Privacy Policy
Last updated: 1 March 2026 ยท Effective: 1 March 2026
๐ง The short version: FamWizard stores your family's data securely on our servers. We don't sell it, share it with advertisers, or use it for any purpose other than running the service. You own your data and can delete it at any time.
1. Who We Are
FamWizard is operated by Andrew West ("we", "us", "our"). For the purposes of UK GDPR and the Data Protection Act 2018, Andrew West is the data controller.
Contact: [email protected]
2. What Data We Collect
When you create a FamWizard account and use the service, we collect and store:
- Account data: Family name, password (stored as a secure bcrypt hash โ we never store your actual password)
- Family data you enter: Family member names and details, tasks and events, calendar entries, shopping lists, meal plans, pet information, vehicle information, receipts and documents you upload, school information, location notes
- Session data: Login session tokens (stored in your browser's local storage) to keep you logged in
- Usage data: Server access logs (IP address, browser type, pages accessed) for security and debugging purposes
We do not collect: payment information, precise location data, contacts from your device, or any data from third-party sources.
3. Children's Data
FamWizard is designed as a family tool and may contain information about children. We take this seriously:
- FamWizard accounts must be created by a person aged 18 or over
- Any information about children entered into FamWizard is entered by and controlled by the account holder (parent or guardian)
- We do not knowingly collect data directly from children under 13
- Parents and guardians can delete all data about their children at any time by deleting their family account
4. How We Use Your Data
We use the data you provide solely to:
- Provide the FamWizard service โ displaying your family's data back to you
- Authenticate your login and maintain your session security
- Send transactional emails if you request a password reset (not yet implemented)
- Maintain security, detect abuse, and debug technical issues
We do not use your data for advertising, profiling, or sell it to any third party.
5. Legal Basis for Processing (UK GDPR)
- Contract performance: Processing your data is necessary to provide the FamWizard service you've signed up for (Article 6(1)(b))
- Legitimate interests: Server logs for security and fraud prevention (Article 6(1)(f))
- Consent: For any optional features where we ask for specific consent
6. Data Storage and Security
- Your data is stored on servers in the European Union / United Kingdom
- All connections to FamWizard are encrypted using HTTPS/TLS
- Passwords are hashed using bcrypt โ we cannot recover your password
- Session tokens are cryptographically random 64-character strings
- Two-factor authentication (2FA) is available and recommended
- Access to the database is restricted to the service and authorised personnel only
No system is 100% secure. In the event of a data breach affecting your personal data, we will notify you and the ICO as required by law within 72 hours of becoming aware.
7. Data Retention
- Your account data is retained for as long as your account is active
- Server access logs are retained for up to 90 days
- If you delete your account, all your family data is permanently deleted within 30 days
- Backup copies may persist for up to 30 additional days before being overwritten
8. Your Rights Under UK GDPR
You have the following rights regarding your personal data:
- Right of access: Request a copy of all data we hold about you
- Right to rectification: Correct any inaccurate data (you can do this directly in the app)
- Right to erasure ("right to be forgotten"): Request deletion of all your data
- Right to data portability: Request your data in a machine-readable format
- Right to restrict processing: Ask us to pause processing your data
- Right to object: Object to processing based on legitimate interests
To exercise any of these rights, email [email protected]. We will respond within 30 days. There is no charge for reasonable requests.
You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk or by calling 0303 123 1113.
9. Cookies and Local Storage
FamWizard uses browser local storage (not cookies) to store your login session token on your device. This is strictly necessary for the service to function โ without it you would be logged out every time you close the browser. No tracking or advertising local storage is used.
We do not use any third-party tracking scripts, analytics platforms, or advertising networks.
10. Third Parties
FamWizard uses the following third-party services:
- PlanetHippo (hosting): Our web hosting provider. They store the server files and database. Their privacy policy applies to infrastructure-level data.
- Google Fonts: Used to load the typefaces displayed in the app. Google may log font requests โ see Google's privacy policy.
We do not share your family data with any of these providers beyond what is technically necessary to host the service.
11. Changes to This Policy
We may update this Privacy Policy from time to time. When we make significant changes, we will notify users via a notice within the app. The "last updated" date at the top of this page will always reflect the most recent version.
12. Contact
For any privacy-related questions or to exercise your data rights:
Andrew West
Email: