Privacy Policy

Last updated: April 28, 2026

1. Who We Are

Nille is an app that helps parents and caregivers track their baby's daily activities — feedings, sleep, diaper changes, growth, health events, memos, and more. This policy explains what data we collect, how we store it, and who we share it with.

Nille is intended for use by parents, legal guardians, and authorized caregivers who are 18 years of age or older.

2. Information We Collect

Account Information: When you create an account, we collect your email address, display name, and a securely hashed password. If you sign in with Apple or Google, we receive a unique identifier and, if you consent, your name and email.

Baby Data: Information you voluntarily enter about your baby, including name, birth date, gender, feedings, sleep sessions, diaper changes, growth measurements, health events, medications, memos, milestones, and uploaded documents.

Photos and Documents: Profile photos, memo photos, and medical documents you choose to upload are stored securely in our cloud storage.

Device Information: We collect device identifiers, device tokens (for push notifications), platform information, and basic usage analytics to operate and improve the app.

Subscription Information: If you purchase a premium subscription, purchase state and entitlement information is managed through the app store (Apple or Google) and RevenueCat.

3. How We Use Your Information

• To provide and maintain the Nille service
• To sync your data across your devices and with family team members you invite
• To send push notifications you have opted into (feeding reminders, milestone alerts, etc.)
• To provide AI-assisted features (in-app chat and — optionally — the Nille ChatGPT integration)
• To deliver customer support and service emails
• To monitor app errors and improve reliability
• To understand how the app is used in aggregate so we can improve it

4. AI Features

4a. In-App AI Assistant (Google Gemini)

The Nille app includes an AI assistant powered by Google Gemini that helps you log activities through natural language and answer questions about your baby's data. When you use this feature:

• Your message text is sent to Google Gemini along with the baby context needed to answer your request
• Conversation history is stored within a session to maintain context
• Google's AI services are subject to Google's Privacy Policy

You can use Nille without the AI features — all manual tracking functions work independently.

4b. Nille ChatGPT Integration (optional, opt-in)

Nille offers an optional integration that allows you to access your baby tracking data from within OpenAI's ChatGPT. This integration is opt-in — no data is ever shared with OpenAI unless you explicitly connect your Nille account by signing in through the ChatGPT interface.

When you use the Nille ChatGPT integration:

• Your conversation messages in ChatGPT are processed by OpenAI
• On each request, ChatGPT may call the Nille API to read or update your baby data, which is then included in OpenAI's response processing
• OpenAI's use of this data is governed by OpenAI's Privacy Policy
• You can disconnect at any time from ChatGPT's settings (remove the Nille action) or by revoking access from within Nille — no further data will be shared with OpenAI after disconnection
• We do not send baby data to OpenAI outside of requests you initiate through the ChatGPT interface
• If you ask the ChatGPT assistant to read a medical document, Nille extracts the text from it so it can be used in the conversation:
  • Digital PDFs and Word documents: text is extracted on our servers; only the extracted text is sent to OpenAI as part of the conversation response
  • Images (JPEG, PNG, etc.): the image is sent to a vision-capable AI service to extract its text, because real-world phone photos of medical documents require vision-capable AI for reliable reading. Nille uses Anthropic (Claude) by default for image text extraction, and may fall back to OpenAI, Google Cloud Vision, or Microsoft Azure Document Intelligence as alternative providers depending on configuration
  • Scanned PDFs: processed by Microsoft Azure Document Intelligence when available
  In all cases, the extracted text is then used by OpenAI to answer your question inside the ChatGPT conversation.

This integration is entirely optional. Not connecting to ChatGPT has no effect on your ability to use Nille normally.

5. Data Storage and Security

Your data is stored using industry-standard security practices:

• Passwords are hashed with bcrypt; plaintext passwords are never stored
• All connections use HTTPS/TLS encryption
• Authentication tokens (JWTs) are short-lived and scoped per user
• Baby photos, memo photos, and documents are stored in encrypted Azure Blob Storage
• Database data is stored in managed PostgreSQL with encryption at rest
• Access to production systems is restricted and monitored

While we take reasonable measures to protect your data, no method of transmission or storage is 100% secure. We encourage you to use a strong, unique password and keep your account credentials confidential.

6. Third-Party Service Providers

We use the following trusted service providers to operate Nille. Each processes data only as necessary to deliver their specific service and is bound by their own privacy commitments:

• Heroku (Salesforce) — API hosting and managed PostgreSQL database
• Microsoft Azure Blob Storage — storage of photos, memo images, and medical documents
• Microsoft Azure Communication Services — transactional email delivery (verification, password reset, service notifications)
• Microsoft Azure Document Intelligence — optional optical character recognition (OCR) service for extracting text from scanned PDFs; also available as a fallback OCR engine for images when enabled
• Google Gemini — AI assistant for the in-app chat feature
• OpenAI — AI processing for users who opt into the ChatGPT integration (see Section 4b); also available as an optional image text extraction engine
• Anthropic (Claude) — default image text extraction (OCR) engine for medical documents read by the ChatGPT integration; only used when a user explicitly asks the ChatGPT assistant to read an uploaded image document
• Google Cloud Vision — optional image text extraction (OCR) engine, available as an alternative to Anthropic Claude
• RevenueCat — subscription purchase and entitlement management
• Apple Push Notification Service (APNs) — push notification delivery on iOS
• Google Firebase Cloud Messaging (FCM) — push notification delivery on Android
• PostHog — product analytics (anonymized usage patterns)
• Sentry — error monitoring and crash reporting
• Apple — Sign in with Apple, available on iOS and the web
• Google — Google Sign-In, available on Android only

We do not sell, trade, or rent your personal information to third parties. We only share data with the providers listed above as required to operate the service, or when legally required (see Section 7).

