The Short Version — For Families
- What we collect: Account information (email, name, username), chore and activity data, and basic technical logs (IP address, browser type). We collect only what is needed to run the service.
- Why we collect it: To let your family use ChoreStory — tracking chores, awarding points, and managing accounts. We do not use your data for advertising, and we never sell it.
- Children: Parents and guardians create and manage child accounts. By creating a child account, parents provide verifiable consent for their child's data to be collected. Children under 13 are fully supported with parental oversight.
- Third parties: We share data only with service providers that help us run ChoreStory — email delivery, Google sign-in, AI avatar generation, and error monitoring. No advertising networks, ever.
- Your rights: You can access, correct, export, or delete your data at any time. Family admins can exercise these rights for child accounts.
- Contact: Questions or requests? Email privacy@chorestory.com. We respond within 30 days.
1. Who We Are
ChoreStory is a family chore management application available at chorestory.com. The service is provided by Rocky Androsoff, operating as 3D-Stories (a sole proprietorship).
For the purposes of the General Data Protection Regulation (GDPR) and applicable privacy laws, 3D-Stories is the data controller for personal data collected through ChoreStory.
We can be reached at privacy@chorestory.com for any privacy-related questions or requests.
↑ Back to top2. Information We Collect
We collect the following categories of personal information when you use ChoreStory:
| Category | Data Points | Required or Optional | Source |
|---|---|---|---|
| Account | Email address, username, password (bcrypt hashed — never stored in plain text), birth date, first name, last name, display name | Required to use the service | User registration |
| Profile | Avatar image (file upload, AI-generated, or URL), avatar type, timezone, currency preference, display order | Optional (defaults used if not provided) | User settings |
| Activity | Chore completions, streaks, achievements, rewards earned, goals | Generated automatically by app usage | App usage |
| Authentication | Google ID (if using Google Sign-In), authentication provider, last login timestamp, email verification status | Required; Google ID only if using Google SSO | Login flow |
| Technical | IP address, browser user agent string | Collected automatically for security | Audit logs |
| Files | Avatar image files; source photos uploaded for AI avatar generation | Optional | User uploads |
| Historical snapshots | Point-in-time copies of user, family, and chore records (all fields) captured on every change | Automatic, for audit integrity | Database triggers on INSERT/UPDATE |
Passwords are never stored in plain text. We use bcrypt with 10 salt rounds. We cannot retrieve your password — only reset it.
Historical snapshots are stored in temporal tables whenever a record changes. These snapshots capture the full state of the record at that moment and are used for audit purposes. They are de-identified or purged when the parent record is deleted.
↑ Back to top3. How We Collect Information
Directly from you
When you register for an account, update your profile, complete chores, upload files, or otherwise use ChoreStory, you provide information directly to us.
From third-party providers
If you choose to sign in with Google, Google provides us with your name, email address, Google account ID, and profile picture URL. You must explicitly authorize this sharing during the Google sign-in flow.
Automatically
We automatically collect limited technical information when you use ChoreStory:
- Audit logs: Your IP address and browser user agent are recorded in audit logs when you authenticate or perform sensitive actions. These are used for security monitoring and retained for up to 2 years.
- Session replays (Sentry): We use Sentry for error monitoring and performance tracking. Sentry captures anonymized session replays — DOM structure snapshots with all text masked and media blocked — for approximately 10% of all user sessions and 100% of sessions where an error occurs. Sentry also captures performance trace data (page URLs and timing) for approximately 10% of page loads.
4. How We Use Your Information
We use your personal data only as needed to operate ChoreStory and fulfill our legal obligations. The table below identifies our processing activities and the legal basis for each under GDPR Article 6.
| Processing Activity | Legal Basis (GDPR Art. 6) |
|---|---|
| Provide and maintain the ChoreStory service | Contract performance (Art. 6(1)(b)) |
| Authentication and account security | Legitimate interest (Art. 6(1)(f)) |
| Transactional email (email verification, password reset, invitations) | Contract performance (Art. 6(1)(b)) |
| AI avatar generation | Consent (Art. 6(1)(a)) — you must explicitly initiate this feature |
| Error monitoring and session replay (Sentry) | Legitimate interest (Art. 6(1)(f)) |
| Anonymized aggregate usage analytics | Legitimate interest (Art. 6(1)(f)) |
| Audit logging (IP address, user agent) | Legitimate interest (Art. 6(1)(f)) |
| Legal compliance (responding to lawful requests) | Legal obligation (Art. 6(1)(c)) |
We do not use your personal data for advertising, profiling, or any purpose not described in this policy.
