Opairly

Privacy Policy

How Opairly collects, uses, stores, and protects your personal data.

Effective date: February 28, 2026 Last updated: February 28, 2026

Introduction

Welcome to Opairly. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our web application at opairly.nl (the "Service").

Opairly is a household management tool designed for host families and au pairs in the Netherlands. It helps you track tasks, work hours, schedules, house rules, leave requests, and more — in compliance with Dutch au pair regulations.

We are committed to protecting your privacy and processing your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR"), known in the Netherlands as the Algemene Verordening Gegevensbescherming ("AVG"), and the Dutch GDPR Implementation Act (Uitvoeringswet AVG, "UAVG").

By using our Service, you acknowledge that you have read and understood this Privacy Policy. Also see our terms of service and our trust & security page for more information.

Data Controller

The data controller responsible for processing your personal data is:

Opairly Netherlands Email: hello@opairly.nl

We do not currently have a Data Protection Officer (DPO). Given the nature and scale of our data processing, we are not required to appoint one under Article 37 of the GDPR. If you have any questions about how we handle your personal data, you can contact us at the email address above.

What Personal Data We Collect

We collect and process the following categories of personal data:

Account Data

  • Email address (used for authentication and communication)
  • Name
  • Profile photo (optional, uploaded by you)
  • User role (host family member or au pair)

Household Data

  • Household name
  • Home address (encrypted)
  • Household configuration settings (daily and weekly hour limits, annual leave days, compliance mode, check-in settings, free days)
  • Invite codes (system-generated, used for linking family members and au pairs to a household)

Children's Data

  • Name and date of birth of children in the household
  • Color preference (for visual identification in the app)

Children's Medical Data (Special Category)

With your explicit consent, we store the following medical data per child:

  • Allergies, medical conditions, medications
  • Blood type
  • Doctor name and phone number
  • Medical notes

This is special category data under Article 9 of the GDPR. See Children's Data below for details on how we protect this data.

Emergency Information

  • Emergency contacts per child: name, phone number, email address, relationship (encrypted)
  • Healthcare provider contacts: GP, hospital, and pharmacy (name, phone, address — encrypted)
  • Emergency procedures (instructions created by the family)

Emergency contacts include personal data of third parties (e.g., grandparents, neighbors, doctors) who are not users of the Service. You are responsible for informing these individuals that their contact details are stored in Opairly.

Usage Data

  • Task schedules, task assignments, and task completion records
  • Time entries (hours worked per day, categorized by type of activity)
  • House rules created within the household
  • Leave requests and their approval status
  • Weekly check-in reflections (submitted by au pair, with optional family notes)
  • Daily planning entries (meal and sleep attendance per day)
  • Expense records (amount, category, description, payment links, receipt images)
  • Free day overrides (custom schedule adjustments)

Reference Letters

  • Reference letters written by family members about au pairs, including: period of stay, strengths, experience description, recommendation text, and additional notes
  • Status information (draft, published, accepted, declined)
  • Share tokens for public access links
  • Denormalized name snapshots (reviewer name, au pair name, household name) that persist independently for the au pair's benefit — see Data Retention for details

Feedback Data

  • Feedback submissions: type (feedback, bug report, feature request, or rating), message text, and star rating (1–5)
  • Testimonial consent: if you opt in via the "show my rating on the website" option, your submission is flagged for review. After administrative review, your name and rating may be displayed as a testimonial on our website. You can withdraw this consent at any time by contacting us at hello@opairly.nl

Notification & Subscription Data

  • Notification preferences (email and in-app notification settings per type)
  • Push notification subscriptions: browser push endpoint URL, cryptographic keys, user-agent string, and last activity timestamp (stored to deliver push notifications to your device and manage subscription freshness)
  • Subscription and billing metadata: Stripe customer ID, subscription ID, subscription status, plan, trial period, and billing period dates

Export Data

When you use our export feature, PDF and Excel files are generated client-side in your browser. We do not store copies of these exported files on our servers. JSON data exports are generated server-side and delivered directly to your browser as a download.

