Privacy Policy
Last drafted: July 4, 2026.
Who this policy is for
Parent Inclusion Navigator is designed for parents and guardians (adults) managing school support and Family Support for Children with Disabilities (FSCD) matters for their own child. Accounts are parent/guardian accounts only - there is no child-facing account, login, or user interface anywhere in the app, and this is a deliberate scope decision, not an oversight.
Information we collect
The app collects only what it needs to run the features described on our home page:
- Account information: the email address and password you sign up with. Your password is never stored in plain, readable form - it is salted and hashed, and a separate value derived from it (never the password itself) is used to encrypt your case data on your device before anything syncs.
- Your child's profile: a preferred name, and optionally a grade level and school board. The app does not have a diagnosis, medical-status, or legal-status field of any kind - if you choose to record something like that, it lives only inside your own free-text evidence log entries, never a structured field the app reads or reasons over.
- Your evidence log: meetings, requests, commitments, and follow-ups you choose to record, along with participant names/roles you type in yourself.
- Meeting prep and conversation drafts: goals, questions, and message drafts you write for your own use.
- FSCD checklist progress: which steps of Alberta's real FSCD application process you've marked as gathered, in progress, or not applicable, plus your own notes and your own labels for documents you're tracking. The app does not store the documents themselves.
We do not currently ask for or store a diagnosis code, a Social Insurance Number, payment information, or any government file/reference number as a structured field - if a future version of the app were to add fields like these, that would be a real product change requiring its own update to this policy, not something already true today.
How your information is protected
- Encrypted before it ever leaves your device. The content you type into the app - evidence log entries, meeting prep, conversation drafts, FSCD checklist notes, and your child's profile fields - is encrypted on your device, using a key derived from your own account credentials, before it is ever sent to our server for syncing across your devices. Our server stores that ciphertext; it is not able to read the plain content of what you've written. This has been verified with automated tests confirming the stored data never contains the original plaintext, that tampered data fails to decrypt rather than silently returning garbage, and that the wrong key cannot open it.
- Encrypted at rest on your device, too. The copy of your data stored locally on your phone or tablet is also encrypted (not just the copy that syncs) once you have an account, and only becomes readable after you log in. There is no point after you create an account where an unencrypted copy of your case data sits on the device.
- Encrypted in transit. Connections between the app and our server use standard transport encryption (TLS).
About your password - please read this
If you forget your password, this data cannot be recovered - not by us, not by anyone. There is no "reset my password" link, because we deliberately never store anything - on our servers or anywhere else - that could unlock your encrypted data without your original password. This is a direct consequence of the encryption design described above, not a missing feature: building an account-recovery mechanism today would mean weakening that protection for everyone, and we've chosen not to do that. Please store your password somewhere safe (a password manager is a good option). If you lose it, your only option is to create a new account - your existing case data will not be retrievable, by us or anyone else, under any circumstance.
What we don't do
- No advertising, and no analytics or tracking SDKs that collect what you log in the app.
- No child accounts, and no public or semi-public forums inside the app.
- No selling of your information, and no sharing of your case content with third parties for marketing purposes.
- No cross-account sharing - your account's data is isolated from every other account; there is no feature today that aggregates or compares data across families.
- No school-system login, roster sync, or data integration of any kind.
Exporting and deleting your data
You can export your data, or permanently delete it, from Settings.
- Export produces a single document with your child's name, your full evidence log (in date order), your commitments, your most recent meeting prep exports, and your current FSCD checklist status. Conversation Builder drafts are intentionally not included in the export, since a draft message isn't part of your factual case record.
- Delete removes your data everywhere it exists - on the device you're using, on our server, and on any other device signed into your account - not just the device in your hand. This has been specifically tested: a delete on one device is confirmed to actually reach the server and to remove the data from a second device the next time it checks in, rather than leaving a stale copy behind.
- Deleting your account also removes your registered devices and your login credentials, not just your child's case data.
Sharing an export uses your device's own share/save screen (for example, to send it by email or save it to a file), which is outside the app's control once you choose to share it - the app itself never uploads an export anywhere on its own, and never sends anything without you tapping a share/send action yourself.
Not legal or medical advice
The app's Resource Navigator and FSCD checklist present Alberta process information and help you organize your own facts - they do not give legal, medical, or diagnostic advice, and the FSCD checklist does not determine whether your child is eligible for FSCD or submit anything on your behalf. Alberta (not this app) decides eligibility, and you submit your own application.
Children's privacy
This app is directed at parents and guardians, not children. Children do not create accounts, log in, or use the app directly in any way - a parent or guardian is the account holder and enters all information themselves. We do not knowingly collect information directly from a child.
Not yet decided - flagged for legal review, not invented here
The following are real open questions this draft deliberately does not answer with invented specifics, because no verified decision or built behavior exists yet to describe honestly:
- Exact data retention periods and backup-copy practices for deleted or inactive accounts.
- The specific hosting provider(s), server region(s), and any data processors/subprocessors used to run the backend.
- A formal security-incident/breach notification commitment and timeline.
- The legal entity operating this service, a support/contact email address, and the governing law for this policy.
- Pricing/subscription terms, if any apply at launch.
These must be filled in with real, accurate answers - not placeholder-shaped guesses - as part of the required lawyer review before publication.
Changes to this policy
If this policy changes after a real version is published, we will update the date at the top of this page. Material changes affecting how your data is handled will be highlighted rather than buried in a routine update.
Formal review status
A formal, independent privacy and security review of this app's account, sync, and encryption design is a required, release-blocking step recorded in this project's internal risk register and QA release checklist, and has not yet been completed. No public release or real app-store submission is expected before that review is complete.