Privacy Policy
The short version
- We collect only what we need to run your account and the app's features (routines, packing, rewards, family hub).
- Children under 13 cannot create accounts on their own. A parent or guardian creates and oversees every household member.
- We share data with a small list of named service providers (Twilio, Stripe, Google, AI providers) only to make features work. We do not sell your data.
- You can ask us to delete your data at any time by emailing admin@tacticalmarketingpro.com with the subject line
DELETE MY DATA.
1. Who we are
Kumando ("the App," "we," "us," "our") is operated by Tactical Marketing Pro LLC, a Texas limited liability company located at 1000 Main St Ste 2300, Houston, TX 77002-6353, United States. You can reach us at admin@tacticalmarketingpro.com.
This policy explains how we handle personal information when you use Kumando on the web at kumando.com or through our mobile app once published.
2. What we collect and why
Account and identity
| Data | Why we collect it |
|---|---|
| Legal first name or chosen nickname | To label household members in the app and personalize routines. |
| Birth year (year only, not full date of birth) | To pick age-appropriate routines and rewards. We do not need the exact date. |
| Email address | Account sign-in via one-time codes, password recovery, deletion confirmations, and important service notifications. |
| Phone number (optional) | Family hub messaging and voice features. Automated SMS is currently disabled; any SMS or voice contact comes from the account owner sending it manually through the App. |
| Profile photo (optional) | Visual identification of household members in the app. Stored on our server. We do not run facial recognition or biometric processing on photos. |
Authentication
| Data | Why |
|---|---|
| 4-digit PIN per household member | Lets each family member sign in to their profile on a shared device. PINs are stored as a one-way hash (SHA-256 with per-member salt). We never store your PIN in plain text and we cannot recover it. PINs are not shared with any third party. |
| Session cookies / auth tokens | Keep you signed in between visits. These expire on a schedule and you can sign out at any time. |
App usage
| Data | Why |
|---|---|
| Routine completion timestamps and step states | Powers the core routine-tracking feature. |
| XP earned, streaks, fade level, rank progression | Powers the gamification and rewards system. |
| Packing checklist state, mission progress, journey markers | Powers Packing Quest and related family features. |
| Reward redemptions and reward history | So household members and parents can see what was redeemed and when. |
Device and technical
| Data | Why |
|---|---|
| IP address, user-agent, basic browser/device metadata | Standard server logs for security, abuse prevention, and debugging. Retained 30 days then aggregated. |
| Cookies (essential only by default) | Session management and remembering display preferences. We do not use third-party advertising cookies inside the app. |
| Push notification subscription endpoint and keys (optional, only if you enable push) | Lets us send routine reminders and family-event notifications to your device. You can revoke this at any time from your browser or device settings; revoking immediately stops delivery and we delete the subscription on next contact. |
Voice and video features (optional)
The App includes optional voice-call and video-call features for family communication. When you use them:
- Voice and video streams are routed through Twilio. We do not record calls by default and we do not store stream content on our servers.
- Call metadata (who called whom, duration, timestamp) is logged to your account so you can see your own call history.
- If a future feature adds opt-in recording (for example, voicemail or mission audio), it will require an explicit on-screen consent prompt before capture begins.
AI-assistant features (optional)
The App includes an in-app AI assistant ("Olivia" and related agents). When you send a message to an AI feature, the text of your message is forwarded to one of our AI providers (Anthropic, Google AI, Groq, or Cerebras) for processing. The provider returns a response and we display it to you. Per our enterprise terms with these providers, your messages are not used to train their base models. We do not send AI features any information from your account beyond the message you wrote and minimal context (which household member is asking, which app feature is active).
Payments (only if you make a purchase)
Card numbers, CVV, and full billing details are entered directly into Stripe's hosted payment forms. We never see or store full card data. We retain only a transaction reference, the amount, and the product purchased so we can deliver what you paid for and provide receipts.
