Trust & Security

Effective June 19, 2026

This document is a professional template provided for convenience and is not legal advice. Please have a qualified privacy attorney review it for your jurisdiction (including COPPA, FERPA, and applicable state laws) before relying on it.

Childcare centers trust ChildOS with the most sensitive data there is — information about young children and their families. We engineer the platform around the principles of least privilege, data minimization, and tenant isolation so that only the right adults ever see a given child's records.

1. Tenant isolation

Every Center's data lives in a logically isolated, scoped tenant. Queries are filtered by daycare so one Center can never read or write another Center's children, staff, or family records.

2. Role-based access control

Access follows least privilege. Owners and directors manage their Center, teachers see only their assigned classrooms, and parents see only their own children. There is no implicit "see everything" access.

3. Encryption

Data is encrypted in transit (TLS) and at rest. Credentials are never stored in plain text — passwords are salted and hashed with bcrypt.

4. Authentication

Access requires authenticated, token-based sessions. Invitations for teachers and parents are single-purpose, code-based links scoped to a specific Center and role.

5. AI data handling

AI insights are generated solely to support educators and families. Children's data is processed only to deliver the contracted service and is never used to train advertising models or build profiles of children.

6. Vetted sub-processors

We use a small set of vetted infrastructure, payment, and AI sub-processors, each bound by contractual data-protection terms. We never sell or rent personal data.

7. Data minimization & retention

We collect only the data needed to track development and communicate with families, and retain it only as long as the Center needs it. Centers can request export or deletion at any time.

8. Reporting a concern

Found a security issue or have a question? Contact security@growthvault360s.com and we will respond promptly.

Privacy PolicyChildren's PrivacyTerms of ServiceTrust & Security

Your privacy comes first

We use only the cookies required to run ChildOS securely. We do not use tracking or advertising cookies, and we never build advertising profiles of children. See our Privacy Policy.

Made with Emergent