← Back to Home

Privacy Policy

We take your family's privacy seriously — especially your children's.

v1.0 · May 23, 2026 COPPA 2025 Compliant CCPA / CPRA GDPR
👶

For Parents — COPPA Notice

YourChores is a service directed to children and families. We comply fully with the Children's Online Privacy Protection Act (COPPA) and the FTC's 2025 COPPA Rule amendments (effective April 22, 2026). We do not collect personal information from children under 13 without verified parental consent. No advertising. No third-party tracking of children. Period.

🔒

Plain-Language Summary

We collect the minimum information needed to run the app. We don't sell your data. We don't show ads. Children's data is isolated, minimized, and never shared with third-party advertisers. You can delete everything at any time.

📋 1. Overview & Scope

This Privacy Policy describes how YourChores ("YourChores," "we," "us," or "our") collects, uses, stores, and discloses information when you use our website at yourchores.app, our Progressive Web Application (PWA), and any related services (collectively, the "Service").

This Policy applies to:

By accessing or using the Service, you agree to this Privacy Policy. If you are creating an account on behalf of children, you represent that you are the parent or legal guardian of those children and that you consent to their use of the Service under the terms described herein.

🏢 2. Who We Are (Data Controller)

YourChores is a registered trade name (DBA) of BehavioralLink, LLC, a limited liability company organized under the laws of Wyoming, United States. All data collected through YourChores is owned and controlled exclusively by BehavioralLink, LLC. This structure ensures full COPPA compliance — data never leaves the controlling legal entity.

✉️

Data Controller Contact

YourChores / BehavioralLink, LLC
Email: privacy@yourchores.app
Support: hello@yourchores.app
Website: yourchores.app

For COPPA-related requests (parental rights, child data deletion, consent withdrawal): coppa@yourchores.app

📂 3. What We Collect

3.1 — Information You Provide Directly

Data Element Who Provides It Why We Collect It COPPA Category
Full name & email Parent / Guardian Account creation, login, communications Adult Only
Password (hashed) Parent / Guardian Authentication. Never stored in plaintext. Adult Only
Family/household name Parent / Guardian Personalizing the family dashboard Adult Only
Child's display name Parent (on behalf of child) Identifying child profiles in-app. Not a legal name — nickname or first name only recommended. Child Data
Child's age bucket Parent (on behalf of child) Adapting the UI experience (4–8, 9–12, 13–17). Stored as range, not exact birthdate. Child Data
Child's PIN Parent (on behalf of child) Local device authentication for child login. Hashed. Never transmitted externally. Child Data
Teen email (13+) Teen user (with parental consent) Optional independent login for users aged 13+. Only collected with parental attestation. Age-Gated
Coupon codes Parent / Guardian Applying discounts and promotional plans Adult Only
Parental consent record System (at signup) COPPA compliance — immutable log of consent timestamp, IP, browser fingerprint Compliance

3.2 — Information Generated by Use of the Service

Data Element Source Retention
Chore completion records Child / Parent interaction Until account deletion or 2 years of inactivity
Allowance ledger entries Parent approval actions Until account deletion or 2 years of inactivity
Points & reward redemptions Child / Parent interaction Until account deletion or 2 years of inactivity
Session identifiers Server (PHP session) 14 days or until logout
IP address & user agent Server logs 30 days (security purposes only)
Error & diagnostic logs Application server 14 days (rotated automatically)

3.3 — What We Do NOT Collect

🚫

We never collect the following from child users

Full legal names · Precise geolocation · Photos or videos · Voice recordings · Social media identifiers · Device identifiers for advertising · Biometric data · School name or student ID · Financial information of any kind.

👶 4. Children's Privacy (COPPA Compliance)

⚖️

Compliance with COPPA and FTC 2025 Amendments

YourChores is a service directed to children used under parental supervision. We comply with the Children's Online Privacy Protection Act (15 U.S.C. §§ 6501–6506) and the FTC's amended COPPA Rule (16 CFR Part 312), including the 2025 amendments effective April 22, 2026.

