Back to Home

Privacy Policy

Last updated: May 18, 2026

1. Introduction

TinySage (“we”, “our”, “us”) is an AI-powered baby care companion. This Privacy Policy explains how we collect, use, store, and protect your personal data and your baby's health information.

We take the privacy of your family's data seriously. Baby health information is treated as sensitive personal data with the highest level of protection.

2. Data We Collect

Account Data

  • Email address and name (via Clerk authentication)
  • Authentication tokens

Baby Care Data

  • Baby profile (name, date of birth, timezone)
  • Tracked events (feeding, sleep, diaper, medication, temperature, activities)
  • Health notes (illness episodes, food introductions, concerns)
  • Chat conversations with the AI assistant

Technical Data

  • Device type and browser information
  • IP address (for security purposes only)

3. How We Use Your Data

  • Providing baby care tracking and AI-powered insights
  • Generating personalized recommendations based on your baby's data
  • Enabling multi-caregiver collaboration (shared baby profiles)

We do NOT sell your personal data or your baby's health data to third parties. We do NOT use your data to train any AI model.

4. Third-Party Services and Sub-Processors

The following sub-processors handle specific aspects of the service. Each is bound by contract to safeguard your data:

  • Clerk (authentication) — processes your login credentials and email address. Clerk Privacy Policy.
  • Supabase (database hosting) — stores your data in a PostgreSQL database with encryption at rest and in transit, in EU/US regions. Supabase Privacy Policy.
  • Anthropic (AI provider — Claude) — generates AI responses, summaries, and insights. See AI Data Sharing below for exactly what is sent. Anthropic does not use your data to train their models per their enterprise terms. Anthropic Privacy Policy.
  • Vercel (web hosting) — serves the application. Standard server logs (IP, user agent) for security and operational purposes. Vercel Privacy Policy.
  • Railway (AI agent hosting) — runs the Python service that orchestrates Anthropic calls. Same data scope as Anthropic. Railway Privacy Policy.

We do not share data with OpenAI, Google, Meta, or any other third party not listed here.

4a. AI Data Sharing — What We Send to Anthropic

You will be asked for explicit consent the first time you sign in. AI features are disabled until you consent. You can withdraw consent at any time by deleting your account from Settings.

What we DO send to Anthropic (Claude):

  • Your baby's age in days/months (a number, not a date of birth)
  • Tracked events (feeding, sleep, diaper, medication, temperature, etc.) — type, time, quantity, and structured metadata
  • Your chat messages, with the following PII automatically redacted before transmission: person names, email addresses, phone numbers, addresses, dates, credit card numbers, government IDs, IP addresses, URLs
  • Free-text notes on events, with the same PII redaction applied

What we do NOT send to Anthropic:

  • Your baby's real name (replaced with "Baby")
  • Your baby's date of birth (only the derived age is sent)
  • Caregiver real names (replaced with "Caregiver 1", "Caregiver 2", etc.)
  • Doctor or healthcare-provider names (stripped from event metadata)
  • Email addresses, phone numbers, or any contact information
  • Photos, videos, or media attachments
  • Authentication tokens or payment information

PII redaction is performed using Microsoft Presidio, an open-source NLP-based data anonymization library. While redaction is highly accurate, no automated system is perfect — avoid pasting sensitive information into free-text fields.

5. Data Storage and Security

Your data is stored in Supabase PostgreSQL with Row Level Security (RLS) enabled. Data is encrypted in transit (TLS) and at rest. Access is restricted to authenticated users with verified baby access permissions.

6. Data Retention and Deletion

We retain your data for as long as your account is active. You may delete your account and all associated data at any time from the app's Settings page. Upon deletion:

  • All baby profiles you own are permanently deleted
  • All tracked events, chat messages, and insights are permanently deleted
  • Your authentication account is removed from Clerk
  • Deletion is irreversible

7. Children's Privacy

TinySage collects data about babies and young children as entered by their parents or caregivers. We do not collect data directly from children. Parents and caregivers are responsible for the accuracy of the data they enter.

We comply with applicable children's privacy laws including COPPA (US) and PDPA (Singapore).

8. Your Rights

You have the right to:

  • Access your data (available in-app)
  • Correct inaccurate data (edit events and profiles in-app)
  • Delete your data (via account deletion)
  • Export your data (contact us)

9. Contact

For privacy-related questions, contact us at: hellotinysage@gmail.com