Privacy Policy

Last updated: April 23, 2026

RoseStorie ("we", "us") runs a family dashboard service. This policy explains what personal data we collect, why, and what rights you have over it. We wrote it in plain English on purpose.

1. What we collect

Account data

When you sign in with Google, we receive your email address, name, and Google account ID. We store these so you can log back in.

Family & home data you create

The content you enter: home names, calendar integrations, sensor identifiers, meal plans, chores, location history (if you enable it), AI assistant messages. This data lives in an isolated per-tenant section of our database.

Integration credentials

If you connect external services (SensorPush, Mealie, Donetick, OwnTracks, Telegram), we store the tokens or API keys needed to call them. These are encrypted at rest and only used to proxy requests on your behalf.

Usage telemetry

We log anonymous service-level events (request counts, error rates, AI token usage per tenant) for billing and reliability. We do not use third-party analytics, advertising pixels, or session replay tools.

Billing data

If you subscribe to a paid plan, Stripe processes your payment. We receive a customer ID and subscription status from Stripe — we never see your full card number.

2. What we do NOT collect

• We do not sell, rent, or share your personal data with advertisers.
• We do not use your data to train general-purpose AI models.
• We do not track you across other websites.
• We do not run third-party analytics or marketing pixels on the dashboard.

3. How we use your data

• To run the service: authenticate you, render your dashboard, sync your integrations.
• To bill you (paid plans only) and enforce plan limits.
• To send operational emails (account activity, billing, security alerts) — not marketing, unless you opt in.
• To debug and improve the service, using aggregated or anonymized logs.

4. AI assistant data handling

If you use the AI assistant, your messages are sent to a third-party model provider (currently Anthropic) to generate responses. We do not retain prompts beyond what is needed to show you your chat history. The provider's data retention terms apply and are available at our contact address on request.

5. Who we share data with

Only these subprocessors, and only for the purpose listed:

• Google — authentication (Sign in with Google)
• Stripe — payment processing (paid plans only)
• Anthropic — AI assistant completions (if you use it)
• Our hosting provider (Fly.io) — runs the servers
• Law enforcement, only when compelled by valid legal process

6. Data retention

We keep your data as long as your account is active. If you cancel, we retain your data for 30 days in a read-only state (so you can export or reactivate), then delete it. Billing records are kept for 7 years to satisfy accounting obligations.

7. Your rights

You can:

• Access and export all your data from the dashboard settings
• Delete your account and all associated data
• Correct inaccurate account data
• Opt out of any non-essential emails

If you are in the EU/UK, you have additional rights under GDPR including data portability, the right to object, and the right to lodge a complaint with your supervisory authority. California residents have rights under the CCPA. Contact [email protected] to exercise any of these.

8. Security

We use TLS for all data in transit, encrypt credentials at rest, isolate tenants at the database layer, and mint short-lived JWTs for sessions. No system is perfectly secure — report suspected vulnerabilities to [email protected].

9. Children

The service is intended for families. An account owner must be 18+; minors may be added as family members under an adult account. We do not knowingly collect data from children without parental consent.

10. Changes to this policy

If we make material changes, we'll notify you by email at least 30 days before they take effect.

11. Contact

Privacy questions: [email protected]