4.1 — Verifiable Parental Consent (VPC)

Before any child profile is created or any child data is collected, the Primary Guardian must complete account registration, explicitly consent to this Privacy Policy and our Terms of Service, and acknowledge that they are creating child profiles under their direct supervision.

Our consent mechanism records:

These consent records are stored in an immutable log in our parental_consent_records database table and cannot be altered after the fact.

4.2 — Data Minimization for Children

In strict compliance with COPPA's data minimization principle, we collect only the minimum information necessary to provide the Service to child users:

4.3 — No Behavioral Advertising for Children

YourChores does not serve advertisements to child users. We do not use child data for behavioral targeting, profiling for commercial purposes, or share child data with advertising networks of any kind. Child interaction data is used solely to provide the core chore tracking and reward features of the Service.

4.4 — Parental Rights Under COPPA

As the parent or legal guardian of a child user, you have the following rights at any time:

🔍

Right to Review

Review all personal information we have collected from or about your child.

✏️

Right to Correct

Request correction of inaccurate information about your child.

🗑️

Right to Delete

Request deletion of your child's profile and all associated data. We will process within 72 hours.

🚫

Right to Withdraw Consent

Withdraw consent at any time and halt further collection of your child's data by deleting their profile.

📦

Right to Portability

Request an export of your child's data in a machine-readable format (JSON or CSV).

📩

How to Exercise

Email coppa@yourchores.app with "COPPA Request" in the subject. We respond within 5 business days.

4.5 — Third Parties and Children's Data

We do not disclose children's personal information to any third party except as strictly necessary to operate the Service (e.g., our hosting provider). Any service provider who may incidentally process child data is bound by contractual obligations prohibiting further use, and is required to maintain security standards consistent with COPPA requirements.

⚙️ 5. How We Use Your Information

We use the information we collect for the following purposes:

💡 We do not use any personal information for automated decision-making, profiling, or any purpose that is not directly related to providing the Service to your family.

🤝 6. How We Share Information

We do not sell, rent, or trade your personal information or your children's personal information to any third party. We share data only in the following limited circumstances:

6.1 — Service Providers (Processors)

We use the following categories of service providers who may process your data solely on our behalf and under our instructions:

CategoryPurposeData SharedChild Data?
Web Hosting Hosting the application and database on secure servers All account data (stored encrypted at rest) Incidental only
Email Delivery Transactional emails (account confirmation, resets) Parent email address only No
SSL / CDN Secure connection delivery Encrypted traffic only No

6.2 — Legal Requirements

We may disclose information if required to do so by law or in the good-faith belief that such action is necessary to: (a) comply with a legal obligation or court order; (b) protect and defend our rights or property; (c) prevent or investigate possible wrongdoing in connection with the Service; (d) protect the personal safety of users or the public.

We will notify affected users of any such disclosure to the extent permitted by law.

6.3 — Business Transfers

If YourChores is involved in a merger, acquisition, or asset sale, your personal information may be transferred. We will provide notice before your information is transferred and becomes subject to a different privacy policy. In any such transaction, the acquiring party will be required to honor the commitments made in this Privacy Policy, and obtain fresh parental consent before any changes to child data processing.

🚫

We will never:

Sell personal information to data brokers · Share child data with advertisers · Use your data for targeted advertising · Disclose information to law enforcement without a valid legal process · Allow third parties to use your data for their own purposes.

🗄️ 7. Data Retention

We retain personal information only for as long as necessary to provide the Service and fulfill the purposes described in this Policy:

🛡️ 8. Security

We implement industry-standard technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction:

⚠️

Security Incident Notification

In the event of a data breach that affects your personal information, we will notify you within 72 hours of becoming aware of the incident — as required under GDPR Article 33 — and within the timeframes required by applicable US state laws. Notification will be sent to the email address on your account.

⚖️ 9. Your Rights (All Users)

Regardless of where you live, you have the following rights with respect to your personal information:

📄

Access

Request a copy of the personal information we hold about you.