7. Legal Disclosures

We may disclose your information if required by law, subpoena, or valid legal process, or where we believe in good faith that disclosure is necessary to protect the rights, property, or safety of Nille, our users, or the public.

8. Your Rights

You have the right to:

• Access your personal data we hold about you
• Update or correct inaccurate information
• Delete your account and associated data
• Export your data in a portable format — to request a full export, email support@nille.app and we will deliver a machine-readable copy of your account, baby data, and uploaded media within 30 days
• Withdraw consent for optional data processing (analytics, AI features, diagnostics) — manage these toggles in Settings → Legal
• Object to certain processing activities
• Lodge a complaint with your local data protection authority

To exercise any of these rights, contact us at the addresses in Section 12.

8a. Legal Basis for Processing (GDPR Article 6)

Where the General Data Protection Regulation applies to you (you are in the EU, UK, or another GDPR-aligned jurisdiction), we process your personal data on the following lawful bases:

• Contract (Art. 6(1)(b)) — Account creation, authentication, baby and team data sync, subscription management, and any other processing required to deliver the service you signed up for.
• Legitimate interest (Art. 6(1)(f)) — Crash and error reporting, security monitoring, fraud prevention, and product debugging. We balance these interests against your privacy and limit the data we collect to what is reasonably necessary. You can opt out of diagnostic crash reporting in Settings → Legal.
• Consent (Art. 6(1)(a)) — Optional analytics (PostHog), the AI Assistant (Google Gemini) and AI-derived insights, and other features explicitly opted into via in-app toggles. You may withdraw consent at any time in Settings → Legal with effect from withdrawal forward.
• Legal obligation (Art. 6(1)(c)) — Tax, accounting, and audit retention obligations applicable to subscription transactions.

If you are in California, our processing of your information is conducted under the comparable bases described in the CCPA (Section 14 below).

9. Children's Privacy (COPPA)

Nille is designed for adult parents, legal guardians, and authorized caregivers (18 or older) to track information about their babies and young children. We do not direct our services to children, and we do not knowingly collect personal information directly from children under 13.

All baby-related data in Nille is entered by the authorized adult account holder, who is responsible for that data. Babies and children do not create accounts, use the app directly, or interact with our services.

If you believe a child under 13 has independently created an account or provided personal information to Nille, please contact us at support@nille.app and we will promptly delete the information.

10. Data Retention

We retain your account and baby data for as long as your account is active. When you delete your account, your personal data and baby tracking records are removed from our active systems immediately. Encrypted backups containing those records are purged on a rolling 30-day cycle, after which the data is fully unrecoverable. We may retain a limited record of your subscription history where legally required for tax or accounting purposes.

11. International Data Transfers and Subprocessors

Nille operates globally, and your data may be processed in countries other than your own. The processors and storage locations we rely on are:

• Heroku (Salesforce, Inc.) — application hosting and PostgreSQL database. Data center: United States.
• Microsoft Azure (Azure Front Door / Blob Storage) — content delivery and image storage for milestone, profile, and document uploads. Data center: United States.
• Firebase (Google LLC) — authentication and push notification delivery. Data center: United States.
• RevenueCat, Inc. — subscription state management and StoreKit reconciliation. Data center: United States.
• Sentry (Functional Software, Inc.) — error monitoring (when diagnostics consent is on). Data center: United States.
• PostHog, Inc. — product analytics (when analytics consent is on). Data center: United States (US cloud) or European Union (EU cloud), depending on the deployment region we configure.
• Google Gemini (Google LLC) — AI Assistant inference (when AI features are used). Data center: United States.
• Apple Inc. — Apple Sign-In and Apple In-App Purchase / StoreKit. Data center: United States.

For transfers from the European Economic Area, the United Kingdom, or Switzerland to processors located in the United States, we rely on one of the following safeguards required by the GDPR (Articles 44-49):

• EU–US Data Privacy Framework (DPF) certification where the processor is certified (Salesforce/Heroku, Microsoft Azure, Google LLC, Apple Inc., and others on the DPF list).
• Standard Contractual Clauses (SCCs) as adopted by the European Commission, where the processor is not DPF-certified or as a complementary safeguard.
• Your explicit consent for transfers tied to optional features (AI Assistant, analytics).

You can request a copy of the relevant transfer mechanism documentation by contacting us at support@nille.app.

12. Contact Us

If you have questions about this privacy policy or want to exercise any of your rights, please contact us:

General privacy inquiries: support@nille.app
Account or data deletion requests: support@nille.app

13. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. When we make material changes, we will notify you through the app, by email, or by updating the "Last updated" date at the top of this page. We encourage you to review this policy periodically.

14. Compliance

This privacy policy is designed to comply with:

• General Data Protection Regulation (GDPR) — European Union
• California Consumer Privacy Act (CCPA) — United States
• Children's Online Privacy Protection Act (COPPA) — United States
• Apple App Store Review Guidelines
• Google Play Policy
• OpenAI GPT Store publishing requirements