3. Who we share data with
We use a small set of service providers ("sub-processors") to operate the App. They only receive the minimum data they need to perform their function, and they are bound by their own privacy policies and data-processing agreements.
| Provider | Purpose | What they receive |
|---|---|---|
| Twilio | SMS and voice delivery for family messaging and alerts | Phone numbers and message content when SMS/voice features are used |
| Stripe | Payment processing for purchases and subscriptions | Name, email, billing address, card details (Stripe-hosted; we never see full card data) |
| Analytics (GA4), Google Ads conversion tracking, Gmail (for sending account emails on our behalf) | Anonymized usage events, conversion events, transactional email content | |
| Anthropic, Google AI, Groq, Cerebras | AI-powered assistant features inside the app (Olivia, agent responses) | The text of messages you send to in-app AI features. Not used to train the providers' base models per their enterprise terms. |
| Google Cloud Platform | Hosting, server infrastructure, database storage | All app data is stored on GCP servers in the United States. |
We do not sell your personal information. We do not share it with advertisers, data brokers, or any party not listed above for marketing purposes.
4. Children's privacy
If you are under 13: you cannot create your own Kumando account. A parent or legal guardian must create the family's primary account and add you as a household member. The parent controls your data, your PIN, and your settings.
Kumando is designed for family use and supports household members of any age, but the architecture only allows account creation by an adult parent or guardian (the "owner"). Adding a child as a household member is treated as parental consent under the U.S. Children's Online Privacy Protection Act (COPPA) and similar laws.
- We collect only the minimum data needed for the App to work for that child (first name or nickname, birth year, optional photo and PIN, routine and reward activity).
- We do not show third-party advertising to any household member, regardless of age.
- A parent can review, edit, or delete their child's data at any time from the parent's account, or by emailing us as described in the Deletion section below.
- If we learn that we collected personal information from a child without verifiable parental consent, we will delete that information promptly.
5. How long we keep data
- Account data (name, email, household members, PINs): kept while your account is active, deleted within 30 days of a verified deletion request.
- App usage (routines, XP, packing state): same as account data.
- Server logs (IP, user-agent): 30 days, then aggregated into anonymous statistics.
- Payment records (transaction references): 7 years to satisfy U.S. tax and accounting requirements.
- Deletion requests: a record of the request and its completion is kept indefinitely so we can prove compliance.
6. Your rights
Wherever you live, you can ask us to:
- Access the personal information we have about you
- Correct anything that is inaccurate
- Export a copy of your data in a portable format
- Delete your account and the data associated with it (see next section)
- Stop receiving non-essential email from us
If you are in the European Union, the United Kingdom, California, or another jurisdiction with specific data-protection laws (GDPR, UK GDPR, CCPA, CPRA), you have additional statutory rights that we honor without discrimination. Email us with your request and we will respond within the time required by your local law.
7. How to delete your data
Step-by-step
- Email admin@tacticalmarketingpro.com from the email address on your account.
- Use the subject line
DELETE MY DATA. - In the body, tell us whether you want to delete the entire household or only specific household members.
What happens next:
- We confirm receipt within 24 hours.
- We verify the request is from the account holder (we may ask one follow-up question).
- We delete the data within 30 days and email you a confirmation when it is done.
If you are a parent requesting deletion of a child's data, please mention the child's first name and which household so we can identify the right record.
8. Security
We use industry-standard practices to protect data: encrypted connections (HTTPS / TLS), hashed PINs, restricted server access, and routine backups. No system is perfectly secure, but we work hard to keep yours safe and we will notify affected users without undue delay if a breach involving personal information occurs.
9. International users
Our servers are located in the United States. If you use Kumando from outside the U.S., your information will be processed in the U.S., which may have different data-protection rules than your home country. By using the App you consent to this transfer.
10. Changes to this policy
If we make a material change, we will update the "Last updated" date at the top and, where appropriate, notify you by email or in the App before the change takes effect. Your continued use of the App after the effective date means you accept the updated policy.
11. Contact
Tactical Marketing Pro LLC
1000 Main St Ste 2300
Houston, TX 77002-6353
United States
Email: admin@tacticalmarketingpro.com
Phone: (713) 519-5919