Privacy Policy

1. Introduction

Welcome to UnifiedNest. I am Divakar, an individual developer building family-focused software. This Privacy Policy explains how I collect, use, disclose, and safeguard your information when you use UnifiedNest's family management applications.

UnifiedNest consists of three main services:

• Website: A marketing and informational website
• Blog: A platform for family articles, stories, and community content where registered users can publish, comment, and interact
• Mobile App: A shopping list and family organization tool (coming soon)
• Educational Games: Interactive learning games for children (available for users of all ages, coming soon)

This Privacy Policy applies to all services, with service-specific details noted where relevant.

2. Information We Collect

2.1 Information You Provide Directly

• Account Information: Email address, name, username, and profile information when you create an account (primarily for blog users)
• Blog Content: Articles you write, comments you post, likes/reactions, and other content you publish on the blog
• Profile Data: Display name, bio, profile picture, and social media links (optional, for blog authors)
• Mobile Data: Shopping lists, item names, quantities, categories, and notes you create (mobile app)
• User-Generated Content: Any text, notes, or other content you add to any service
• Communication Data: Messages you send to support

2.2 Information Collected Automatically

• Device Information: Device type, operating system, app version, and unique device identifiers
• Usage Data: How you interact with the services, features used, time spent, articles read, and engagement metrics
• Log Data: IP addresses, browser type, pages visited, and crash reports
• Analytics Data: We use Google Analytics to understand how users interact with our website and blog. This includes page views, session duration, and general demographic information
• Cookies: We use cookies for authentication, preferences, and analytics. See our Cookie Consent banner for details

2.3 Third-Party Services

We use the following third-party services that may collect data:

• Supabase: Provides authentication and database services for the blog. Stores user accounts, articles, comments, and profile data. Data is encrypted and stored securely. Supabase Privacy Policy
• Google Cloud Platform: We use Google Cloud serverless functions (Cloud Run/Cloud Functions) to run backend services built with Golang and gRPC that connect to Supabase for data processing and API operations. These services may process your data as part of normal application functionality. Data is encrypted in transit and at rest. Google Cloud Privacy Notice
• Google Analytics: Tracks website and blog usage for analytics purposes. We use consent mode to respect your privacy preferences. Google Privacy Policy
• Vercel: Hosts our website and blog infrastructure. Vercel Privacy Policy

Important Disclaimer: These third-party services have their own privacy policies and terms of service that govern how they collect, use, and protect your data. While we carefully select service providers and take reasonable steps to ensure they handle data responsibly, we cannot control or guarantee their practices. Each service provider is responsible for their own compliance with privacy laws and security standards. We encourage you to review the privacy policies of these third-party services.

Service Provider Changes: Third-party service providers may update their terms, privacy policies, or practices at any time without notice to us. We are not responsible for changes made by these providers. If we become aware of material changes that affect your privacy, we will make reasonable efforts to notify you and may change service providers if necessary.

3. How We Use Your Information

We use your information solely to:

• Provide, maintain, and improve the Services
• Process transactions and send related information
• Send technical notices and support messages
• Respond to your comments and questions
• Analyze usage patterns to improve user experience
• Comply with legal obligations

We do NOT sell, rent, or share your personal information with third parties for marketing purposes.

4. Data Storage and Security

4.1 Where We Store Data

• Blog Data: Stored securely with Supabase (PostgreSQL database), encrypted in transit and at rest
• Mobile App (Free Tier): Data stays on your device only, no cloud backup or synchronization
• Mobile App (Premium): Cloud synchronization with encrypted storage

4.2 Security Measures

We implement industry-standard security measures:

• Data encrypted in transit using HTTPS/TLS
• Data encrypted at rest in secure databases
• Regular security audits and updates
• Access controls and authentication for all sensitive data
• Secure password hashing (never stored in plain text)

4.3 Data Retention

• Account Data: Retained while your account is active
• Blog Content: Retained indefinitely unless you delete it or request deletion
• Analytics Data: Retained for up to 26 months (Google Analytics default)
• Deleted Accounts: Data is permanently deleted within 30 days of account deletion, except as required by law

4.4 Data Breach Notification

In the event of a data breach affecting your personal information, we will:

• Investigate the breach promptly upon discovery
• Notify affected users via email within 72 hours of confirming the breach (or as soon as reasonably possible)
• Provide information about what data was affected and what steps we're taking
• Comply with applicable data breach notification laws
• Work with third-party service providers to remediate the issue

Third-Party Breaches: If a breach occurs at a third-party service provider (e.g., Supabase, Vercel), we will notify you as soon as we become aware and provide available information. However, our ability to provide details may be limited by the third-party provider's disclosure. We encourage users to monitor communications from our service providers as well.

5. Your Rights and Choices

• Access: Request a copy of your personal data
• Correction: Update or correct your information
• Deletion: Delete your account and associated data
• Portability: Export your data in a machine-readable format
• Restriction: Limit how we process your data

6. Children's Privacy (COPPA Compliance)

Educational Games for Children: Our educational games (coming soon) are designed to provide quality digital learning experiences for children of all ages. These games do not collect, track, or store any personal information from users. No data is transmitted to our servers when using educational games. Parental supervision is recommended for children under 13.

Blog and Main Services: The blog and main services are intended for users 13 and older. We do not knowingly collect personal information from children under 13 for these services. If you are under 18, you must have parental consent to create an account and publish content.

If we discover that we have collected personal information from a child under 13 without parental consent, we will delete that information immediately. Parents may contact us at privacy@unifiednest.com to request deletion of their child's data.

7. Contact Us

If you have any questions about this Privacy Policy or our data practices:

• Email: privacy@unifiednest.com
• Contact: Divakar (Individual Developer)
• Response Time: I aim to respond at the earliest possible time

8. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by email or in-app notification. Your continued use after changes take effect constitutes acceptance of the updated policy.