Privacy Policy

Last updated: April 15, 2025

Overview

Kidfence is a parental control application. We believe parental controls should protect children without surveilling them. This policy explains what data we collect, why, and what we never collect.

What We Collect

On the child's Mac

• App names and usage duration — We track which apps are active and for how long. We do not record what happens inside apps.
• Domain names visited — We record domain names (e.g., "youtube.com") for web filtering. We do not record full URLs, page content, or search queries.
• Blocked attempt logs — When an app or domain is blocked, we log the event for reporting to the parent.

On the parent's iPhone

• Device identifier — A locally-generated cryptographic public key used for pairing and authentication. Not linked to your Apple ID or personal identity.
• Chat messages to AI — Your natural language commands (e.g., "block Roblox") are sent to our server for AI processing. These are not stored after processing.

On our server

• Device pairing records — Public keys of paired devices. No names, emails, or personally identifiable information.
• Encrypted activity reports — Reports are end-to-end encrypted. Our server relays encrypted blobs between devices. We cannot read them.

What We Never Collect

• Screenshots or screen recordings
• Keystrokes or text input
• Photos, videos, or files
• Message content (iMessage, email, social media)
• Browsing content or full URLs
• Camera or microphone data
• Location data
• Contacts or calendar data

End-to-End Encryption

Activity reports sent from the child's Mac to the parent's iPhone are encrypted using Curve25519 key agreement and AES-256-GCM. The encryption keys exist only on your devices. Our server acts as a relay and cannot decrypt the data.

No VPN, No MITM

Kidfence does not use a VPN tunnel or install a root certificate. Web filtering uses macOS Network Extension content filters with SNI inspection. HTTPS connections remain end-to-end encrypted between the child's browser and the website. We never intercept or inspect encrypted traffic content.

Data Retention

• Activity data on the Mac is stored locally and retained for 30 days, then automatically deleted.
• Encrypted reports on our relay server are deleted after delivery or after 7 days, whichever comes first.
• Chat messages for AI processing are not persisted after the response is generated.

Third-Party Services

• Anthropic (Claude AI) — Processes natural language commands. Subject to Anthropic's privacy policy. Commands are sent via API and not used for model training.
• Apple (App Store, StoreKit) — Handles subscription payments. Subject to Apple's privacy policy.

Children's Privacy (COPPA)

Kidfence is a parental control tool installed and managed by parents. We do not collect personal information from children. The app on the child's Mac collects only app usage and domain data as described above, and this data is encrypted and sent only to the parent's device.

Data Security

We use industry-standard security measures including TLS for all server communications, end-to-end encryption for activity reports, and secure key storage via the macOS Keychain and iOS Keychain with iCloud Keychain sync.

Your Rights

You can delete all data by unpairing devices in the app. Uninstalling Kidfence from the Mac removes all local data. Contact us at privacy@kidfence.ai to request deletion of server-side data.

Changes

We will notify users of material changes to this policy via the app. Continued use after changes constitutes acceptance.

Contact

Privacy questions: privacy@kidfence.ai