Privacy Policy
Last updated: June 11, 2026
Kids Point ("the App") is a mobile application that helps families manage children's tasks and exchange points for rewards at home. This policy describes the types of information the App handles, the purposes of use, disclosure to third parties, and the rights of guardians. By using the App, you are deemed to have agreed to this policy.
1. Operator Information
- Provider: Kids Point Development Team
- Contact: in-app "Settings > Contact" or support@kidspoint.app
2. Information We Collect
The App collects the following information.
2.1 Information you provide
- Email address and password optionally registered for the parent account
- Children's profile information (nickname, icon, birth month, etc.)
- Tasks, rewards, point balances, and approval/rejection history created and recorded within the family
2.2 Information collected automatically (analytics and ad performance measurement)
For the purposes of improving the service and measuring advertising performance, the App may automatically collect the following information.
- Device identifiers (advertising ID / IDFA / Android Advertising ID)
- Event logs (screen transitions, feature usage counts, usage timestamps, etc.)
- Crash reports and ANR (application not responding) information
- Device information (OS version, model name, language settings, time zone)
- Country/region inferred from IP address
The App does not access location information such as GPS, contacts, the photo library, the microphone, or the camera.
3. Purposes of Use
We use the collected information for the following purposes.
- Managing family and children's accounts and providing the Tasks / Rewards features
- Responding to inquiries, preventing fraudulent use, and addressing violations of the terms of use
- Improving the service and considering new features through aggregation and analysis of usage
- Advertising performance measurement, delivery optimization, and outcome measurement based on SKAdNetwork / aggregated event measurement (iOS)
4. Use of Third-Party SDKs
The App incorporates the following third-party SDKs for analytics and advertising performance measurement. For the information each SDK collects and uses and its purposes, please refer to each company's privacy policy.
| SDK | Provider | Main use | Privacy policy |
|---|---|---|---|
| Firebase Analytics / Crashlytics | Google LLC | App usage analytics, crash collection | https://firebase.google.com/support/privacy |
| Google Analytics for Firebase | Google LLC | Event measurement, usage trend analysis | https://policies.google.com/privacy |
| Meta Audience Network / App Events SDK (Facebook SDK) | Meta Platforms, Inc. | Ad performance measurement, conversion tracking | https://www.facebook.com/about/privacy/ |
| Amplitude | Amplitude, Inc. | Product analytics, A/B test measurement | https://amplitude.com/privacy |
| Supabase | Supabase, Inc. | Account authentication, data synchronization | https://supabase.com/privacy |
| App Tracking Transparency (iOS only) | Apple Inc. | Obtaining tracking consent | https://www.apple.com/legal/privacy/ |
These SDKs may send advertising IDs and event data to the servers of the providers above. The transmitted content is anonymized or pseudonymized and does not include information that directly identifies an individual (name, address, phone number, etc.).
5. Obtaining User Consent and Opt-Out
- After onboarding is completed on first launch, the App displays a consent screen regarding "sending usage data" and stores your choice on the device.
- If you do not consent, no events are sent to Firebase / Meta / Amplitude, and pending events are discarded.
- On iOS devices, the App Tracking Transparency dialog is displayed together with consent collection to confirm whether tracking is permitted.
- You can change your consent status at any time from "Settings > Privacy > Send usage data." Events after switching it off are not sent.
6. Handling of Children Under 13
The primary users of the App are guardians (parent accounts). Children's profiles and achievement data are designed to be registered and managed by guardians, and children cannot directly enter personally identifying information into the App themselves.
Regarding the handling of information about children under 13, we comply with the U.S. COPPA (Children's Online Privacy Protection Act), Japan's Act on the Protection of Personal Information, and equivalent laws in each country, and respond according to the following policies.
- Children's nicknames, icons, point history, etc. are stored in a family-only area on the device and on Supabase, and are not sold or shared with third parties.
- Event data sent to analytics SDKs does not include personally identifying information about children such as name, date of birth, photos, location, or contacts.
- We do not target individual children for personalized advertising based on advertising IDs or similar.
- The collection and use of information about children under 13 requires the consent of a guardian (parent account). By starting to use the App (creating a family and registering children), the guardian is deemed to have consented to handling this information within the scope described in this policy.
7. Rights and Consent of Guardians
- Guardians can view, modify, and delete their children's information at any time from within the App.
- If you wish to delete the account itself, please contact support@kidspoint.app. We will delete all data, including family, children, tasks, and rewards history, within a reasonable period.
- Stopping the transmission of analytics data is reflected immediately via the "Settings > Privacy > Send usage data" toggle.
- On iOS devices, you can change tracking permission at any time from "Settings > Privacy & Security > Tracking."
- On Android devices, you can reset/delete the advertising ID from "Settings > Google > Ads."
8. Data Storage and Protection
- Your account information and family data are stored in a PostgreSQL database on Supabase (Singapore region).
- Communications are encrypted with HTTPS/TLS, and stored data is protected by the cloud provider's standard encryption.
- Access permissions are separated per family by Row Level Security (RLS), so the data of other families cannot be referenced.
9. Data Retention Period
- For accounts in use, we retain data for the period necessary to provide the service.
- When we receive a request to delete an account, we promptly delete the relevant data (however, complete deletion from backups may take up to 90 days).
- Anonymized event logs in analytics services are deleted after a certain period in accordance with each service provider's retention policy.
10. Disclosure to Third Parties
Except where there is a disclosure request based on laws and regulations, we do not sell or provide information obtained from you to third parties. Provision to the analytics and advertising SDK providers described in Section 4 is treated as outsourcing based on each company's terms.
11. International Transfers
The App's backend (Supabase) is located in Singapore, and analytics providers' servers may be located in the United States and elsewhere. These providers offer safeguards (such as standard contractual clauses) compliant with international data protection frameworks such as GDPR.
12. Revisions to This Policy
This policy may be revised in response to changes in the service or amendments to laws and regulations. If there are significant changes, we will notify you via in-app notifications or store update information.
13. Contact
For questions about this policy or to exercise your rights as a guardian (disclosure, correction, deletion of information, etc.), please contact us at:
- Email: support@kidspoint.app
- In-app: Settings > Contact