Privacy Policy

What this app is

Family Dashboard is a private family dashboard built and operated by Henry Stuart for the use of the Stuart family. It is not a commercial product and is not offered to the general public. Access is restricted to a small allow-list of family Google accounts.

Who is responsible

The data controller for the purposes of UK GDPR is Henry Stuart, contactable at henry@visualise.com.

What we collect

The app stores the following information about each family member:

• Your Google account email address and display name.
• A Google OAuth refresh token, used to read and write your Google Calendar on your behalf.
• For accounts that opt in: a Google OAuth token for read-only access to a specific Gmail mailbox, used to pull school and club emails so the app can suggest calendar events.
• Calendar events you create through the dashboard, and metadata about who created or approved them.
• Messages forwarded from selected WhatsApp groups (via a local bridge on a family computer) so the app can suggest calendar events from them.

Google user data

When you sign in with Google, the app requests access to your Google Calendar (read and write) and, optionally, read-only access to a specific Gmail inbox. This data is used solely to:

• Display your calendar in the shared family view.
• Create, edit and delete events on your calendar when you (or an admin) approves them in the app.
• Read school and club emails from connected Gmail inboxes to suggest events for approval.

Family Dashboard’s use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Google user data is never used for advertising, never sold, and never shared with third parties except as needed to provide the service to you (e.g. our hosting and database providers).

AI processing

The app sends the text of WhatsApp messages and emails from connected sources to Anthropic’s Claude API to extract suggested calendar events. Per Anthropic’s commercial terms, this content is not used to train Anthropic’s models.

Where data is stored

Application data is stored in Supabase (PostgreSQL, EU region). The web app is hosted on Vercel. OAuth tokens are stored encrypted at rest by Supabase.

Retention

Calendar events and metadata are retained for as long as the family continues to use the app. Raw email and WhatsApp messages used as event sources are retained for up to 90 days and then automatically purged. You can request deletion of your data at any time by emailing henry@visualise.com.

Revoking access

You can revoke the app’s access to your Google account at any time via myaccount.google.com/permissions. After revocation, the app can no longer read or write your calendar or Gmail.

Your rights

Under UK GDPR you have the right to access, correct, delete or export your personal data, and to lodge a complaint with the Information Commissioner’s Office (ICO). To exercise any of these rights, email henry@visualise.com.

Changes

If this policy changes in any material way, the date at the top of this page will be updated and signed-in users will be asked to re-acknowledge it.

Contact

Questions about this policy or the app: henry@visualise.com.