Privacy Policy

Cradled (“we,” “our,” or “us”) operates the Cradled mobile application and the website at cradledapp.com (together, the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the Service.

Before the legal text, four things we want to say plainly:

• We never sell your personal information. Full stop.
• We collect only what the product needs to work. Nothing else.
• You decide what gets shared. Check-ins, plans, and personal details stay private unless you choose to share them.
• We're reachable. A real person answers [email protected].

By using the Service, you agree to the practices described here.

Information you provide directly:

• Account information — email, display name, role (mom, partner, village member, care provider)
• Pregnancy and birth context — due date, birth date, and a baby name if you choose to share it
• Check-in data — your weekly prenatal and daily postpartum wellbeing scores, and any notes you add
• Plans and preferences — birth plan, postpartum plan, partner alignment answers, and village wishlist preferences (dietary needs, visitor preferences, quiet hours)
• Tracking logs — feeding logs, appointment notes, and other entries you record over time
• Village activity — tasks claimed, feed posts, replies, and notes shared inside your village
• For care providers — professional profile, client roster information you add, contract and invoice content, scheduling and availability data

Information collected automatically:

• Device information (device type, operating system)
• App usage analytics (which features you use)
• Push notification tokens (so we can deliver notifications)
• On cradledapp.com: cookies for analytics and, if you arrived from an ad, an attribution token (see Section 12)

Information handled directly by our partners:

• Payments — when you pay an invoice or subscribe, your card details go directly to Stripe or to Apple / Google's stores. We never see or store full payment information.
• Care provider payouts — if you're a care provider, Stripe Connect collects your bank account, tax ID, and identity verification information directly. We don't store this — Stripe does.

We use the information we collect to:

• Provide, operate, and maintain the Service
• Facilitate village coordination and task management
• Share data with people you explicitly authorize — your partner, care provider, or village — at the sharing level you choose
• Send push notifications and transactional emails you have opted into
• Provide week-specific guidance and content
• Improve the Service based on usage patterns
• Communicate with you about your account or the Service

We do not sell your personal information. We share your information only in the following circumstances:

• With your village: Village members can see tasks, feed posts, and the wishlist preferences you have chosen to share. They cannot see your check-in data.
• With your partner: Your partner sees your check-in data only at the sharing level you select (private, summary, or full detail). You can change this at any time. Separately, your partner can choose to share a summary of their own check-ins with you — partner-initiated, off by default, and revocable at any time.
• With your care provider: Your care provider sees your check-in data, plans, and notes only at the sharing level you select. You can change or revoke this at any time.
• Service providers (subprocessors): We rely on a small number of specialised vendors to operate the Service — Supabase, Stripe, Resend, RevenueCat, PostHog, Expo / EAS, Google, Apple, Firebase Crashlytics, and Railway. Each processes data on our behalf under its own privacy terms. A current, itemised list is at /subprocessors and summarised in Section 10 below.
• Legal requirements: We may disclose information if required by law or in response to valid legal process.

We use industry-standard security measures to protect your information, including:

• Encrypted data transmission (HTTPS/TLS)
• Row-level security policies on all database tables
• Authentication via secure token-based sessions
• Secrets stored in encrypted vault (Supabase Vault)

No method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee its absolute security.

You have control over your data in the following ways:

• Your check-in sharing: Choose what your partner and care provider can see — from nothing to full detail. Change it any time in Account settings.
• Partner check-in sharing (partners only): Choose whether to share a summary of your check-ins with mom. Off by default. Change it any time in Account settings.
• Care provider access: Revoke a care provider's access at any time from the Village tab.
• Village membership: Remove village members at any time.
• Push notifications: Control which notifications you receive in Account settings, or disable them at the system level.
• Account deletion: Email [email protected] to request deletion. We complete this within 30 days.

Partner check-in data is private to the partner by default and is never shared with mom, village members, or care providers without the partner's explicit consent.

Partners can choose, from their own Account settings, to share a summary of their check-ins with mom. This sharing is partner-initiated and can be revoked at any time. We designed it this way so partners have a psychologically safe space to be honest about how they're really doing.

The Service is not intended for use by children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

We retain your data for as long as your account is active. Check-in data and village activity are preserved to maintain continuity of your postpartum record. If you request account deletion, we will remove all personal data within 30 days, except where we are required by law to retain it.

A current, itemised list of every subprocessor — what they do, where data is processed, and their privacy policy — is maintained at cradledapp.com/subprocessors.

Summary at time of writing:

• Supabase — Database, authentication, storage, realtime (us-east-1). Privacy
• Stripe — Payments and Stripe Connect for Care Provider payouts. Privacy
• Resend — Transactional email delivery. Privacy
• RevenueCat — Mobile subscription management. Privacy
• PostHog — Product analytics. Privacy
• Expo / EAS — App build, over-the-air updates, push routing. Privacy
• Google (FCM, Calendar API, Analytics, Ads) — Android push notifications; Google Calendar sync for opted-in Care Providers; website analytics and ad measurement. Privacy
• Apple (APNs, App Store) — iOS push notifications; App Store subscription billing. Privacy
• Firebase Crashlytics — Crash and error reporting. Privacy
• Railway — Hosting for cradledapp.com. Privacy

If you use Cradled as a licensed or regulated practitioner — counsellor, therapist, social worker, midwife, nurse, or similar — additional terms apply. Cradled is not a HIPAA Business Associate and has not been certified against HIPAA, PHIPA, PIPEDA, or any other clinical-records framework.

By using a Care Provider account in a professional capacity, you agree not to input Protected Health Information (as defined under HIPAA), regulated clinical records, or other information your profession or jurisdiction requires you to retain in a certified records system. Cradled is intended for practice management and client-facing workflows only — not as an Electronic Health Record.

Full professional-use terms are set out in Section 11 of our Terms of Use. To request a Data Processing Agreement, email [email protected].

When you visit cradledapp.com, we use cookies and similar tools to understand how visitors use the site and to measure ad campaign performance. Specifically:

• PostHog and Google Analytics 4 — page-level analytics: which pages you visit, where you click, where you leave.
• Google Ads conversion tracking — when you arrive from a Google or YouTube ad, we record an attribution token (such as gclid) so we can measure whether that ad led to an app install.

These tools see your activity on the website only. They do not have access to your Cradled account, health information, or anything inside the mobile app. You can block analytics cookies through your browser settings or by using a tracking-protection extension.

Wherever you live, you can ask us:

• What data we have about you
• To correct anything that's wrong
• To send you a copy of your data
• To delete your data

Email [email protected] and we'll respond within 30 days.

EU / UK residents: you also have the right to lodge a complaint with your local data protection authority.

California residents: under the CCPA you have specific rights to know, delete, and opt out of sale. We do not sell personal information — and we honor these rights for everyone, regardless of which state you live in.

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last updated” date. You are advised to review this Privacy Policy periodically.

If you have questions about this Privacy Policy, please contact us at:

[email protected]