Privacy Policy

DreamBook — by Niyoko Studio — Last updated: May 2026

DreamBook is designed around your family's privacy. No login. No account. No email address required. Your baby's data stays on your device, encrypted, and only you hold the keys.

1. Who We Are

DreamBook is developed and published by Niyoko Studio. If you have any questions about this policy, you can reach us at:

supportniyoko@gmail.com

2. No Account Required

DreamBook does not require you to create an account, provide an email address, or log in with any third-party identity provider. You start recording your baby's logs immediately without sharing any personal identity information with us.

3. What Data the App Records

DreamBook stores the following data locally on your device:

Baby logs: feeding sessions (breast and bottle), diaper changes, sleep sessions, pumping sessions, and vaccination records
Baby profile: name and date of birth (entered by you)
A device identifier (randomly generated, not linked to you or your Apple/Google account)
An optional recovery code (generated on-device, never transmitted to any server)
App preferences and settings

We do not collect names, email addresses, phone numbers, location data, photos, or any other information beyond what you explicitly enter into the baby log.

4. How Data Is Protected on Your Device

All data stored locally is encrypted at rest using SQLCipher (AES-256). The encryption key is stored in your device's secure hardware enclave (iOS Keychain / Android EncryptedSharedPreferences). An attacker with physical access to your device cannot read your baby logs without your device passcode.

Android app data backup is disabled (allowBackup="false") to prevent unencrypted database snapshots from leaking to Google Drive.

5. Optional Cloud Sync

DreamBook offers an optional encrypted cloud sync feature so you can share logs with co-caregivers or restore data to a new device. If you choose to use this feature:

All data is encrypted on your device using AES-GCM before it is uploaded.
Our cloud infrastructure (Supabase, hosted in Singapore, ap-southeast-1) receives only ciphertext. Supabase cannot read your baby's data.
The encryption key is derived from your recovery code, which is stored only on your device and is never sent to any server.
Sharing is done via an 8-character invite code with a 1-hour expiry. No persistent link between caregivers is stored on the server.

If you do not use cloud sync, no data ever leaves your device.

6. Recovery Code

When you set up cloud sync, the app generates a 20-character recovery code. This code:

Is generated entirely on your device using a cryptographically secure random number generator
Is never transmitted to our servers or any third party
Is the only way to recover your encrypted cloud data if you lose your device

You are responsible for saving your recovery code. If you lose it and lose your device, your cloud data cannot be recovered — not even by us.

7. Analytics and Crash Reporting

DreamBook does not include any advertising SDK or behavioral analytics SDK.

Optional crash reporting (via Sentry/Crashlytics) is available to help us fix bugs. This feature is disabled by default. You can opt in from Settings. If enabled, crash reports may contain device model, OS version, and a stack trace. They do not contain baby log data.

8. Advertising

DreamBook contains no advertisements.

9. Children's Data (COPPA / GDPR-K / PDPA)

DreamBook is designed to track data about infants and toddlers aged 0–24 months. All such data is entered by a parent or caregiver and is covered by the protections described in this policy. We do not knowingly collect personal information from children directly; the app is operated by parents on their devices.

If you believe we have inadvertently collected data about a child in a way not covered here, please contact us immediately at supportniyoko@gmail.com.

10. Your Rights

Because we do not operate accounts or link data to identifiable individuals, most traditional privacy rights (access, portability, objection) are fulfilled automatically — you already hold all your data on your device.

For cloud sync data, you have the right to full erasure:

Go to Settings → Right to Erasure within the app.
This will permanently delete all data associated with your device ID from our servers.
Local data remains on your device and can be deleted by uninstalling the app.

11. Data Retention

Active data is retained in encrypted form indefinitely while you use the app.
Records you delete within the app are soft-deleted and purged from our servers within 90 days.
An erasure request (Settings → Right to Erasure) triggers an immediate wipe of all server-side data associated with your device.

12. Third-Party Services

DreamBook uses the following third-party services:

Supabase (cloud sync only, optional) — encrypted data storage. Supabase Privacy Policy
RevenueCat (subscription management) — processes your subscription status via the App Store / Google Play. No baby log data is shared with RevenueCat. RevenueCat Privacy Policy

We do not sell, rent, or trade your data to any third party for marketing or advertising purposes.

13. Changes to This Policy

If we make material changes to this privacy policy, we will update the "Last updated" date at the top of this page and, where appropriate, notify you within the app. Continued use of DreamBook after a policy change constitutes your acceptance of the revised policy.

14. Contact Us

If you have any questions, concerns, or erasure requests, please contact:

Niyoko Studio
Email: supportniyoko@gmail.com