Point Pals Privacy Policy

Last updated: June 2026

Who we are

Point Pals is a goal and reward tracker for parents. This policy explains what data the app collects and how it is used.

What we collect

• Account identifier: when you sign in with Apple, we receive a stable anonymous identifier and, if you choose to share it, your email address (which may be Apple's private relay address). This is used solely to operate your account.
• App content you create: child first names or nicknames you enter, point categories, scores, rewards, and adjustment history. This data exists only so the app can function for you.

Anonymous usage analytics

To understand how the app is used and improve it, we record anonymous, aggregated usage events (for example: app opened, child added, points adjusted). Each event includes:

• A one-way hashed identifier so we can count unique users without knowing who they are. The hash cannot be reversed to your account.
• Country (derived from the network request, never your precise location or IP address) and device platform (iOS/web).
• The event name and non-identifying counts. We strip any field that could contain personal information (names, emails, phone numbers, child names, addresses, etc.) before storing.

This data is used solely by us to measure feature usage and overall demand. It is never sold. In the future we may use aggregated, anonymized statistics (such as “X% of parents in country Y added a reward this month”) to attract sponsors for optional suggested-reward content; individual data is never shared.

What we do NOT collect

• No advertising identifiers and no ads.
• No third-party analytics SDKs — analytics are first-party and stored only on our own servers.
• No precise location data, contacts, photos, or device contents.
• No data is sold or shared with third parties.
• Point Pals is designed for parents. Children do not create accounts and we do not knowingly collect personal information from children.

How data is stored and secured

Data is stored on Cloudflare's infrastructure and transmitted exclusively over HTTPS. Authentication tokens are stored in the iOS Keychain on your device. Your parent PIN is stored only as a salted cryptographic hash.

Data retention and deletion

You can permanently delete your account and all associated data at any time from the app: Parent Dashboard → Settings → Delete Account. Deletion is immediate and irreversible.

Contact

Questions or requests: hello@jbyer.com