Privacy Policy

Last updated: April 3, 2026

1. Information We Collect

Parent Account

When you create a parent account, we collect:

• Display name — used to personalize the experience
• Device token (APNs) — used solely to deliver push notifications about your child's access requests
• Children profiles — name and avatar choice for each child you add

We do not collect your email address, phone number, or Apple ID.

Child Device

The child app collects only the minimum data necessary:

• App access request history — which apps were requested, when, and the parent's response
• Device token (APNs) — to deliver approval/denial notifications
• Screenshots — when the child requests access to an app, a screenshot may be captured and sent to the parent for context. Screenshots are stored temporarily on our server and automatically deleted after the parent reviews the request (maximum 2 days).

We do not track browsing history, location, messages, contacts, photos (beyond the access request screenshot), or any personal content on the child's device.

Analytics (Parent Device Only)

On the parent device only, we use PostHog for anonymous product analytics (screen views, feature usage). This helps us improve the app. Analytics are never collected on the child's device (COPPA compliance). We do not collect the IDFA (Apple advertising identifier) and do not track users across apps or websites.

2. How We Use Your Information

• To provide the core service: processing access requests between parent and child devices
• To send push notifications related to access requests, approvals, denials, and time expirations
• To improve the app experience through anonymous analytics (parent device only)

We do not use your data for advertising, profiling, or any purpose unrelated to the service.

3. Data Sharing

We do not sell, rent, or share your personal information with third parties. The only third-party services that process data on our behalf are:

• Apple Push Notification service (APNs) — to deliver notifications
• PostHog — anonymous analytics on the parent device only
• Hosting provider — our server infrastructure

All third-party services operate under strict confidentiality and data processing agreements.

4. Children's Privacy (COPPA Compliance)

Mochi is designed with children's privacy as a priority:

• The child app is installed and configured by the parent
• The child cannot create an account — they can only join via a parent-generated pairing code
• We do not knowingly collect personal information from children under 13 without verifiable parental consent
• No analytics or tracking are collected on the child's device
• Communication is limited to the family circle (parent and child only — no social features, no UGC)
• The parent can delete a child's profile and all associated data at any time from within the app

5. Apple Family Controls & Screen Time

Mochi uses Apple's Family Controls framework (Screen Time API) to manage app access on the child's device. This requires:

• Family Sharing to be set up between the parent and child's Apple IDs
• Screen Time permission granted by the parent on the child's device

Mochi does not access Screen Time usage data, app usage statistics, or web browsing history. It only uses the framework to block and unblock apps as approved by the parent.

6. Subscriptions & Payments

Mochi offers auto-renewable subscriptions managed entirely through the Apple App Store. We do not collect or store any payment information — all billing is handled by Apple. You can manage or cancel your subscription at any time in Settings > Apple ID > Subscriptions.

7. Data Security

• All data is transmitted over HTTPS (TLS encryption)
• Authentication tokens are hashed (SHA-256) before storage — we never store plain-text tokens
• Auth tokens on the device are stored in the iOS Keychain (not UserDefaults)
• Screenshots are stored as temporary files and automatically deleted within 2 days

8. Data Retention & Deletion

• Active accounts: data is retained while your account is active
• Access requests: denied/expired requests are automatically deleted after 1 day; approved requests after 7 days
• Screenshots: automatically deleted after the parent reviews the request (maximum 2 days)
• Account deletion: you can delete your entire account and all associated data (including all children profiles and request history) from within the app at any time via Settings > Account > Delete my account. Deletion is immediate and irreversible.

9. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data (available in-app or by contacting us)
• Withdraw consent for analytics at any time

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes through the app. The "Last updated" date at the top indicates the latest revision.

11. Contact

For privacy-related questions or data requests, contact us at support@browwwser.com.
Argroup.us LLC — 1209 Mountain Road PL NE, STE R, Albuquerque, NM 87110, USA