SF School Navigator

Privacy Policy

Last updated: March 2026

Our Principles

SF School Navigator is built with privacy at its core. We collect only what is needed to help you find the right preschool, and we go to significant lengths to protect your family's information.

  • We minimize data collection to what is strictly necessary for matching.
  • We never store your home address — it is geocoded once and discarded.
  • Your location is fuzzed by approximately 200 meters before storage.
  • We store your child's age in months, not their date of birth.
  • Special needs status is a simple yes/no flag — no free-text descriptions.
  • We enforce row-level security on all personal data in our database.

What We Collect

Home address: Entered during the intake wizard, geocoded via Mapbox to determine your SFUSD attendance area, then immediately discarded. Only approximate coordinates (~200m offset) and attendance area ID are stored.

Child information: Age in months, potty training status, and a boolean special needs flag. We do not store date of birth or any health-related text.

Family preferences: Budget range, schedule needs, language preferences, and educational philosophy preferences. Stored as structured data — no free-text fields that could contain personal information.

Saved programs: Which programs you have saved, your application status for each, and any notes you add.

How We Protect Your Data

  • Row-level security: Database policies ensure you can only access your own family's data. API routes verify ownership independently.
  • No PII in logs: Query logging is configured to exclude parameters on family-related tables.
  • Secure email links: Unsubscribe links use HMAC-signed, expiring tokens — not raw database IDs.
  • HTTPS everywhere: All data in transit is encrypted.

Your Rights

Under the California Consumer Privacy Act (CCPA), you have the right to:

  • Request a copy of all data we hold about you and your family.
  • Request deletion of your account and all associated data.
  • Know that we do not sell personal information to third parties.

To exercise any of these rights, please contact us at the email address below.

Children's Privacy (COPPA)

SF School Navigator does not collect information directly from children. All data is provided by parents or guardians. We store age in months rather than exact dates of birth to further minimize data about children.

Program Data

Information about preschool programs (names, addresses, costs, schedules) is sourced from public datasets including California Community Care Licensing, SFUSD via DataSF, and program websites. This data is publicly accessible and is not personal information.

Contact

Questions about this privacy policy or your data? Reach us at privacy@sfschoolnavigator.com.