Privacy Policy

Effective June 19, 2026

This document is a professional template provided for convenience and is not legal advice. Please have a qualified privacy attorney review it for your jurisdiction (including COPPA, FERPA, and applicable state laws) before relying on it.

GrowthVault360 ("we", "us") operates ChildOS, software used by licensed childcare centers ("Centers") to support children's development. This policy explains what we collect, why, and how we protect it. We treat family and children's data as highly sensitive and follow the principles of data minimization and purpose limitation.

1. Our role

Centers are the controllers of the children's and parents' data they enter. ChildOS acts as a service provider/processor that handles data only to provide the service under our agreement with the Center — never for advertising or to build profiles of children.

2. What we collect

Account data (name, email, role); child profile data entered by the Center (first name, age/date of birth, classroom, developmental assessments and notes); parent contact details; messages and daily reports; and limited technical/usage data needed to run and secure the service.

3. Why we collect it

Solely to deliver ChildOS features: developmental tracking, AI insights, parent dashboards, reports, and messaging. We do not sell personal information and do not use children's data for targeted advertising.

4. How we protect it

Role-based access controls, encryption in transit and at rest, scoped multi-tenant isolation, access logging, and least-privilege administration. Only authorized roles (owner, director, assigned teacher, linked parent) can see a given child's records.

5. Data sharing & sub-processors

We share data only with vetted infrastructure and AI sub-processors strictly to operate the service (e.g., cloud hosting, payment processing, AI summarization), under contractual data-protection terms. We never sell or rent personal data.

6. Parental rights

Through the Center, parents can review, correct, or request deletion of their child's data and control media/sharing permissions. Contact your Center or us at privacy@growthvault360s.com.

7. Retention & deletion

We retain data only as long as needed to provide the service or as the Center directs, then securely delete or de-identify it. Centers may request export or deletion at any time.

8. Children under 13 (COPPA)

Where COPPA applies, Centers obtain verifiable parental consent and act as the parents' agent for the educational/childcare purpose. See our Children's Privacy notice for details.

9. Changes & contact

We will post updates here with a new effective date. Questions: privacy@growthvault360s.com.

Privacy PolicyChildren's PrivacyTerms of ServiceTrust & Security

Your privacy comes first

We use only the cookies required to run ChildOS securely. We do not use tracking or advertising cookies, and we never build advertising profiles of children. See our Privacy Policy.

Made with Emergent