Privacy Policy
Last updated: July 5, 2026 Developer: LPF Family Contact: [email protected] Website: https://lpf.family
This policy covers all apps published by LPF Family: Bright, Steer & Anchor, Contour, Closet, and Mimo. We wrote it in plain language because we know you’ll actually read it — and we respect that.
The Short Version
- We never sell your data. Not now, not ever.
- We do not share your data with third parties for their own marketing purposes.
- We use a small number of service providers (like Cloudflare and Supabase) to operate our apps. They only process data on our instructions.
- Contour does not upload your photos — image processing stays on your device.
- Closet stores everything locally on your device (IndexedDB). Photos are processed on-device via WASM. Voice data is processed on-device and never uploaded.
- Mimo runs its face and voice exercises entirely on your device. Camera and microphone data never leave the phone — we never see your child’s face or hear their voice.
- Steer & Anchor stores your journal entries in Apple iCloud or on your iPhone. We never see them.
- Bright stores photos and text you upload on our servers (Cloudflare) so the app works — but we don’t share that content outside your household.
- Our apps currently contain no analytics and no crash-reporting SDKs. If we add minimal crash reporting to fix bugs, we’ll update this policy first.
1. What Each App Collects
Contour (Photo to Connect-the-Dots)
| Data | Collected? | Details |
|---|---|---|
| Photos you process | No | All image processing happens on your device. Photos are never uploaded or stored on our servers. |
| Account / login | No | No account required. |
| Personal information | No | We don’t ask for your name, email, or any identifying information. |
| Crash reports & diagnostics | Not currently | Contour does not currently include crash-reporting SDKs. If we add crash reporting (anonymous crash logs and basic device info), we will update this policy first. |
| Ad data | Yes | Contour displays ads via Google AdMob. Google may collect or receive device identifiers, ad interaction data, and approximate location to serve and measure ads, subject to your device settings and Google’s policies. See Google’s privacy policy for details. |
Child-directed ads: We configure AdMob to treat Contour ad requests as child-directed where required (COPPA). This limits behavioral advertising and related data use per Google’s child-directed settings. See the Children’s Privacy section.
Closet (Visual Closet Organizer)
| Data | Collected? | Details |
|---|---|---|
| Photos | No | All image processing happens on your device via WASM. Photos are stored locally in IndexedDB and never uploaded to our servers. |
| Account / login | No | No account required. Closet is local-first, storing all data in IndexedDB on your device. |
| Personal information | No | We don’t ask for your name, email, or any identifying information. |
| Voice data | No (by us) | Voice interaction is processed on-device and is not uploaded or stored on our servers. |
| Crash reports & diagnostics | Not currently | Closet does not currently include crash-reporting or analytics SDKs. If we add crash reporting, we will update this policy first. |
Mimo (Face Exercise Practice for Speech Therapy)
| Data | Collected? | Details |
|---|---|---|
| Camera / face data | No | Face tracking runs entirely on your device (Apple ARKit). Camera frames and face data are processed in real time, never recorded, and never uploaded. We cannot see your child’s face. |
| Microphone / voice data | No | Sound is analyzed on-device only (for example, to show a sound-level bar during voice exercises). Audio is never recorded or uploaded. |
| Practice history | No (by us) | Exercise progress, streaks, and rewards are stored locally on your device. Nothing is sent to our servers. |
| Account / login | No | No account required. |
| Personal information | No | We don’t ask for your name, email, or any identifying information. |
| Ads | No | Mimo contains no ads and no advertising SDKs. |
| Crash reports & diagnostics | Not currently | Mimo does not currently include crash-reporting or analytics SDKs. If we add crash reporting, we will update this policy first. |
Steer & Anchor (Parent Coaching & Personal Development)
| Data | Collected? | Details |
|---|---|---|
| Journal entries | No (by us) | Your journal data is stored only on your iPhone (local storage) or in your personal Apple iCloud account. It never touches our servers. We cannot read, access, or recover your journal entries. |