✏️

Correction

Request correction of inaccurate or incomplete personal information.

🗑️

Deletion

Request deletion of your account and all associated personal data.

📦

Portability

Receive your data in a structured, machine-readable format (JSON/CSV).

🚫

Restriction

Request that we limit the processing of your information.

Objection

Object to processing of your personal information in certain circumstances.

To exercise any of these rights, email privacy@yourchores.app with the subject "Privacy Rights Request." We will respond within 30 days (or sooner as required by applicable law). We may need to verify your identity before processing your request.

🌴 10. California Residents — CCPA / CPRA

ℹ️

California Consumer Privacy Act (CCPA) & CPRA

If you are a California resident, the California Consumer Privacy Act (Cal. Civ. Code § 1798.100 et seq.) and the California Privacy Rights Act amendments grant you additional rights regarding your personal information.

10.1 — Categories of Personal Information Collected

In the preceding 12 months, we have collected the following categories of personal information as defined by the CCPA:

10.2 — California Privacy Rights

To submit a CCPA request, email privacy@yourchores.app. We will respond within 45 days, with a possible 45-day extension with notice.

🇪🇺 11. International Users — GDPR

ℹ️

European Union & UK GDPR

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) or UK GDPR applies to the processing of your personal data. This section provides the additional disclosures required under those frameworks.

11.1 — Lawful Basis for Processing

Processing ActivityLawful Basis (GDPR Art. 6)
Creating and managing your accountContract (Art. 6(1)(b)) — necessary to perform the Service
Creating child profiles (with parental consent)Consent (Art. 6(1)(a)) — verifiable parental consent obtained at signup
Sending transactional emailsContract (Art. 6(1)(b)) — necessary to provide account functionality
Security logging & fraud preventionLegitimate Interests (Art. 6(1)(f)) — protecting users and the platform
Compliance with legal obligationsLegal Obligation (Art. 6(1)(c)) — e.g., COPPA consent record retention

11.2 — International Data Transfers

YourChores is operated from servers located in the United States. If you are located outside the United States, your personal data will be transferred to and processed in the U.S., which may have different data protection laws than your country of residence.

For transfers from the EEA or UK, we rely on Standard Contractual Clauses (SCCs) where applicable, or will implement other appropriate transfer mechanisms as required.

11.3 — GDPR Rights

In addition to the rights listed in Section 9, EEA and UK residents also have the right to lodge a complaint with your national data protection authority (DPA). For the UK, this is the Information Commissioner's Office (ICO). For other EU member states, find your DPA at edpb.europa.eu.

🍪 12. Cookies & Local Storage

YourChores uses a minimal, functional-only cookie approach. We do not use advertising cookies, third-party analytics cookies, or tracking pixels.

Cookie / StorageTypePurposeExpiry
PHPSESSID Strictly Necessary Server-side session management — maintains your login state 14 days or logout
prep_auth (session var) Strictly Necessary Development environment access control 24 hours
PWA / Service Worker Cache Functional Offline capability — caches app assets for faster load and offline use Persistent (controlled by service worker)

No third-party cookies are set on any YourChores page. No advertising or analytics cookies are used. Because we only use strictly necessary and functional cookies, a cookie consent banner is not required under applicable law — however we disclose all cookies here in full.

🔄 13. Changes to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will:

Your continued use of the Service after the effective date of any changes constitutes your acceptance of the revised Policy (for adult account data). For child data, continued use after fresh parental consent has been obtained constitutes acceptance.

📜 Policy Version History

v1.0 — May 23, 2026 — Initial policy. Covers COPPA (2025 amendments), CCPA/CPRA, GDPR, UK GDPR, Virginia CDPA. Establishes baseline data practices for YourChores early access launch.

📩 14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us through any of the following channels:

🔒

Privacy & Data Requests

General Privacy: privacy@yourchores.app
COPPA / Children's Data: coppa@yourchores.app
General Support: hello@yourchores.app

We aim to respond to all privacy requests within 5 business days. COPPA requests are handled within 72 hours.