Communication Data

  • Any correspondence you send to us via email

Technical Data

We do not use analytics tools or tracking pixels. Technical data such as IP addresses may be processed by our infrastructure providers (Cloudflare and Supabase) as described under Third-Party Services. Additionally, we store IP addresses in internal audit logs when sensitive data is accessed or modified (see Data Security).

Why We Process Your Data (Purposes)

We process your personal data for the following purposes:

  • Providing the Service: To create and manage your account, authenticate you via magic link email, and deliver the core functionality of task tracking, hour logging, schedule management, house rules, leave requests, check-ins, reference letters, and expense tracking.
  • Household management: To link family members and au pairs within a shared household and enable collaboration on tasks, schedules, rules, and daily planning.
  • Children's care coordination: To enable families to store and share essential medical information and emergency contacts about their children with their au pair, so the au pair can respond appropriately in emergencies.
  • Compliance support: To help you track working hours and leave in accordance with Dutch au pair regulations (including the 30-hour weekly and 8-hour daily limits).
  • Communication: To send you authentication emails (magic links), transactional notifications related to your account, and push notifications if you have opted in.
  • Export functionality: To allow you to generate PDF, Excel, and JSON documents of your schedules, house rules, reference letters, and account data for your own records or for submission to agencies (such as for IND visa applications).
  • Feedback and testimonials: To collect your feedback about the Service and, with your explicit opt-in consent, display your rating as a testimonial on our website.
  • Service improvement: To maintain, troubleshoot, and improve the Service, including through internal audit logs of sensitive data access.
  • Legal compliance: To comply with applicable legal obligations.

Legal Basis for Processing

Under Article 6 of the GDPR, we process your personal data on the following legal bases:

PurposeLegal Basis
Account creation and authenticationPerformance of a contract (Art. 6(1)(b))
Providing core Service features (tasks, hours, rules, leave, check-ins, expenses)Performance of a contract (Art. 6(1)(b))
Reference letters and sharingPerformance of a contract (Art. 6(1)(b))
Sending authentication and notification emailsPerformance of a contract (Art. 6(1)(b))
Push notificationsConsent (Art. 6(1)(a)) — via browser permission prompt; revocable at any time
Displaying testimonials on the websiteConsent (Art. 6(1)(a)) — via explicit opt-in; revocable at any time
Children's medical dataExplicit consent (Art. 9(2)(a)) — via dedicated consent form per child; revocable at any time by removing the medical data
Emergency contacts (third-party data)Legitimate interest (Art. 6(1)(f)) — ensuring child safety in emergencies
Audit logging of sensitive data accessLegitimate interest (Art. 6(1)(f)) — security and accountability
Service maintenance and troubleshootingLegitimate interest (Art. 6(1)(f)) — ensuring a reliable service
Compliance with legal obligationsLegal obligation (Art. 6(1)(c))

Where we rely on legitimate interest, we have conducted a balancing test to ensure that our interests do not override your fundamental rights and freedoms.

Providing Data

Providing your email address is necessary to create an account and use the Service. Without it, we cannot authenticate you or provide access. Providing additional data (such as children's names, medical information, or emergency contacts) is voluntary but may be necessary to use specific features of the Service.

Cookies and Local Storage

Cookies we use

CookiePurposeTypeDuration
Supabase session cookieKeeps you authenticated after signing in via magic linkStrictly necessarySession
Supabase redirect cookieSaves the page you were visiting before login redirectStrictly necessarySession
i18n_localeStores your preferred language (Dutch or English)Functional1 year
onboarding-tour-completedPrevents the onboarding tour from showing againFunctional1 year
checkin-dismissed-*Remembers that you dismissed the weekly check-in bannerFunctional7 days

Local storage

We use your browser's local storage to cache household data for offline access (PWA functionality) and to store UI preferences such as the PWA install banner dismissal. This data stays on your device and is never transmitted to our servers.