| AI provider data | Depends on your choice | If you select OpenAI as your AI provider, the text you submit for reflection is sent to OpenAI’s API (using your own API key) and handled under OpenAI’s policies — it does not pass through our servers. Apple Intelligence and Ollama run on your own device/hardware, and the “None” option sends nothing anywhere. |
| Account / login | No | No account required. Your settings and API keys stay on your device. |
| Personal information | No | We don’t ask for your name, email, or any identifying information. |
| Crash reports & diagnostics | Not currently | Steer & Anchor does not currently include crash-reporting or analytics SDKs. If we add crash reporting, we will update this policy first. |
Bright (Family Schedule, Tasks & Rules)
| Data | Collected? | Details |
|---|---|---|
| Photos & text you upload | Yes | Task images, child profiles, house rules content, and other media you add are stored on our servers (Cloudflare infrastructure) so the app functions. This content is associated with your household and is not shared outside it. |
| Children’s names & profiles | Only what you enter | Any child-related information a parent chooses to include in schedules, tasks, rules, or photos is stored on our servers as part of that content. We store only what you provide — no data is inferred or enriched. |
| Account / login | Yes | Parents sign in with email + password, Sign in with Apple, or Sign in with Google, handled by our authentication provider (Supabase). We store your email address and authentication tokens; passwords are stored only as secure hashes by Supabase. |
| Device pairing (TV) | Yes | If you pair a TV, we store a device token and device name (e.g., “Living Room Apple TV”) to keep it connected to your household. Your IP address may be used transiently for rate limiting and abuse prevention. |
| Subscription status | Yes | If you subscribe, our entitlement service and RevenueCat process your app-store subscription status linked to your account ID. We never see your payment details — Apple handles those. |
| Crash reports & diagnostics | Not currently | Bright does not currently include crash-reporting SDKs. Our infrastructure provider (Cloudflare) keeps operational request logs to run the service. If we add crash reporting, we will update this policy first. |
| Analytics | Not currently | No analytics scripts run in the app or admin portal today. If we add privacy-friendly analytics (e.g., Cloudflare Web Analytics), we will update this policy first. |
2. What We Do NOT Do
- We do not sell, rent, or trade your data to advertisers, data brokers, or anyone else.
- We do not share your uploaded content (photos, text, journal entries, closet data) with third parties for their own use.
- We do not use your data to train AI models.
- We do not track you across other companies’ apps or websites.
- Exception: Contour shows ads via AdMob, which may involve ad measurement and related identifiers as described above.
- We do not allow children to directly submit personal information to our servers. Bright’s child-facing interface is read-only (see Children’s Privacy).
3. Third-Party Services
We use a small number of third-party services to run our apps:
| Service | Used in | Purpose | What they receive |
|---|---|---|---|
| Google AdMob | Contour only | Display ads | May collect device identifiers, ad interactions, approximate location, and other signals per Google policies and your device settings |
| Supabase | Bright | Account authentication | Your email address, hashed password (if you use password sign-in), and sign-in events. Supabase processes this on our instructions to provide login. |
| RevenueCat | Bright (subscriptions) | Subscription management | An account identifier and your app-store subscription status. Never your payment details — those stay with Apple. |
| Cloudflare | Bright, this website | Hosting & storage | Operational data necessary to deliver the service (e.g., requests to our servers). This may include IP address for security and abuse prevention. Where supported, we minimize or truncate IP data. |
| Apple iCloud | Steer & Anchor | Journal sync | Your journal data under Apple’s privacy policy, not ours |
| OpenAI | Steer & Anchor (only if you choose it) | Optional AI provider | The text you submit for AI reflection, sent directly from your device with your own API key. Governed by OpenAI’s policies. Choose Apple Intelligence, Ollama, or “None” to keep everything on-device. |
| Sentry | None yet | Crash reporting (planned) | Not currently integrated in any app. If we enable it, it would receive crash logs + basic device/app info, and we will update this policy first. |
We do not use Facebook SDK, Google Analytics, Firebase Analytics, or any other tracking/advertising SDK beyond what’s listed above.
