Back to Home

Privacy Policy

Last updated: April 25, 2026

1. Introduction

TinySage (“we”, “our”, “us”) is an AI-powered baby care companion. This Privacy Policy explains how we collect, use, store, and protect your personal data and your baby's health information.

We take the privacy of your family's data seriously. Baby health information is treated as sensitive personal data with the highest level of protection.

2. Data We Collect

Account Data

  • Email address and name (via Clerk authentication)
  • Authentication tokens

Baby Care Data

  • Baby profile (name, date of birth, timezone)
  • Tracked events (feeding, sleep, diaper, medication, temperature, activities)
  • Health notes (illness episodes, food introductions, concerns)
  • Chat conversations with the AI assistant

Technical Data

  • Device type and browser information
  • IP address (for security purposes only)

3. How We Use Your Data

  • Providing baby care tracking and AI-powered insights
  • Generating personalized recommendations based on your baby's data
  • Enabling multi-caregiver collaboration (shared baby profiles)
  • Improving our AI models and service quality

We do NOT sell your personal data or your baby's health data to third parties.

4. Third-Party Services

  • Clerk (authentication) -- processes your login credentials
  • Supabase (database) -- stores your data in a PostgreSQL database with encryption at rest
  • Anthropic (AI) -- processes your chat messages to generate responses. Messages are sent to Anthropic's API but are not used to train their models.
  • Vercel (hosting) -- serves the application

5. Data Storage and Security

Your data is stored in Supabase PostgreSQL with Row Level Security (RLS) enabled. Data is encrypted in transit (TLS) and at rest. Access is restricted to authenticated users with verified baby access permissions.

6. Data Retention and Deletion

We retain your data for as long as your account is active. You may delete your account and all associated data at any time from the app's Settings page. Upon deletion:

  • All baby profiles you own are permanently deleted
  • All tracked events, chat messages, and insights are permanently deleted
  • Your authentication account is removed from Clerk
  • Deletion is irreversible

7. Children's Privacy

TinySage collects data about babies and young children as entered by their parents or caregivers. We do not collect data directly from children. Parents and caregivers are responsible for the accuracy of the data they enter.

We comply with applicable children's privacy laws including COPPA (US) and PDPA (Singapore).

8. Your Rights

You have the right to:

  • Access your data (available in-app)
  • Correct inaccurate data (edit events and profiles in-app)
  • Delete your data (via account deletion)
  • Export your data (contact us)

9. Contact

For privacy-related questions, contact us at: privacy@tinysage.ai