↑ Back to top5. Children's Privacy (COPPA)
ChoreStory is designed for families, including children. This section describes how we handle children's personal data in compliance with the Children's Online Privacy Protection Act (COPPA) and similar international laws.
Children under 13
We knowingly collect personal data from children under the age of 13. We do so only with verifiable parental consent.
How parental consent works
Only adults aged 18 or older may create a family account (the "family admin" role). When a family admin creates an account for a child, that act constitutes the admin's verifiable parental consent for the child's data to be collected and processed. The family admin takes full responsibility for child accounts they create.
Data collected from children
Children's accounts contain the same categories of data as adult accounts: username, display name, birth date, chore completion history, streaks, achievements, rewards, and optional avatar images. We do not collect more information from children than is necessary to use the service.
No advertising to children
We do not serve behavioral advertising to any user, including children. We do not sell any personal data, including children's data.
Parental rights
Parents and guardians may, at any time:
- Review the personal data collected about their child by contacting us at privacy@chorestory.com
- Request deletion of their child's personal data
- Revoke consent by deleting the child's account (family admins can do this from the app)
To exercise these rights, please email privacy@chorestory.com with your request. We will respond within 30 days.
6. Google User Data
ChoreStory integrates with two Google services: Google Sign-In (OAuth) and the Google Photos Picker API. This section describes how we handle data received from Google.
Compliance with Google API Services User Data Policy
ChoreStory's use of information received from Google APIs complies with the Google API Services User Data Policy, including the Limited Use requirements.
Specifically:
- Google user data is used only to provide the feature you explicitly requested (sign-in or avatar selection). It is not used for any other purpose.
- Google user data is not transferred to third parties except as necessary to provide those features.
- Google user data is not used for advertising, sold, or used for determining creditworthiness or for lending purposes.
- Google user data is not used to develop or train AI or machine learning models, except for features explicitly authorized by you.
Google Sign-In (OAuth)
When you sign in with Google, we receive your email address, name, Google account ID, and profile picture URL from Google. We use this information to create or authenticate your ChoreStory account.
Google Photos Picker API
If you choose to select a photo from Google Photos as your avatar, we access only the specific photo you select. We use the Google Photos Picker API, which requires you to explicitly choose each photo — we do not have access to your entire Google Photos library.
Revoking Google access
You can revoke ChoreStory's access to your Google account at any time by visiting your Google Account permissions settings. Revoking access will not delete your ChoreStory account or data, but you will need to use a password to sign in.
↑ Back to top7. Third-Party Services
We share limited personal data with third-party service providers solely to operate ChoreStory. These service providers are our "sub-processors" under GDPR.
| Service | Provider | Purpose | Data Shared |
|---|---|---|---|
| SendGrid | Twilio Inc. | Transactional email delivery | Email address, first name |
| Google OAuth | Google LLC | Single Sign-On login | Email, name, Google ID, profile picture URL |
| Google Photos Picker | Google LLC | Avatar selection from Google Photos | OAuth tokens (scoped), selected photo |
| Replicate API | Replicate, Inc. | AI avatar generation | Source photos, generation prompts |
| Sentry | Functional Software, Inc. | Error monitoring, performance tracing | Stack traces, user context, anonymized session replays |
No other third parties receive your personal data from ChoreStory, except as required by law (see Data Sharing).
↑ Back to top8. Data Sharing
Service providers (sub-processors)
As described in Third-Party Services, we share data with providers that help us operate ChoreStory. Each provider receives only the data required for their specific function.
Legal requirements
We may disclose personal data if required by law, regulation, court order, or lawful request from a government authority. We will notify you of such requests to the extent permitted by law.
Business transfers
If ChoreStory or 3D-Stories is involved in a merger, acquisition, or sale of assets, your personal data may be transferred to the successor entity. We will provide reasonable notice before such a transfer occurs.
We do not sell your data
We do not sell, rent, lease, or otherwise share your personal information for advertising purposes or for any consideration. This applies to all users, including California residents under the CCPA "Do Not Sell or Share My Personal Information" right.
↑ Back to top9. Data Retention
We retain your personal data for as long as necessary to provide the service and comply with legal obligations.
| Data Type | Retention Period |
|---|---|
| Active account data | Retained while account is active |
| Deleted account PII | De-identified within 30 days of deletion |
| Historical snapshots | Purged with parent record at deletion |
| Audit logs | 2 years, then purged |
| Password reset tokens | Expire after 1 hour |
| Authentication JWTs | Purged after 7 days (token expiry) |
| OAuth nonces | Expire after 5 minutes |
| Avatar files | Deleted when replaced or account deleted |
De-identification: We replace identifiable data with null values or a non-reversible random identifier. The de-identified record retains no information that could reasonably identify the individual.
