This is the privacy notice for Bambino. It tells you what we collect, why, where it lives, how long we keep it, and your rights. It also describes optional features — cloud AI, subscriptions, advertising — that we may offer inside Bambino and how we'd handle your data if we did. See also the Terms of Use and EULA.
Who we are
the Bambino app (pregnancy and baby companion) is operated by chaimagal, a studio in Modiin, Israel. "We" means chaimagal; "you" means the person using Bambino. We are the data controller for the personal data described here.
Questions, rights requests, or privacy concerns: support@chaimagal.com.
What we collect
Only what you put in. Nothing is pulled from your device without being typed, tapped, or attached by you.
| Category | Includes | Why |
|---|---|---|
| Account | Email, hashed password, sign-up time | Cross-device sign-in |
| Profiles | Name you give a pregnancy or baby, due/birth date, starting week, optional avatar | Organise your tracking |
| Tracker entries | Contractions, kicks, feeds, diapers, hydration, measurements, symptoms, milestones, medical events | Your history |
| Images | Photos you attach to medical, size, symptom, milestone or avatar entries | To remember what you saw |
| Purchase status | Store receipt ID, product ID, subscription state (if you buy anything) | Unlock paid features; handle refunds |
| Settings | Theme, language, units, date format | Kept on device |
We do not collect location, contacts, microphone audio, unsolicited camera-roll content, or advertising identifiers unless a future feature explicitly needs them and you consent.
Where your data lives
Managed Postgres + object storage on Supabase (EU region). Row-level security keys every row to your user id; policies block any query returning rows that don't belong to you. Images are compressed on your phone (target 100 KB, cap 1 MB) with EXIF stripped.
AI and data processing
Today, Bambino's AI features (the daily motivation sentence and any on-device summary) are produced by a small language model (Gemma 3 1B-IT) that runs entirely on your phone. Nothing about the prompt or reply leaves the device for these features.
We may add cloud-based AI features in future — for example, a more capable model for structured summaries or document understanding. Before we enable any cloud AI feature, this section will name the cloud AI provider (for example, OpenAI, Google Vertex, Anthropic or a comparable service), the region it runs in, what we send it, and the retention it is contractually required to apply. Cloud AI features will always be opt-in in Settings, and you'll be able to turn them off later.
Sharing and third parties
We share data with service providers (processors) only as needed to run the features you use. We do not sell your data. We do not use it to train any AI model without your explicit, granular, opt-in consent — which we ask for separately if we ever want to.
Processors used today:
- Supabase (Ireland / EU) — hosting, authentication, Postgres database, object storage.
- Apple (iOS distribution and App Store purchases) and Google (Android distribution and Play Billing) — app distribution and purchase receipts.
Processor categories we may engage in the future (each will be named here before it is enabled): cloud AI inference providers, crash-reporting and product analytics, advertising networks and mediation SDKs, customer-support tooling, and translation or localisation services. We use reputable processors bound by written data-processing agreements with confidentiality and security obligations, use-limitation, and assistance with data subject rights.
Subscriptions and payments
Bambino is free to install. If we introduce paid features or a subscription, all purchases are processed exclusively through Apple's App Store or Google Play. We never see, receive or store your card or bank details. Apple and Google share a purchase receipt with us that includes the product ID, the purchase time, and your subscription status (active, trial, grace, expired) — that's what we use to unlock paid features and to handle refunds, disputes and fraud.
Subscriptions auto-renew under the store's terms; you cancel in your Apple ID or Google account. Where applicable consumer law grants you a withdrawal or cancellation right, you may exercise it through the store or by emailing us. Refunds of store purchases are handled by the store.
Advertising
We do not serve advertising in Bambino today, and we do not collect advertising identifiers. If a future version of Bambino introduces advertising — which may include banner, interstitial, native or rewarded formats — this section will be updated to identify the ad partners, describe whether the ads are contextual or behavioural/personalised, explain what data the ad partners receive, and document your choices.
We commit now to the following, regardless of any future advertising change: we will not knowingly serve advertising to users we believe to be under 16; we will not permit ad partners to target based on sensitive categories (pregnancy, health, mental health, religion, political views, sexual orientation) derivable from Bambino; in the EU, EEA, UK and Brazil, any non-essential ad tracking is opt-in via a consent prompt; in California and similar US states, a "Do Not Sell or Share My Personal Information" control will be available in Settings.
International transfers
Your account data is stored in the European Union. If we engage a processor outside the EU (for example, a cloud AI provider operated from the United States), the transfer is covered by an adequacy decision where one applies, or by the European Commission's Standard Contractual Clauses (2021 module-set) together with a transfer impact assessment and any supplementary technical measures the assessment calls for. You can request the current list of transfers and their safeguards by emailing us.
Retention and deletion
Your rows live until you delete them. Delete your account in Settings and every profile, tracker entry, attached image, purchase receipt and derived summary is removed within 30 days. No soft-deleted tombstones. Backups that contain your data roll off on their own lifecycle (up to 35 days) and are never restored to active systems without the corresponding deletion event being re-applied.
Your rights
GDPR, UK GDPR, CCPA/CPRA, the Israeli Protection of Privacy Law (as amended by Amendment 13), Brazil's LGPD, Canada's PIPEDA and similar laws give you rights to access, correct, export (portability), delete, restrict or object to processing, and to withdraw consent where processing is consent-based. Most rights can be exercised in-app; for the rest, email support@chaimagal.com. We reply within 30 days (extendable to 60 days for complex requests, with notice). You can also complain to your local data protection authority.
Children
Bambino tracks babies and pregnancies; the account holder is an adult. We do not knowingly accept accounts from anyone under 16, and we do not serve advertising to minors.
Security
TLS in transit, short-lived rotating tokens, RLS at the database, encryption at rest on the underlying Supabase infrastructure. If we become aware of a breach that is likely to result in a risk to your rights and freedoms, we will notify the supervisory authority within 72 hours where required and notify you without undue delay.
Changes
Material changes — including any change that expands the categories of data we collect, the third parties we share it with, the purposes we use it for, or that enables a new cloud AI, advertising or paid feature — update the date at the top of this page. Before those changes take effect we notify you in-app (a banner or launch screen), and by email where we hold a verified address, at least 30 days in advance. Continued use after that date means acceptance; you can delete your account before then if you don't accept.