Last updated: April 12, 2026
TakeCareHQ ("we", "us", "our") operates the TakeCareHQ mobile application (iOS and Android) and the website at takecarehq.com (together, the "Service"). This Privacy Policy explains what information we collect, how we use it, and the choices you have.
1. Information We Collect
Information you provide
| Category | Data | Purpose |
|---|---|---|
| Account | Name, email address, password | Sign-in, account recovery, transactional emails |
| Care profiles | Names, date of birth, relationship, medical conditions, medications, allergies, emergency contact, notes | Display care information to your family members |
| Photos | Profile photos for family members and care profiles | Display in-app avatars, synced across family devices |
| Care activity | Care item schedules, check-in/check-out logs, timestamps, notes | Coordinate care and show activity history to your family |
| Waitlist | Email address | Notify you when the app launches |
Information collected automatically
| Category | Data | Purpose |
|---|---|---|
| Device info | Device name, platform (iOS/Android), OS version, app version | Push notifications, debugging, session management |
| Device identifiers | Vendor identifier (iOS) or Android ID | Manage device sessions and push notification delivery |
| NFC tag IDs | Physical NFC tag hardware identifiers | Pair tags to care items for tap-to-log functionality |
| Error logs | Crash reports, error messages, stack traces | Diagnose and fix app issues |
| Usage telemetry | Anonymous performance metrics via Azure Application Insights | Monitor service health and performance |
Information we do NOT collect
- We do not collect your precise location
- We do not access your contacts, calendar, or phone call history
- We do not serve advertisements or share data with ad networks
- We do not sell your personal information to third parties
2. How We Use Your Information
- Provide the Service — display care schedules, sync activity across your family's devices in real time, and deliver push notifications for reminders
- Process payments — manage subscriptions and billing. On iOS, subscriptions are purchased through Apple In-App Purchase (StoreKit) and payment data is handled entirely by Apple. On Android and web, payments are processed through Stripe.
- Send transactional emails — account setup, password resets, family invite codes, and waitlist notifications
- Improve the Service — diagnose bugs using error logs and anonymous telemetry
- Prevent abuse — rate limiting and bot detection on public endpoints
3. Third-Party Services
We use the following third-party services to operate TakeCareHQ. Each processes data only as necessary to provide its specific function:
| Service | Purpose | Privacy Policy |
|---|---|---|
| Apple In-App Purchase (iOS only) | Payment processing and subscription management for iOS users. Apple handles all payment information; we receive only the transaction identifier and subscription status. | apple.com/legal/privacy |
| Stripe (Android and web only) | Payment processing and subscription management for Android and web users. iOS users do not interact with Stripe. | stripe.com/privacy |
| Microsoft Azure | Cloud hosting, database, blob storage (photos), Application Insights (telemetry) | privacy.microsoft.com |
| Firebase Cloud Messaging | Push notifications on Android | firebase.google.com/support/privacy |
| Apple Push Notification service | Push notifications on iOS | apple.com/legal/privacy |
We do not share your personal data with any other third parties except as required by law.
4. Data Storage and Security
- Your data is stored on Microsoft Azure servers
- Passwords are hashed before storage and are never stored in plain text
- All data in transit is encrypted via HTTPS/TLS
- Photos are stored in Azure Blob Storage with access restricted to authenticated users
- The app stores an authentication token locally on your device for session management; this token can be invalidated at any time by signing out
5. Data Sharing Within Your Family
TakeCareHQ is a family coordination tool. When you join a family group, all members of that group can see:
- Care profiles and their details (names, schedules, medical info)
- Care activity logs (who did what and when)
- Your display name and profile photo
This sharing is the core function of the app. Only members who have joined your family group using your private invite code can see this data.
