriate, notify you in the app.
Contact us
Questions about this policy or your data? Email marcuswlc92@gmail.com.