← Back

Privacy Policy

Last updated: January 21, 2026

Kasimir is a private family app designed to help care for a newborn/young child. This policy explains what data we access and how we handle it, including when you sign in with Google.

What we don’t do

  • We do not sell your data.
  • We do not use your data for targeted advertising.
  • We do not use Google user data for marketing.

Google user data

Data accessed

When you sign in with Google, the app requests the following OAuth scopes:

  • openid (OpenID Connect identifier / ID token)
  • .../auth/userinfo.email (your email address)
  • .../auth/userinfo.profile (basic profile info such as name and profile picture)

In practice, this means we may receive your Google account email, name, profile photo (if available), and a unique Google account identifier from OpenID Connect.

Data usage

We access Google user data only to authenticate you and operate your session (for example, to sign you in, keep you signed in, and identify your account). We do not use Google user data for advertising, marketing, or profiling.

Data sharing

We do not sell Google user data and we do not share it with third parties for their own purposes. We only share data with service providers as needed to run the app:

  • Google (to complete sign-in)
  • Supabase (authentication, database, and associated infrastructure)
  • Our hosting provider (to serve the web app)

Data storage & protection

  • Data is encrypted in transit using TLS (HTTPS) and encrypted at rest using AES-256 (often referred to as “military-grade” encryption).
  • Access to app data is restricted to authenticated users and protected with authorization controls.
  • We aim to collect and retain the minimum data needed to provide the app’s features.

Data retention & deletion

We retain your account information (including Google sign-in identifiers) and the care data you enter for as long as your account remains active and you continue using the app, or as needed to provide the service.

You can request deletion of your account and associated data by contacting the app owner using the contact email shown on the Google OAuth consent screen for this application. After we verify the request, we will delete your account and associated data within a reasonable timeframe; some information may persist temporarily in encrypted backups.