4. Children’s Privacy (COPPA Compliance)
Our apps are designed for families with children, including children under 13. We take this seriously.
- Bright: Parents (adults) manage the app and upload content. Children may use a read-only interface to view schedules, tasks, and rules — but children do not create accounts or upload content. Profile info about children is entered by a parent/guardian.
- Contour: No photos or personal content are collected by us. Contour displays ads via AdMob (see below).
- Closet: No data is collected by us. All photos and wardrobe data are stored locally on the device. Voice interaction is processed on-device.
- Mimo: Built for children practicing speech-therapy exercises with a parent or therapist. All face tracking and sound analysis happens on-device. We collect no data, there are no accounts, and there are no ads.
- Steer & Anchor: Designed exclusively for parents (adults). Not intended for use by children.
AdMob and children (Contour): We configure AdMob requests as child-directed where required to reduce behavioral advertising and comply with COPPA. See Google’s child-directed treatment settings: https://support.google.com/admob/answer/7562142
If you believe we have inadvertently collected personal information from a child without appropriate consent, contact us at [email protected] and we will delete it.
5. Data Storage & Security
- Bright data is stored on Cloudflare infrastructure with encryption in transit (HTTPS) and at rest. Access is restricted to your household via authentication.
- Steer & Anchor journal data is stored on your device and/or iCloud, protected by your Apple ID and device passcode.
- Contour does not store your photos on our servers.
- Closet stores all data locally on your device in IndexedDB. No data is transmitted to our servers.
- Mimo processes camera and microphone input in memory on your device and stores practice history locally. Nothing is transmitted to our servers.
- We take reasonable measures to protect your data, but no method of transmission or storage is 100% secure.
Crash report retention: If we enable crash reporting in the future, crash reports will be retained for 90 days and then automatically deleted.
6. Data Retention & Deletion
- Contour: Nothing to delete — we don’t have your photos or personal content on our servers.
- Closet: Nothing to delete on our end — all data is stored locally on your device. Clear the app’s data or uninstall to remove it.
- Mimo: Nothing to delete on our end — practice data lives only on your device. Uninstall the app to remove it.
- Steer & Anchor: Delete the app or manage/delete iCloud data at any time. We have nothing to delete on our end.
- Bright: You can delete individual items (photos, tasks, rules, child profiles) through the admin portal at any time.
- To delete all your data, contact us at [email protected] and we will erase your household’s data within 30 days.
- Backups: Residual copies may remain in encrypted backups for up to 30 days before being overwritten.
- We may retain limited data where required for security, fraud prevention, or legal compliance.
7. Your Rights
Depending on where you live, you may have rights to:
- Access the personal data we hold about you
- Correct inaccurate data
- Delete your data
- Object to or restrict certain processing
- Export your data in a portable format (where technically feasible)
To exercise these rights, email [email protected]. We may need to verify your identity before fulfilling your request.
If you are in California (CCPA/CPRA), Israel (Protection of Privacy Law), Mexico (LFPDPPP), or another jurisdiction with specific privacy laws, additional rights may apply. We do not discriminate against anyone for exercising privacy rights.
8. Regional Availability
Our apps are currently available in Israel, Mexico, the United States, and Canada. We do not currently target or market to users in the European Economic Area (EEA), the United Kingdom, or Switzerland.
If we expand to those regions in the future, we will update this policy to include full GDPR/UK GDPR compliance details (data controller info, legal bases, international transfer safeguards, and supervisory authority complaint rights).
9. Changes to This Policy
If we make material changes, we will update the “Last updated” date and notify you through the app and/or our website. We will never quietly reduce your privacy protections.
10. Contact Us
Questions about this privacy policy?
LPF Family [email protected] https://lpf.family
This privacy policy was written to be read by real people — not just lawyers. If anything is unclear, email us and we’ll explain it in plain language.