KinderflowTerms of Use →

Privacy Policy

Last updated: April 15, 2026

Kinderflow, Inc. ("Kinderflow," "we," "our," or "us") operates the Kinderflow platform — a childcare and aftercare program management service available at kinderflow.io (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our Service. Please read it carefully.

1. Information We Collect

1.1 Information You Provide

When you register or use the Service, we collect:

  • Account information: your name, business name, email address, and password.
  • Business information: your childcare or aftercare program name, address, and operating details.
  • Guardian information: names, email addresses, phone numbers, and emergency contacts you enter for the families you serve.
  • Child enrollment data: children's names, dates of birth, room or classroom assignments, and enrollment status.
  • Billing information: payment method details processed securely through Stripe. We do not store full card numbers on our servers.
  • Communications: messages, support requests, or feedback you send us.

1.2 Information Collected Automatically

When you use the Service we automatically collect:

  • Usage data: pages visited, features used, timestamps, and actions taken within the platform.
  • Device and browser data: IP address, browser type, operating system, and referring URLs.
  • Cookies and similar technologies: session cookies necessary for authentication and site functionality. We do not use advertising or tracking cookies.

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and improve the Service.
  • Process billing and manage your subscription through Stripe.
  • Send transactional emails such as invoices, password resets, and enrollment confirmations.
  • Respond to support requests and communicate service updates.
  • Monitor security, detect fraud, and enforce our Terms of Use.
  • Comply with applicable laws and regulations.

We do not sell, rent, or share your personal data or the data of the families you manage with third parties for marketing purposes.

3. Children's Privacy

The Service is used by childcare operators to manage enrollment and attendance records for children. We treat all child-related data with heightened care. We do not knowingly collect personal information directly from children under 13. Childcare operators using Kinderflow are responsible for ensuring they have appropriate consent from parents or guardians to enter and manage child data in the platform in accordance with applicable laws, including COPPA.

We have designed the Service to minimize the storage of sensitive child health data. Medical and allergy information is not stored on Kinderflow's servers and should be maintained in your own secure records.

4. How We Share Your Information

We share information only in the following circumstances:

  • Service providers: We use Supabase (database and file storage) and Stripe (payment processing) to operate the Service. These providers access only the data necessary to perform their functions and are bound by confidentiality obligations.
  • Legal requirements: We may disclose information if required by law, court order, or government authority, or to protect the rights, property, or safety of Kinderflow, our users, or the public.
  • Business transfers: If Kinderflow is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your data is transferred and becomes subject to a different privacy policy.

5. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit (TLS), encryption at rest, access controls, and regular security reviews. Our infrastructure is hosted on Supabase (PostgreSQL) with row-level security policies.

While we take reasonable steps to protect your information, no method of transmission over the internet or method of electronic storage is 100% secure. We cannot guarantee absolute security.

6. Data Retention

We retain your account and business data for as long as your account is active or as needed to provide the Service. If you cancel your account, we will retain your data for 90 days in case you wish to reactivate, after which it will be permanently deleted. You may request earlier deletion by contacting us at privacy@kinderflow.io.

7. Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you.
  • Correct inaccurate or incomplete information.
  • Delete your personal information (subject to legal obligations).
  • Export your data in a portable format.
  • Opt out of non-essential communications.

To exercise any of these rights, contact us at privacy@kinderflow.io. We will respond within 30 days.

8. Third-Party Links

The Service may contain links to third-party websites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of the Service after changes are posted constitutes your acceptance of the revised policy.

10. Contact Us

If you have questions about this Privacy Policy, please contact us:

  • Email: privacy@kinderflow.io
  • Website: kinderflow.io
  • Mail: Kinderflow LLC, 522 W Riverside Ave, Suite N, Spokane, Washington 99201