Chelone Labs LogoChelone Labs
Back to Home

Privacy Policy

Your privacy is fundamental to us. Learn how we protect your data and respect your family's digital well-being.

Last updated: September 23, 2025

Our Commitment to Privacy

At Chelone Labs, we believe technology should respect both nature and privacy. As a family-run business, we understand the importance of protecting your family's digital well-being. This privacy policy explains how we collect, use, and protect your information across all our products.

Information We Collect

Authentication Data

For secure access to our services, we collect only the minimum data required for authentication:

  • Email address (for account creation and login)
  • Encrypted password (stored securely using industry-standard hashing)
  • Account creation timestamp

Flor AI - Optional User Data

For Flor AI, we offer optional data storage to improve your experience across devices.This feature is turned OFF by default and all data remains on your device unless you explicitly choose to enable cloud sync:

  • User preferences and settings
  • Favorite topics and learning interests
  • Conversation history (if enabled)
  • Child's name, age, date of birth, and pronouns (if provided)

Important: You can disable cloud sync at any time, and all personal data will be removed from our servers.

Product Analytics (Anonymous)

To improve our products, we collect anonymous usage metrics:

  • App performance data (crash reports, loading times)
  • Feature usage statistics (which features are used most)
  • General app interaction patterns (anonymized)

Payment Information

We do not store payment information. All payments are processed securely by third-party providers:

  • Web products: Stripe (PCI DSS compliant)
  • Mobile apps: Apple App Store / Google Play Store
  • Future mobile apps: RevenueCat integration

How We Use Your Information

Service Provision

  • Provide access to our applications
  • Maintain your account and preferences
  • Deliver customer support
  • Process payments securely

Product Improvement

  • Analyze anonymous usage patterns
  • Fix bugs and improve performance
  • Develop new features based on user needs
  • Ensure app stability and reliability

Data Security & Protection

We implement industry-standard security measures to protect your data:

  • Encryption: All data is encrypted in transit and at rest
  • Secure Infrastructure: We use Supabase for secure, compliant data storage
  • Access Controls: Strict access controls limit who can view your data
  • Regular Audits: We regularly review and update our security practices
  • Minimal Data: We only collect what's necessary for our services

Your Privacy Rights

Access & Control

  • View all data we have about you
  • Update or correct your information
  • Download your data in a portable format
  • Delete your account and all associated data

Flor AI Specific

  • Disable cloud sync at any time
  • Delete conversation history
  • Reset learning preferences
  • Export your child's learning data

Third-Party Services

We use trusted third-party services that share our commitment to privacy:

  • Supabase: Secure database and authentication (GDPR compliant)
  • Stripe: Payment processing (PCI DSS compliant)
  • Apple/Google: Mobile app distribution and payments
  • RevenueCat: Subscription management (future mobile apps)

These services have their own privacy policies, and we ensure they meet our privacy standards.

Children's Privacy (COPPA Compliance)

Flor AI is designed for children, and we take extra care with their privacy:

  • We never collect personal information from children under 13 without parental consent
  • All child data remains on-device by default
  • Parents can review, modify, or delete their child's data at any time
  • We don't use child data for advertising or marketing
  • Parents receive clear information about data collection before it occurs

International Users (GDPR/CCPA)

We serve users worldwide and comply with applicable privacy laws:

  • GDPR (EU): Right to access, rectification, erasure, portability, and objection
  • CCPA (California): Right to know, delete, and opt-out of sale
  • Data Transfers: We use appropriate safeguards for international data transfers
  • Data Processing: We only process data for legitimate business purposes

Questions About Privacy?

If you have questions about this privacy policy or want to exercise your privacy rights, we're here to help.

Policy Updates

We may update this privacy policy from time to time. When we do, we'll notify you by:

  • Email notification to registered users
  • In-app notification for active users
  • Posting the updated policy on our website

Continued use of our services after changes constitutes acceptance of the updated policy.