Privacy Policy

1. Data Controller

The data controller responsible for your personal data is Cyborg Group, a sole trader operating the Tylu service from Penarth, Wales, United Kingdom. Contact: support@tylu.uk

2. What Data We Collect

We collect only what we need to run Tylu for your family. Your account is private and invite-only — only you and caregivers you invite can access your family's data.

2.1 Account Data

• Name — stored encrypted (account-level); used to personalise your experience
• Email address — stored encrypted (account-level); used for login, OTP verification, and transactional emails
• Country and city — used for regional content, weather fallback, and notices
• Profile photo — stored encrypted; displayed only within your family account
• Family invitation email addresses — stored encrypted (account-level) while an invite is pending
• Sign-up consent records — stored encrypted (account-level); records your acceptance of these terms and this policy
• App preferences — theme, notification settings, feed alerts, and similar settings
• Weather and location consent — your choice whether Tylu may use approximate location for dashboard weather and entry context (see section 2.7)

2.2 Child Data

• Child name — stored encrypted (family-scoped)
• Date of birth — stored encrypted (family-scoped); used for age-appropriate content and developmental tracking
• Formula brand & feeding preferences — used to manage formula containers and alerts; stored securely but not individually encrypted at rest
• Child photo — optional; image files encrypted before storage (family-scoped)

2.3 Photo Gallery

• Uploaded photos — image files encrypted before storage; served only to authenticated members of your family account
• Gallery notes and captions — stored securely but not individually encrypted at rest
• Multi-child photo tags — which children appear in each photo, within your family account only
• Gallery favourites — photos you mark with a heart to feature in a journey booklet (see section 2.6)

2.4 Tracking Logs

Daily activity logs are associated with your family account and stored securely. They are not individually encrypted at rest but are protected by authentication and family-level access controls:

• Feed logs (time, volume, type — breast, formula, or solid)
• Weight records (date, weight in kg)
• Nappy change logs (time, type, notes)
• Sleep session logs (start and end times, duration)
• Wind / burp session logs
• Medicine and appointment records
• Sickness logs and notes
• Formula container usage (scoops remaining, brand)

2.5 Health & Journey Data

• Cycle tracking entries — symptoms, notes, and linked test photos; stored encrypted (family-scoped)
• Pregnancy journal entries — notes, bump photos, and milestones; stored encrypted (account-level)
• Milestones — first smiles, feeds, sleeps, and similar developmental markers you record or that Tylu detects from your logs; used for prompts and your family gallery

2.6 Journey Booklet

Tylu can compile a print-ready journey booklet from your family's logs, milestone photos, and gallery favourites. Booklet generation is initiated by Tylu administrators on request — not automatically published or shared publicly. The booklet draws on data already stored in your family account.

2.7 Entry Context (Optional)

When you log an activity, Tylu may attach contextual metadata to enrich your timeline and dashboard. Location and weather context are collected only if you grant weather/location consent in your profile settings. If consent is denied, device and time metadata may still be recorded without location or weather.

• Time context — local time, day of week, time-of-day bucket, season, and timezone
• Approximate location — coordinates rounded to roughly one kilometre before storage; city and region labels derived from coarse coordinates; full-precision GPS is not persisted
• Weather — temperature, humidity, and condition labels fetched from public weather data using approximate coordinates
• Device metadata — device type (mobile, tablet, desktop), operating system, browser, and screen-size bucket; used to improve the app experience, not for advertising

2.8 Usage Data (Non-Personal)

• Session activity (e.g., which views were accessed)
• Offer interaction events (views and clicks, associated only with an anonymous user token)
• Push notification delivery and open events
• Aggregate feature-adoption metrics (e.g., gallery uploads, milestone completions) — never in an identifiable form

2.9 Communication Data

• Messages sent via our contact form
• Support correspondence

3. Why We Collect Data (Legal Basis)

• Contract performance — to provide the core tracking features you signed up for
• Legitimate interests — to improve the service, detect fraud, and ensure security
• Legal obligation — to comply with UK law where required
• Consent — for push notifications, marketing communications, and weather/location context (you may withdraw consent at any time in your profile settings)

4. How We Protect Your Data

The most sensitive information in Tylu is encrypted before it is stored using AES-256-CBC — an industry-standard algorithm. Each field is encrypted with a key scoped to your account or your family, so stored records are not readable as plain text. Encryption keys are managed separately from encrypted data.

Encrypted at rest (account-level unless noted): your email address, display name, family invitation emails, sign-up consent records, and pregnancy journal entries. Encrypted at rest (family-scoped): child names and dates of birth, photo image files, and cycle tracking entries (including symptoms, notes, and linked test photos).