↑ Back to top10. Your Rights
Depending on your location, you have specific legal rights regarding your personal data. We honor these rights regardless of jurisdiction.
GDPR rights (EU and UK residents)
- Access: Request a copy of the personal data we hold about you.
- Rectification: Request correction of inaccurate or incomplete data.
- Erasure: Request deletion of your personal data.
- Data portability: Receive your data in JSON or CSV within 30 days.
- Restriction: Request that we limit how we use your data.
- Object: Object to processing based on legitimate interests.
- Withdraw consent: Withdraw consent at any time without affecting prior processing.
We respond to GDPR requests within 30 days.
CCPA rights (California residents)
- Right to know: Request disclosure of what personal data we collect, use, and disclose.
- Right to delete: Request deletion of personal data.
- Right to opt out of sale: We do not sell personal data.
- Right to non-discrimination: We will not discriminate for exercising any CCPA right.
We respond to CCPA requests within 45 days.
PIPEDA rights (Canadian residents)
- Access: Request access to your data and how it has been used or disclosed.
- Accuracy challenge: Challenge accuracy and request correction.
- Withdraw consent: Withdraw consent, subject to legal restrictions.
- File a complaint: File with the Office of the Privacy Commissioner of Canada.
How to exercise your rights
Email privacy@chorestory.com. We may ask you to verify your identity. Family admins may exercise rights on behalf of child accounts.
↑ Back to top11. Data Security
We implement technical and organizational security measures to protect your personal data:
- Encryption in transit: All data is encrypted using TLS (HTTPS).
- Password hashing: bcrypt with 10 salt rounds.
- Multi-tenant isolation: PostgreSQL Row-Level Security (RLS).
- JWT management: Tokens expire automatically. Blacklisted tokens are rejected.
- Input validation: All API inputs validated using Zod schemas.
- Token storage: JWTs stored in browser localStorage. XSS risk mitigated by CSP and input validation.
No guarantee of absolute security. No system is completely secure. If you suspect your account has been compromised, contact us at privacy@chorestory.com.
↑ Back to top12. Data Breach Notification
In the event of a personal data breach likely to result in a risk to your rights:
- Notify affected users within 72 hours of becoming aware of the breach.
- Notify relevant supervisory authorities as required by law.
- Provide details: nature of breach, categories and numbers affected, likely consequences, and steps taken.
- Advise on protective steps (e.g., changing passwords).
For breaches affecting children's data, we will notify the family admin for each affected child account.
↑ Back to top13. International Data Transfers
Data hosting: ChoreStory is hosted in Canada. Canada has EU Commission adequacy recognition under GDPR.
Sub-processor transfers: Some providers process data in the US or other jurisdictions. When your data is processed by these providers, it is subject to their data protection practices.
Safeguards: We rely on sub-processors' compliance programs, Standard Contractual Clauses, or other appropriate transfer mechanisms.
↑ Back to top14. Local Storage & Tracking
ChoreStory takes a minimal-tracking approach:
- No tracking cookies. We do not use any cookies for tracking, analytics, or advertising.
- localStorage for authentication only. Only your JWT tokens are stored in localStorage. They are cleared on logout.
- No third-party analytics. We do not use Google Analytics or any other cross-site tracking platform.
- No advertising. We do not run advertising or participate in ad networks.
- Session replays (Sentry only). As described in Section 3, Sentry captures anonymized replays for error debugging only.
15. Changes to This Policy
We may update this Privacy Policy from time to time.
For material changes:
- Email notification at least 30 days before changes take effect.
- Updated "Last updated" date.
- For changes affecting children's data, family admins will be notified and updated acknowledgment required.
Your continued use after the 30-day notice period constitutes acceptance. You may delete your account before changes take effect if you disagree.
↑ Back to top16. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or your personal data:
Rocky Androsoff, operating as 3D-Stories
Privacy enquiries: privacy@chorestory.com
We respond to all privacy requests within 30 days. For CCPA requests, we respond within 45 days.
If you are not satisfied with our response, you may lodge a complaint with your local supervisory authority:
- EU/UK: Your national data protection authority (e.g., ICO).
- Canada: The Office of the Privacy Commissioner of Canada.
- California: The California Attorney General's office.