Skip to main content
gillyware

Privacy Policy

Effective Date: June 12, 2026

Gillyware, LLC ("we," "us," or "our") provides this authentication service ("the Service") that allows you to create and manage a Gillyware account used to access Gillyware applications. This Privacy Policy explains how we collect, use, and safeguard your personal data.

1. Information We Collect

  • Identifiers: Name, email address, and password collected during account creation. Phone number, if you choose to add it for account security purposes.
  • Profile Media: An optional profile picture you choose to upload.
  • Security Information: Data related to account security features you enable, such as two-factor authentication enrollment and device trust tokens.
  • Session Data: Cookies used solely for session management and security (e.g., CSRF tokens), not for analytics or third-party tracking. OAuth tokens issued to connected applications and mobile clients may be stored on those devices per the device's security model.
  • Internet or Network Activity: Technical details such as device type, operating system, and interaction logs used for security and abuse prevention.

2. How We Use Your Information

  • Authenticate your identity and secure your account across Gillyware applications, including web and mobile clients.
  • Send account-related communications such as email verification, password reset links, and security alerts.
  • Provide additional account security features such as two-factor authentication when enabled.
  • Analyze usage to improve the Service and troubleshoot issues.

3. Data Deletion

When you request account deletion, your account is deactivated and all associated data - including your name, email, password, and profile picture - is scheduled for permanent deletion within 90 days. Deletion of your Gillyware account also schedules deletion of your data in all connected Gillyware applications (e.g., MomTrax). During the 90-day window, you may contact us to cancel the deletion. After this period, deletion is permanent and cannot be undone.

4. Data Sharing

We do not sell your personal data. We may disclose it to:

  • Service Providers: Third parties (e.g., hosting providers) used to operate the Service, under strict confidentiality agreements.
  • Legal Authorities: To comply with legal obligations, such as law enforcement requests.
  • Connected Applications: Basic identity claims (name, email, phone number if provided) are shared with Gillyware applications you authorize via OAuth. Each application has its own privacy policy governing how it handles your data.

5. Data Security

We use industry-standard encryption and protocols to protect your data from unauthorized access. No system is fully secure, so we encourage strong passwords and credential confidentiality.

6. Your Privacy Rights

Under laws such as the CCPA, you have the right to:

  • Know: Request details about the categories of personal data we collect and use.
  • Access: Obtain a copy of your personal data.
  • Delete: Request deletion of your personal data by deleting your account or contacting us.
  • Non-Discrimination: We will not discriminate against you for exercising these rights.

To exercise these rights, contact us at support@gillyware.com. We will respond within 45 days, extendable by 45 more if needed.

7. Changes to This Policy

We may update this Privacy Policy as the Service evolves. Material changes will be communicated through the Service. Continued use after updates constitutes acceptance.

8. Contact Us

For questions about this Privacy Policy, email us at support@gillyware.com or write to Gillyware, LLC.