Privacy Policy

Last updated: June 3, 2026 · Version 1.0

1. Who we are and how to contact us

Brote Montessori (hereinafter, "the App", "Brote", or "we") is a mobile application developed by Cristian Camilo Bernal Torres, a natural person, under the SeedLabs project, who is the controller of the personal data collected through the App.

If you have any questions about this policy or how we handle your data, you can write to us at the email above.

2. Who the App is for

Brote Montessori is a tool intended for adults (18 years or older) —mothers, fathers, and caregivers— to support the development of their babies and young children with an approach inspired by Montessori and Pikler principles.

The App is not designed to be used by minors, nor does it collect data directly from them. Data relating to a baby or child (such as their name or date of birth) is entered voluntarily by the responsible adult, in the exercise of parental authority or legal care of the minor.

3. What data we collect

We collect only the data necessary for the App to function. These are:

3.1. Data you provide directly

• Account data: email address and password (if you register with email), or the email and name shared by Google or Apple if you use those sign-in methods.
• Profile data: your name, your role as a caregiver, and general stage information.
• Baby or child data: name, date of birth (or expected due date), and, optionally, gender, type of relationship, and notes. In some cases, reasons for archiving a profile that may include sensitive information (for example, a pregnancy loss or a change of custody).
• Content you create: diary entries (baby observations and personal/emotional reflections), letters, wellbeing records, and moods. These are free-text fields and may contain personal or health information that you choose to include.

3.2. Automatically generated data

• Technical identifiers: a user identifier (UID) generated by our authentication provider, and a notification token (to send you alerts if you enable them).
• Technical and security data: IP address, time zone, last access timestamp, and basic device information needed to deliver notifications (model, operating system, network type).
• Purchase information: if you buy a subscription, the product purchased, subscription status, and transaction history (managed through Google Play and RevenueCat). We do not have access to your full card or payment details; those are managed by Google Play.

3.3. Photos

If you attach photos to your diary or to the baby's profile, these photos are stored only on your device and are NOT uploaded to our servers or the cloud. The App requests access to your gallery only so you can select them locally.

4. How we use your data

We use your data for the following purposes:

• Create and manage your account and profile.
• Enable the App to work: record activities, diary, milestones, and the baby's progress.
• Enable the family feature (sharing the baby's tracking with a second caregiver you invite).
• Process and manage your subscription.
• Send you notifications (only if you enable them).
• Ensure the security of the App and prevent abuse.

We do not use your data for advertising. We do not show ads. We do not sell or transfer your data to third parties for commercial purposes.

5. Legal basis for processing

We process your data based on:

• The performance of the service you request (by creating your account and using the App, you accept that we process the data necessary to provide it).
• Your consent, given when you register and voluntarily enter information (including that of the minor in your care and any sensitive data you choose to include).
• Our legitimate interest in maintaining the security and proper functioning of the App.

In the case of data about the minor in your care, processing is carried out on the basis that you, as the mother, father, or legal caregiver, authorize such processing in the exercise of parental authority or legal representation of the minor, in accordance with applicable data protection regulations for minors.

6. Who we share your data with

We do not sell your data. For the App to function, we use service providers that process data on our behalf and under our instruction (data processors), not as independent third parties:

• Google Firebase (Google LLC): authentication, database (Firestore), cloud functions, and notifications. Data is stored on Google servers.
• RevenueCat, Inc.: subscription management.

These providers may store and process data on servers located outside your country, including the United States. By using the App, you accept this international transfer, which is carried out under the safeguards and clauses these providers offer in accordance with applicable regulations.

We may also disclose data if required by law (for example, a court order).

7. Data about minors

Brote Montessori contains data relating to babies and young children, always entered by the responsible adult. Minors do not use the App or interact with it.

We handle this information with special care:

• We only collect the minor's data that the adult chooses to enter (name, date of birth, and optional data).
• We do not collect the minor's data through any automated means directed at them.
• The adult who enters this data declares that they have the legal authority to do so.

If you believe a minor has provided us with data without the authorization of their legal representative, contact us and we will delete it.

8. How long we keep your data

We keep your data while your account is active. When you delete your account:

• If you are the only member of your family, your profile and all associated data are deleted (including the baby's data and shared content).
• If you share the family with another caregiver, the baby's shared data is kept for that other caregiver, and your private personal information is deleted.
• In all cases, your user profile is deleted.

You can request the deletion of your account and data at any time from within the App, or by writing to us at privacidad@brotemontessori.com.

9. Your rights

You have the right to:

• Access the data we hold about you.
• Rectify inaccurate data.
• Delete your data ("right to be forgotten").
• Object to or restrict certain processing.
• Port your data (request a copy in a structured format).
• Withdraw your consent at any time.

To exercise any of these rights, write to us at privacidad@brotemontessori.com. We will respond within the timeframes established by applicable regulations. The App also includes data export and deletion features.

If you reside in Colombia, you also have the right to file a complaint with the Superintendency of Industry and Commerce (SIC). If you reside in the European Union, with the data protection authority of your country.

10. Security

We protect your data with reasonable technical measures:

• All information is transmitted encrypted (secure connections).
• Access to data is restricted through security rules in our database.
• We do not store your password in readable text (it is managed in encrypted form by our authentication provider).

No system is 100% foolproof, but we work to protect your information with the best practices available to us.

11. Changes to this policy

We may update this policy to reflect changes in the App or in regulations. When we do, we will update the date at the top of the document and, if the changes are significant, we will notify you within the App.

12. Contact