6. Data Retention
- Active accounts — your data is retained as long as your account is active
- Deleted accounts — if you request account deletion, we will delete your personal data within 30 days, except where retention is required by law or for legitimate business purposes (e.g., payment records)
- Error logs — automatically purged after 90 days
- Waitlist emails — deleted after you are notified of launch or upon request
7. Your Rights (All Users)
Regardless of where you live, you may:
- Access — request a copy of the personal data we hold about you
- Correction — update or correct inaccurate data
- Deletion — request that we delete your personal data
- Portability — request your data in a machine-readable format
- Withdraw consent — opt out of non-essential data processing at any time
To exercise any of these rights, email us at support@takecarehq.com. We will respond within 30 days (or sooner if required by your local law).
We will never discriminate against you for exercising your privacy rights — you will receive the same service and pricing regardless.
8. European Economic Area, United Kingdom & Switzerland (GDPR)
If you are located in the EEA, UK, or Switzerland, the General Data Protection Regulation (GDPR) and equivalent UK/Swiss data protection laws apply to our processing of your personal data.
Legal basis for processing
| Processing activity | Legal basis |
|---|---|
| Providing the Service (account, care data, sync, notifications) | Performance of contract — necessary to deliver the service you signed up for (Art. 6(1)(b)) |
| Processing payment (via Apple In-App Purchase on iOS, or Stripe on Android/web) | Performance of contract (Art. 6(1)(b)) |
| Error logs and telemetry | Legitimate interest — maintaining service reliability and security (Art. 6(1)(f)) |
| Waitlist signup | Consent — you actively submit your email to be notified (Art. 6(1)(a)) |
| Health-related care data (medications, allergies, medical conditions) | Explicit consent — you voluntarily enter this data to coordinate care with your family (Art. 9(2)(a)) |
Your GDPR rights
In addition to the general rights in Section 7, you have the right to:
- Restrict processing — ask us to limit how we use your data while a complaint is being resolved
- Object to processing — object to processing based on our legitimate interests; we will stop unless we have compelling grounds
- Lodge a complaint — file a complaint with your local data protection supervisory authority (e.g., the CNIL in France, the ICO in the UK, the BfDI in Germany)
- Withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing before withdrawal
International data transfers
Our servers are hosted on Microsoft Azure. Your data may be processed in regions outside the EEA/UK. Where this occurs, we rely on:
- The European Commission's adequacy decisions for countries with adequate protection
- Standard Contractual Clauses (SCCs) approved by the European Commission for transfers to other countries
- Microsoft Azure's compliance with the EU Data Boundary commitment where applicable
You may request a copy of the safeguards in place by contacting us at support@takecarehq.com.
Data Protection Officer
For GDPR-related inquiries, contact our data protection point of contact at privacy@takecarehq.com.
9. California (CCPA / CPRA)
If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) provides you with additional rights regarding your personal information.
Categories of personal information collected
| CCPA category | Examples from TakeCareHQ | Sold or shared for advertising? |
|---|---|---|
| A. Identifiers | Name, email address, device identifiers | No |
| B. Personal information (Cal. Civ. Code 1798.80) | Name, email address | No |
| D. Commercial information | Subscription plan, payment history (via Apple on iOS, Stripe on Android/web) | No |
| F. Internet / electronic activity | App usage telemetry, error logs | No |
| K. Sensitive personal information | Health-related care data (medications, allergies, medical conditions) entered by the user | No |
Your CCPA/CPRA rights
- Right to Know — you may request the categories and specific pieces of personal information we have collected about you in the past 12 months, along with the sources, purposes, and third parties with whom it was shared
- Right to Delete — you may request deletion of personal information we have collected, subject to certain exceptions (e.g., legal obligations, completing a transaction)
- Right to Correct — you may request correction of inaccurate personal information
- Right to Opt-Out of Sale/Sharing — we do not sell or share your personal information for cross-context behavioral advertising. There is nothing to opt out of
- Right to Limit Use of Sensitive Personal Information — we only use sensitive personal information (health-related care data) for the purpose you provided it: coordinating care with your family. We do not use it for profiling or advertising
- Right to Non-Discrimination — we will not deny you service, charge different prices, or provide a different quality of service because you exercised your privacy rights
How to submit a request
Email support@takecarehq.com with the subject line "CCPA Request". We will verify your identity by confirming details associated with your account. We will respond within 45 days. You may also designate an authorized agent to submit a request on your behalf.
