Privacy Policy
Last Updated: January 11, 2026
Introduction
Nestling ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy
explains how we collect, use, disclose, and safeguard your information when you use our
mobile application and website.
Information We Collect
Information You Provide
- Account Information: Email address, name (optional)
-
Baby Profile Information: Baby's name, date of birth, sex, feeding
preferences
-
Event Data: Feeds, sleep, diapers, tummy time, and other care activities
you log
-
Health Data: Growth records, health records, milestones (if you choose to
log)
- Photos: Baby photos you upload (stored securely)
- Feedback: User feedback, nap prediction feedback
Automatically Collected Information
- Usage Data: App features used, pages viewed, time spent
- Device Information: Device type, operating system, app version
-
Analytics: Aggregated, anonymized usage statistics (Firebase Analytics)
- Error Logs: Application errors for debugging (Sentry)
Information We Do NOT Collect
- Location Data: We do not track your location
-
Third-Party Tracking: No advertising trackers, no data sold to
advertisers
-
Sensitive Health Data: We do not collect medical diagnoses or
prescriptions
How We Use Your Information
Core Functionality
- Provide baby care tracking features
- Calculate nap predictions based on age and patterns
- Generate insights and summaries
- Enable multi-device synchronization
- Support family sharing features
AI Features (Opt-In)
- Nap Predictions: Age-based wake window calculations
- AI Assistant: Answer parenting questions using your baby's context
- Cry Analysis: Analyze cry patterns (if you enable this feature)
AI Data Sharing: You can opt out of AI features in Settings → AI & Data
Sharing. When disabled, we do not use your data for AI processing.
Service Improvement
- Fix bugs and improve app performance
- Analyze usage patterns (aggregated, anonymized)
- Develop new features
Communication
- Send important app updates (via in-app notifications)
- Respond to support requests
- Send product updates (if you opt in)
Data Storage & Security
Storage
- Primary Storage: Supabase (PostgreSQL database)
- Media Storage: Supabase Storage (encrypted)
- Local Storage: IndexedDB for offline support
- Location: Data stored in the United States (US East region)
Security Measures
- Encryption: All data encrypted in transit (TLS) and at rest
- Authentication: Secure email/password authentication
-
Access Control: Row Level Security (RLS) ensures you can only access your
family's data
- Regular Backups: Automated daily backups (7-day retention)
Data Retention
- Event Logs: Retained indefinitely while your account is active
- AI Insights: Cry insights retained for 180 days; predictions for 90 days
-
Deleted Accounts: Data permanently deleted within 30 days of account
deletion
- Backups: Deleted from backups within 90 days
Data Sharing & Disclosure
We Do NOT Share Your Data With:
- Advertisers: Never
- Data Brokers: Never
- Third-Party Services: Except as specified below
Limited Sharing:
-
Service Providers:
- Supabase (database and storage)
- Firebase Analytics (anonymized usage data)
- Sentry (error tracking)
- Legal Requirements: If required by law or to protect rights
AI Services:
- Lovable AI / OpenAI / Google AI: Only if you enable AI features
- Data Used: Baby age, recent events (no PII)
- Purpose: Generate predictions and answer questions
- Opt-Out: Available in Settings
Your Rights & Choices
Access & Export
- View Your Data: All data visible in app
-
Export Data: CSV or PDF export available in Settings → Privacy & Data
- Request Data: Contact nestlingapp1@gmail.com for data export
Deletion
- Delete Account: Settings → Privacy & Data → Delete Account
- Data Deletion: All data permanently deleted within 30 days
- Backup Deletion: Deleted from backups within 90 days
AI Features
- Opt-Out: Settings → AI & Data Sharing → Disable
- Effect: AI features disabled, data not used for AI processing
Analytics
- Analytics are anonymized and aggregated
- No personal identification in analytics data
Children's Privacy
Nestling is designed for parents to track their babies' care. We do not knowingly collect
information directly from children under 13. All data is provided by parents or caregivers.
International Users
GDPR (European Users)
- Legal Basis: Consent and contract performance
- Data Processing: Within EU/EEA (if Supabase EU region)
- Rights: Access, rectification, erasure, portability, objection
- Contact: nestlingapp1@gmail.com for GDPR requests
CCPA (California Users)
- No Sale of Data: We do not sell personal information
- Rights: Access, deletion, opt-out
- Contact: nestlingapp1@gmail.com for CCPA requests
Medical Disclaimer
IMPORTANT: Nestling is not a medical device and does not provide medical
advice. All features, including AI predictions and insights, are informational only.
Always consult your pediatrician or healthcare provider for medical guidance.
Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of significant changes
via:
- In-app notification
- Email (if you've provided one)
- Updated "Last Updated" date
Contact Us
- Privacy Questions: nestlingapp1@gmail.com
- Data Requests: nestlingapp1@gmail.com
- Website: https://presidentty1.github.io/nestling-legal/privacy.html