What we do not use

  • No third-party analytics cookies (no Google Analytics, no Matomo, etc.)
  • No advertising or remarketing cookies
  • No social media tracking pixels
  • No fingerprinting or other tracking technologies

Because we only use strictly necessary and functional cookies, we are not required to obtain cookie consent under the Dutch Telecommunications Act (Telecommunicatiewet). However, we inform you of their use here for full transparency.

Third-Party Services

We use the following third-party services to operate Opairly. These services act as data processors on our behalf:

Supabase (Supabase, Inc.)

  • Purpose: Database hosting, user authentication (magic link emails), file storage (avatars, receipt images), and server-side API functions.
  • Data processed: All account data, household data, and usage data stored in our database. Email addresses for sending authentication emails. Uploaded files (profile photos, expense receipts).
  • Location: EU (Frankfurt). We select EU-based infrastructure.
  • Privacy policy: supabase.com/privacy

Cloudflare (Cloudflare, Inc.)

  • Purpose: Hosting our web application (Cloudflare Pages), content delivery, and DDoS protection.
  • Data processed: Technical data such as IP addresses, request headers, and access logs as part of standard web hosting operations.
  • Privacy policy: cloudflare.com/privacypolicy

Stripe (Stripe, Inc.)

  • Purpose: Payment processing for subscriptions.
  • Data processed: Payment details (credit card, iDEAL, billing address). Opairly does not store payment card data — it is processed exclusively by Stripe. We do store Stripe customer and subscription identifiers to manage your subscription status.
  • Certification: PCI-DSS Level 1.
  • Privacy policy: stripe.com/privacy

Resend (Resend, Inc.)

  • Purpose: Transactional email (authentication emails, notifications, account-related emails, feedback notifications).
  • Data processed: Email address, email content, and operational metadata (email type, locale).
  • Certification: SOC 2 Type II.
  • Privacy policy: resend.com/legal/privacy-policy

We have entered into Data Processing Agreements (verwerkersovereenkomsten) with each of our processors, in accordance with Article 28 of the GDPR.

Push notification delivery

When you enable push notifications, your browser assigns a push endpoint URL hosted by your browser vendor (e.g., Google FCM for Chrome, Mozilla Push Service for Firefox, Apple Push Notification Service for Safari). When we send you a push notification, the notification payload is delivered via your browser vendor's push service. This is an inherent part of the Web Push protocol and is governed by your browser vendor's privacy policy.

Data Transfers Outside the EU

Some of our third-party service providers are based in the United States. When personal data is transferred outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place:

  • Cloudflare, Supabase, Stripe, and Resend participate in the EU-U.S. Data Privacy Framework (DPF) as certified by the European Commission's adequacy decision of July 10, 2023. Where applicable, Standard Contractual Clauses (SCCs) approved by the European Commission are also in place.

We do not transfer your personal data to countries outside the EEA without ensuring an adequate level of protection as required by Chapter V of the GDPR.

Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy:

Data TypeRetention Period
Account data (email, name, role, avatar)Until you delete your account
Household data and usage data (tasks, hours, rules, leave, expenses, check-ins, daily plans)Until you delete your account or the household is deleted
Children's data (names, dates of birth)Until the child is removed or the household is deleted
Children's medical dataUntil you remove the medical data, remove the child, or delete the household
Emergency contactsUntil removed by a family member or the household is deleted
Reference lettersUntil deleted by the author. Note: denormalized name snapshots (reviewer name, au pair name) persist after account deletion to preserve the reference for the au pair's benefit. The au pair can delete references they have accepted.
Feedback submissionsUntil you delete your account
Notification preferencesUntil you delete your account
Push notification subscriptionsUntil you disable push notifications or delete your account
Billing metadata (Stripe IDs, status)Until the household is deleted. Stripe customer data is also deleted from Stripe upon account deletion.
Audit logs (sensitive data access, IP addresses)Automatically deleted after 90 days
Authentication session dataDuration of active session; expired sessions are automatically purged
Communication recordsUp to 2 years after the inquiry is resolved

When you delete your account, we delete your personal data immediately. For household owners, deleting the household cascades to all associated data (tasks, hours, rules, children, emergency contacts, leave requests, expenses, check-ins, feedback, and audit logs). You can delete your account via Settings > Members > Delete account.