Financial incentive programs
Our referral program offers account credits for referring new users. Participation is voluntary. You may opt out at any time by ceasing to share your referral code. The value of the incentive is reasonably related to the value of the data (email of the referred user) based on our customer acquisition costs.
Shine the Light (Cal. Civ. Code 1798.83)
We do not disclose personal information to third parties for their direct marketing purposes.
10. Other US State Privacy Laws
If you are a resident of Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), Montana (MCDPA), or another US state with a comprehensive consumer privacy law, you generally have the right to:
- Access — confirm whether we are processing your personal data and obtain a copy
- Correction — correct inaccuracies in your personal data
- Deletion — request deletion of your personal data
- Portability — obtain your data in a portable, readily usable format
- Opt out of targeted advertising — we do not engage in targeted advertising, so this right does not apply to our Service
- Opt out of sale — we do not sell personal data
- Opt out of profiling — we do not profile users for decisions that produce legal or similarly significant effects
To submit a request, email support@takecarehq.com. If we decline your request, you may appeal by replying to our response with "Appeal" in the subject line. We will respond to appeals within 60 days.
11. Sensitive / Health-Related Data
TakeCareHQ allows users to enter health-related information (medical conditions, medications, allergies) about the people and pets they care for. This data is:
- Voluntarily provided — you choose what to enter; no fields are mandatory
- Only visible to your family group — shared exclusively with members you invite via your private invite code
- Not used for advertising, profiling, or analytics
- Not shared with third parties except as necessary to store it on our cloud infrastructure (Microsoft Azure)
- Deleted upon request — you can delete care profiles from the app at any time, or request full account deletion
TakeCareHQ is not a covered entity under HIPAA (the US Health Insurance Portability and Accountability Act). We are a consumer care coordination app, not a healthcare provider, health plan, or healthcare clearinghouse. However, we apply strong security measures to all health-related data as described in Section 4.
12. Cookies and Tracking
The TakeCareHQ website (takecarehq.com) does not use cookies for tracking or advertising. We use:
- localStorage — to temporarily store your email during the checkout flow (cleared after account creation)
- No third-party tracking pixels, analytics scripts, or ad cookies
The mobile app does not use cookies. It stores a session token and user preferences locally on your device using the platform's secure storage.
13. Children's Privacy
TakeCareHQ is not directed at children under 16 (under 13 in the US). We do not knowingly collect personal information from children under these ages. If you believe we have inadvertently collected such information, please contact us and we will delete it promptly.
Care profiles may be created about children (e.g., a parent tracking a child's care schedule), but the app account holder must be at least 16 years old (13 in the US).
14. Do Not Track
Some browsers send a "Do Not Track" (DNT) signal. Since we do not track users across third-party websites and do not use advertising cookies, our Service behaves the same regardless of the DNT setting.
15. Push Notifications
We send push notifications to remind you of scheduled care tasks. You can disable notifications at any time through your device's system settings or within the app's settings page. Disabling notifications does not affect any other aspect of the Service.
16. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will:
- Update the "Last updated" date at the top of this page
- For material changes, notify you via the app or email at least 30 days before the changes take effect
- Where required by law (e.g., GDPR), obtain your consent before applying changes that alter how we process your data
17. Contact Us
If you have questions about this Privacy Policy or your data, contact us at:
TakeCareHQ
General inquiries: support@takecarehq.com
Privacy / GDPR requests: privacy@takecarehq.com
CCPA / US state requests: support@takecarehq.com (subject: "CCPA Request")