Privacy Policy

Last updated: March 30, 2026

GrowthPath ("we," "us," or "our") is committed to protecting the privacy of your family. This policy explains what information we collect, how we use it, and your rights as a user.

1. Information We Collect

We collect the following information when you use GrowthPath:

• Account information: Email address and password (stored hashed) when you create an account.
• Family profile data: Children's names, ages, and gender — entered by you to personalise milestones. No government IDs or sensitive documents are collected.
• Progress data: Skill milestones you mark as practicing or mastered.
• Usage data: Anonymous analytics (page views, feature usage) to help us improve the product. We do not track individuals across sites.

2. How We Use Your Information

• To provide and personalise the GrowthPath service.
• To save your children's skill progress across sessions.
• To send essential product emails (account confirmation, important updates). No spam.
• To improve the app based on aggregate, anonymised usage patterns.

We do not sell your data to third parties. Ever.

3. Children's Privacy (COPPA)

GrowthPath is designed for use by parents and guardians, not directly by children. We do not knowingly collect personal information from children under 13. The child profile data you enter (name, age) is stored solely to provide the service to you as the account holder.

If you believe a child under 13 has provided personal information without parental consent, contact us at hi@growthpath.app and we will delete it promptly.

4. Data Storage & Security

Your data is stored on secure servers hosted by Neon (PostgreSQL) and Render. Passwords are hashed using bcrypt and never stored in plain text. We use HTTPS on all connections. Access to production data is strictly limited.

5. Cookies & Local Storage

GrowthPath uses browser localStorage to store your authentication token and a anonymous visitor ID for analytics. We do not use tracking cookies or third-party ad cookies.

6. Third-Party Services

We use the following third-party services:

• Render — application hosting (San Francisco, USA)
• Neon — PostgreSQL database hosting (AWS us-east-2)
• Google Fonts / Fontshare — typography (no tracking)

7. Your Rights

You may at any time:

• Request a copy of all data we hold about you.
• Request deletion of your account and all associated data.
• Update or correct your information within the app.

To exercise these rights, email hi@growthpath.app. We will respond within 30 days.

8. Data Retention

We retain your data for as long as your account is active. If you delete your account, we will permanently delete all associated data within 30 days.

9. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes by email or by posting a notice in the app. Continued use after changes constitutes acceptance.

Contact Us

Questions about this policy? Email us at hi@growthpath.app.