Privacy Policy

Effective date: May 20, 2026 Last updated: May 20, 2026

1. Who we are

Frootz is operated by Gannon Development Services, LLC dba. Frootz ("Frootz", "we", "us", or "our"). You can reach us at contact-us@frootz.app for any privacy question or to exercise the rights described below.

This policy applies to the Frootz website at https://frootz.app, the Frootz web application served from that origin, any mobile applications we publish under the Frootz name, and any other product or service that links to this policy (together, the "Service").

This policy does not apply to third-party websites, apps, or services that you reach through the Service. Their privacy practices are governed by their own policies.

2. What Frootz is (and is not)

Frootz is a family-organization tool. Parents create a family "tenant", add children and other adult guardians, and use the Service to coordinate allowances, chores, savings goals, and purchase requests. Amounts shown inside Frootz are a virtual ledger — a bookkeeping record between members of the same household — and are not real money, not redeemable for real money, and not held, transmitted, or processed by Frootz.

Frootz is not a bank, money transmitter, payment processor, custodial account provider, or financial institution. Real-money settlement between a parent and a child happens off-platform, at the parent's discretion. The only real-money transaction Frootz facilitates is the subscription fee the parent pays us, which is processed by Stripe (see §6).

3. Information we collect

We collect only the information we need to provide the Service. Categories:

3.1 Information you give us

  • Account information. When a parent or other adult creates a Frootz account, we collect a name, email address, and password. The password is never stored in clear text — it is hashed by our authentication provider (see §6).
  • Family / tenant information. Family name, the country and (when needed for sales-tax purposes) the address of the billing parent.
  • Child profile information. When a parent adds a child to the family, we collect the child's display name, a chosen username, a password set by the parent, an optional birthdate, and an optional avatar photo. Children themselves do not need to enter or verify an email address — see §4.
  • Family activity information. The chores, allowance configurations, bounties, goals, wishlists, purchase requests, ledger entries, coupons, and notes that you (parents or children) create inside the Service.
  • Files you upload. Avatar photos and proof-of-completion photos that you attach to a chore or purchase request. These are stored in private Azure Blob Storage containers and served only via short-lived signed URLs to members of the same family tenant (with the explicit exception of the parent-generated public wishlist share link described in §6).
  • Communications. When you contact us through the in-app feedback form, by email, or otherwise, we keep a copy of what you sent and the response we gave so we can follow up and improve the Service.

3.2 Information collected automatically

  • Device, browser, and connection information. When you use the Service we log the IP address, browser type, operating system, device type, language, and approximate location derived from the IP. We use this for security, fraud prevention, abuse detection, and debugging.
  • Usage information. Pages visited, features used, and timestamps. We use this to understand which features work, to size capacity, and to troubleshoot.
  • Diagnostic and error logs. When the Service errors out we capture stack traces and a small amount of surrounding context so engineers can fix the bug. We try not to capture personal information in these logs; if we ever do, it is treated like any other personal information described here.
  • Cookies and similar technologies. See §9.

3.3 Information we do not collect

  • We do not knowingly collect Social Security numbers, government ID numbers, bank account numbers, or full credit-card numbers. Card data is entered directly into Stripe's iframe and never touches Frootz's servers (see §6).
  • We do not collect precise geolocation (GPS) from your device.
  • We do not use third-party advertising trackers, ad networks, or behavioral advertising SDKs anywhere in the Service, and we never will in any surface that a child can reach.

4. Children's privacy (COPPA, GDPR-K, Apple Kids Category)

Frootz is built around the assumption that children will use the Service. We take this seriously and follow the stricter of US (COPPA) and EU/UK (GDPR-K / Age-Appropriate Design Code) requirements wherever we operate.

  • Only a parent can create a child account. There is no public sign-up flow for a child. The parent enters the child's username and password during onboarding and is responsible for sharing those credentials with the child.
  • Verifiable parental consent. By creating a child account, the parent affirms that they are the child's parent or legal guardian and consents to the Service collecting and processing the child's information as described in this policy. We treat the act of completing the paid subscription with a credit card in the parent's name as one acceptable method of verifiable parental consent under 16 CFR §312.5 (the COPPA Rule). Additional consent steps may be added at the discretion of counsel.
  • Limited data collection. We collect only the child information needed to run the Service (display name, username, hashed password, optional birthdate and avatar, and the family-activity records the child creates inside the app). We do not require a child to provide an email address. We do not enable third-party social login for child accounts.
  • No behavioral advertising, ever. We do not show ads to children, we do not allow third-party ad networks inside the Service, and we do not sell or rent child information.
  • Parental controls. A parent can at any time view, edit, or delete a child's profile and reset the child's password from the family settings screen. A parent can also request export or deletion of all data associated with their child by contacting contact-us@frootz.app.
  • No public profiles. A child's information is only visible to other members of the same family tenant. The single exception is the parent-generated read-only wishlist share link described in §6, which a parent can intentionally create and share outside the family; the parent controls whether to enable it and can revoke it at any time.

