At Super Epic Goals, we understand that trust is fundamental to our relationship with families. Security and privacy aren't just features for us - they're core values that guide every decision we make about how we build, deploy, and maintain our platform.

We're committed to providing a safe, secure environment where parents can confidently track their children's developmental goals, knowing their family's data is protected with industry-leading security measures and that they maintain complete control over their information at all times.

You own your family's data—completely and unconditionally. Every profile, goal, reward, star, and piece of progress data belongs to you as the parent or guardian. We never claim ownership of your family's information, and we never will.

Complete Access Control: You have full authority over who can view your child's profile. Whether it's therapists, teachers, family members, or other caregivers, you decide exactly who gets invited and what level of access they receive. Only people you explicitly invite can see any information about your child's goals and progress.

Right to Delete: You can delete any profile at any time, and when you do, all associated data is permanently removed from our systems. This includes goals, rewards, stars, progress tracking, and any other information related to that profile. The deletion is immediate and irreversible, ensuring your family's privacy is completely protected.

Super Epic Goals is hosted on Vercel, a leading cloud platform that maintains the highest security standards in the industry. Vercel's comprehensive security credentials include:

• ISO 27001:2013 Certification - International standard for information security management
• SOC 2 Type II Compliance - Rigorous third-party security, availability, and confidentiality audits
• GDPR Compliant - Full compliance with European data protection regulations
• DDoS Protection - Advanced protection against distributed denial-of-service attacks
• Amazon Web Services Infrastructure - Built on AWS's world-class security foundation

You can learn more about Vercel's comprehensive security measures at vercel.com/security

All data transferred between your device and our database is fully encrypted: This is done using industry-standard TLS (Transport Layer Security) encryption protocols. This means that every interaction - whether you're adding a new goal, recording progress, or simply viewing your child's profile - is protected.

Database Security: We use MongoDB Atlas, which enforces TLS 1.2+ encryption for all database connections. Our application is configured to require encrypted connections and will refuse to connect to the database without proper SSL/TLS certificates in place.

End-to-End Protection: From the moment you click a button in the app until your data is securely stored in our database, every bit of information is encrypted and protected. This includes authentication tokens, session data, and all family information flowing through our system.