Stored securely but not individually encrypted at rest: daily activity logs (feeds, sleep, weight, medicines, nappies, appointments, and similar records), gallery notes and captions, app preferences, and child feeding preferences. This data is still protected by account authentication, family-level access controls, and HTTPS in transit. Only you and family members you invite can view it.

Data in transit between your device and our servers is protected by HTTPS (TLS), including logins, log submissions, and photo uploads.

Your family account is private and invite-only. Photos and personal details are not shown on public pages. Tylu staff do not routinely access individual user logs.

We conduct regular automated security reviews to help maintain the integrity of our data-protection measures. The date of the most recent review is published on our Security & Trust page. Reviews are conducted periodically; we do not publish pass/fail results or internal scan details on public pages.

For a full summary of what is encrypted and how your data travels securely, see our Security & Trust page.

5. Data Sharing

5.1 What We Share & With Whom

• SendGrid (Twilio) — your email address is transmitted to send transactional emails (OTP codes, invites, monthly summaries). SendGrid does not use this data for any other purpose.
• Open-Meteo & OpenStreetMap (Nominatim) — when you grant location consent, approximate coordinates (rounded to roughly one kilometre) may be sent to public weather and geocoding services to fetch condition labels and city/region names. No name, email, or child identifier is included in these requests.
• Aggregate Data Reports — we provide anonymised, aggregated trend reports to approved partners, which may include baby product brands and academic or public health researchers (e.g., universities). These reports contain only statistical insights (e.g., "average feeding volumes by age group") — never anything that could identify you or your child.
• Affiliate Offers — the app may display discount codes and links to third-party stores. If you choose to make a purchase through one of these links, we may receive a small commission at no extra cost to you. No personal data is shared with affiliate partners as part of this process.

5.2 What We Will Never Share

• Identifiable personal or health data with insurance companies
• Any data with pharmaceutical companies for drug development or targeting
• Any data with legal firms or litigation services
• Any data with government agencies, except where required by a lawful court order
• Any data with social media platforms or advertising networks

6. Data Retention

• Account and child data: retained while your account is active
• Tracking logs, photos, milestones, and health notes: retained for the life of the account to enable reporting, gallery features, and trends
• Gallery favourites: retained while the associated photo remains in your account
• Entry context metadata: retained with the associated log entry for as long as that entry is kept
• Deleted child records: logs are anonymised (child_id set to NULL) rather than deleted, preserving statistical integrity
• Deleted accounts: all personal data is permanently purged within 30 days of account deletion
• Contact form submissions: retained for 24 months for support continuity

7. Your Rights (UK GDPR)

Under UK data protection law, you have the right to:

• Access — request a copy of all data we hold about you
• Rectification — request correction of inaccurate data
• Erasure — request deletion of your account and all personal data
• Restriction — request that we limit processing of your data
• Portability — receive your data in a machine-readable format
• Objection — object to processing based on legitimate interests
• Withdraw Consent — for notifications and communications at any time

To exercise any of these rights, contact support@tylu.uk. We will respond within 30 days. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO).

8. Cookies

Tylu uses only essential session cookies required for authentication and to maintain your login state. We do not use tracking cookies, advertising cookies, or any third-party analytics cookies.

9. Children's Data

Tylu is an app for parents and caregivers, not for children. All child data entered is entered by and controlled by the adult account holder. We do not knowingly allow children to create accounts on the platform.

Child names, dates of birth, and photos are encrypted at rest (family-scoped). Health logs, milestone records, and gallery content are stored securely within your private family account and are never sold or shared in identifiable form. You may request access, correction, or deletion of your children's data by contacting us or deleting your account.

10. NHS Content & Trend-Based Recommendations

Tylu displays freely accessible health articles sourced from the NHS Website Content API. This content is owned by NHS England. Tylu is not affiliated with or endorsed by the NHS. No personal data is shared with the NHS when you access this content.

Tylu may also use your tracking data locally to suggest relevant NHS articles when patterns or trends are identified (e.g., recommending an article on winding techniques after several below-average winding sessions). This analysis happens within the Tylu platform only — no tracking data is sent externally as part of this feature. These recommendations are informational only and do not constitute medical advice.

11. Changes to This Policy

We will notify you of any significant changes to this Privacy Policy via the app or email before they take effect. The "Effective date" at the top of this page will be updated accordingly.

12. Contact & Complaints

Data protection enquiries: support@tylu.uk — or use our contact form selecting "Data / Privacy Request".