If you are a parent and you believe a Frootz account was created without your consent, contact us at contact-us@frootz.app and we will delete the account and any associated data promptly.

5. How we use information

We use the information described in §3 for the following purposes:

| Purpose | Examples | | --- | --- | | Provide the Service | Authenticate users, render ledger and chore data, deliver notifications, store uploaded photos | | Billing | Charge the parent's chosen payment method, calculate sales tax, send receipts, handle dunning and cancellations | | Customer support | Respond to in-app feedback, reset a child's password at a parent's request | | Security | Detect and prevent abuse, fraud, credential stuffing, and other attacks on the Service | | Legal compliance | Respond to lawful requests, enforce our Terms, defend our rights | | Product improvement | Understand which features are used and which fail so we can fix and improve them |

We do not use personal information to train machine-learning models, build advertising profiles, or sell data to third parties.

5.1 Legal bases (EEA/UK users)

Where the GDPR or UK GDPR applies, we rely on the following legal bases:

  • Contract (Art. 6(1)(b)) — to provide the Service the parent has subscribed to.
  • Legitimate interests (Art. 6(1)(f)) — for security, fraud prevention, debugging, and limited product analytics. We balance these against your rights and freedoms; if you object you can contact us at contact-us@frootz.app.
  • Consent (Art. 6(1)(a)) — for any processing that is not strictly necessary to provide the Service, including the creation of a child account (which the parent consents to on the child's behalf under Art. 8).
  • Legal obligation (Art. 6(1)(c)) — for tax records, fraud-prevention reporting, and lawful requests from authorities.

6. Who we share information with

Frootz does not sell personal information. We share it only with the sub-processors and recipients listed below, and only as needed to run the Service.

| Recipient | Role | What they receive | | --- | --- | --- | | Stripe, Inc. | Payment processing, Stripe Tax | Parent name, billing address, email, the card data you enter into Stripe's iframe (never seen by Frootz), and the subscription metadata Stripe needs to bill you. Stripe is the controller of card data. | | SuperTokens (self-hosted by Frootz) | Authentication | Email, hashed password, session metadata. We run SuperTokens in our own Azure tenancy as part of the Service; no data is sent to a third-party auth SaaS. | | Mailjet (Mailgun S.A.S.) | Transactional email | Recipient email address, the email body (sign-in links, password resets, billing notifications). | | Microsoft Azure (Microsoft Corporation) | Cloud hosting and Azure Blob Storage | All Service data at rest and in transit. | | Other family members in your tenant | Intended product behavior | Parents in a family can see all children's profiles and ledgers in that family. Children can only see their own data. Guardians and grandparents see what their role permits. | | Recipients of a wishlist share link | Optional, parent-controlled | A read-only view of a child's wishlist, no balances or financial data. Requires a parent to explicitly generate and share the link; revocable at any time. | | Law enforcement and authorities | Legal obligation | When required by a valid subpoena, court order, or comparable legal process, or when we believe in good faith disclosure is necessary to protect users or comply with law. | | Acquirer in a business transfer | Successor in interest | If Frootz is acquired or merged, personal information may transfer to the acquirer, subject to this policy or a successor policy at least as protective. |

We do not share child information with any recipient except Stripe (for billing the parent), SuperTokens, Mailjet, and Azure as described above, plus other adult members of the same family tenant. We never share child information with advertising networks, data brokers, or analytics vendors that profile users.

7. International data transfers

Frootz operates from the United States and processes data on Microsoft Azure regions in Central US. If you access the Service from outside the United States, your information will be transferred to and processed in our operating region.

For transfers of personal data out of the EEA, UK, or Switzerland we rely on the European Commission's Standard Contractual Clauses (and the UK addendum where applicable). A copy is available on request at contact-us@frootz.app.

8. Retention

We keep personal information only as long as we need it for the purposes described in this policy or as required by law.

| Category | Retention | | --- | --- | | Active accounts | While the account is active and for 90 days after the last login or cancellation, after which we anonymize or delete | | Ledger transactions and financial records | 7 years from the date of the transaction, to satisfy US tax / audit norms | | Billing records and Stripe customer mapping | 7 years | | Error logs and request logs | 90 days | | Backups | Up to 35 days after deletion, then purged | | Feedback / contact form messages | 2 years |

Children's data is deleted (or fully anonymized) within 30 days of the parent requesting deletion or the family tenant being closed.

9. Cookies and similar technologies

We use a small number of cookies and equivalents:

  • Strictly necessary — session cookies set by our authentication provider to keep you signed in, and the CSRF token cookie set by the Frootz API. These cannot be disabled.
  • Preferences — a localStorage entry that remembers your theme (light / dark / system).

We do not use third-party advertising cookies, cross-site tracking cookies, or fingerprinting. We do not currently respond to "Do Not Track" browser signals because there is no consensus on what compliance with that signal means. We do respect the Global Privacy Control signal where required by US state law (see §11).

10. Your rights (EEA / UK)

If you are in the EEA, UK, or Switzerland, you have the following rights:

  • Access — confirm whether we hold your data and get a copy.
  • Rectification — correct inaccurate or incomplete data.
  • Erasure — request deletion (subject to legal retention requirements).
  • Restriction — pause our use of your data while a dispute is resolved.
  • Portability — receive a machine-readable copy of the data you have given us.
  • Objection — object to processing based on legitimate interests.
  • Withdraw consent — where we rely on consent, you can withdraw it at any time. Withdrawal does not affect prior processing.
  • Complaint — lodge a complaint with your local data-protection authority.

To exercise any right, contact contact-us@frootz.app. We will respond within 30 days.

11. Your rights (United States — California, and other state laws)

California residents have rights under the California Consumer Privacy Act, as amended by the CPRA, and residents of other US states with comparable laws (e.g., Virginia, Colorado, Connecticut, Utah, Texas) have similar rights:

  • The right to know what categories of personal information we collect, the sources, the purposes, and the categories of recipients.
  • The right to access a copy of your personal information.
  • The right to delete your personal information.
  • The right to correct inaccurate personal information.
  • The right to opt out of "sale" or "sharing" of personal information.

We do not sell or share personal information as those terms are defined under the CCPA/CPRA. We do not use personal information for cross-context behavioral advertising. We do not have a "Do Not Sell or Share My Personal Information" link because there is nothing to opt out of; we will add one promptly if our practices ever change.

We do not use sensitive personal information for any purpose other than the purposes permitted under §7027 of the CCPA regulations.

To exercise any state-law right, contact contact-us@frootz.app. We may need to verify your identity before responding. You may designate an authorized agent to act on your behalf.

12. Security

We protect personal information using a layered set of controls, including: encryption in transit (HTTPS / TLS 1.2+) and at rest (Azure-managed keys), hashed passwords via the SuperTokens auth provider, scoped database access within a single Azure tenancy, short-lived signed URLs for blob downloads, strict tenant isolation in every API request, and routine dependency and vulnerability scanning. No system is perfectly secure; if we discover a breach that affects you we will notify you and the relevant authorities as required by law.

13. Apple App Store and Google Play disclosures

If you install a Frootz mobile application from the Apple App Store or Google Play, the privacy information listed in the store listing reflects the same practices described here. In summary:

  • Data linked to you (Apple "Data Linked to You" / Play "Personal info" and "Financial info" categories): name, email, billing address (for the paying parent), user-generated content (chore notes, photos, wishlists), usage data, diagnostic data.
  • Data not linked to you: none of the above is used for tracking across apps owned by other companies.
  • Tracking: Frootz does not "track" users as defined by Apple's App Tracking Transparency framework. The iOS app will not present an ATT prompt because no tracking occurs.
  • Data Safety (Play): data collected is encrypted in transit; users can request deletion; we follow the Families Policy for any feature available to a child.

14. Changes to this policy

We may update this policy from time to time. The "Last updated" date at the top of this policy tells you when the latest changes took effect. If we make a material change we will notify you by email or with an in-app banner before the change takes effect. Continuing to use the Service after a change takes effect means you accept the updated policy.

15. Contact us

Questions, requests, and complaints can be sent to:

contact-us@frootz.app

For data-subject requests, please write "Privacy Request" in the subject line so we can route it quickly.