KidsWatch is operated by a UK business. For any GDPR request, contact the data controller at privacy@kidswatch.app.

We collect the minimum data required to run parental controls:

• Account identifiers (Supabase user ID or principal ID).
• Kid profiles (name, timezone, default mode).
• Device profiles (name, platform, assignment).
• Usage summaries and activity events for reporting and enforcement.
• Subscription and entitlement records (if billing is enabled).

You can request access, correction, or deletion of your personal data at any time. We also support automated deletion for adult users via the GDPR erase endpoint.

The KidsWatch backend provides an authenticated GDPR erase endpoint to delete personal data associated with a principal ID. This removes kid and device data, usage history, and billing entitlements tied to the account.