Your Rights Under the GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right of access (Art. 15): You can request a copy of the personal data we hold about you. Much of your data is directly accessible in the dashboard.
  • Right to rectification (Art. 16): You can update your name, household data, children's profiles, emergency contacts, tasks, and house rules via the dashboard and settings. To change your email address, contact us.
  • Right to erasure (Art. 17): You can permanently delete your account and all associated data via Settings > Members > Delete account. This is an irreversible hard deletion.
  • Right to restriction (Art. 18): You can ask us to temporarily restrict the processing of your data.
  • Right to data portability (Art. 20): You can export your data as a JSON file via Settings > Privacy > Export data. This structured, machine-readable export includes your profile, household data, children, emergency contacts, tasks, hours, house rules, leave requests, and expenses (scope varies by role). You can also export weekly schedules and house rules as PDF or Excel.
  • Right to object (Art. 21): You can object to processing based on our legitimate interests.
  • Right to withdraw consent (Art. 7(3)): Where processing is based on consent (medical data, push notifications, testimonials), you can withdraw at any time without affecting the lawfulness of prior processing. For medical data, remove the medical information for a child in settings. For push notifications, disable them in settings. For testimonials, manage the "show on website" option in feedback.
  • Right to lodge a complaint: You have the right to file a complaint with the Dutch Data Protection Authority:

Autoriteit Persoonsgegevens Postbus 93374, 2509 AJ Den Haag autoriteitpersoonsgegevens.nl

To exercise any of these rights, contact us at hello@opairly.nl. We will respond to your request within one month, as required by Article 12(3) of the GDPR. This period may be extended by two months for complex requests, in which case we will inform you of the extension and the reasons for it.

Data Security

We take appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

  • Authentication: We use magic link (email-based) authentication. No passwords are stored.
  • Encryption in transit: All data in transit is encrypted using TLS/HTTPS.
  • Encryption at rest: Data at rest in our database is encrypted by Supabase.
  • Application-level encryption: Children's medical data, emergency contact details, and household emergency information (home address, healthcare provider contacts) are encrypted before storage using AES-256-GCM with per-household key derivation. See our Trust & Security page for details.
  • Access control: Row-Level Security (RLS) policies in our database ensure that users can only access data within their own household.
  • Role-based access: The application enforces role-based permissions — au pairs and family members have different levels of access.
  • Audit logging: Modifications of sensitive data (medical information, emergency contacts) are recorded in internal audit logs with timestamps and IP addresses. These logs are automatically deleted after 90 days.
  • Infrastructure: Our hosting (Cloudflare) provides DDoS protection, and our database provider (Supabase) maintains SOC 2 Type II compliance.
  • Client-side exports: PDF and Excel files are generated in your browser and are never uploaded to our servers.

While we strive to protect your data, no method of electronic transmission or storage is 100% secure. If you become aware of any security vulnerability, please contact us immediately at hello@opairly.nl.

Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify the Autoriteit Persoonsgegevens within 72 hours in accordance with Article 33 of the GDPR. If the breach poses a high risk to you, we will also inform you directly in accordance with Article 34 of the GDPR.

Children's Data

Children as users

Opairly is intended for use by host families and au pairs. You must be at least 16 years of age to create an account, in accordance with Article 8 of the GDPR and Article 5 of the UAVG. We do not knowingly collect personal data from children under 16 as users of the Service. If you are a parent or guardian and believe your child has created an account, please contact us at hello@opairly.nl, and we will take steps to delete such data.

Children as data subjects

Host families enter data about their children (names, dates of birth, and optionally medical information) so that their au pair has the information needed for daily care. This data is entered by parents or legal guardians under parental authority.

Children's medical data (allergies, medications, blood type, medical conditions, doctor information) is classified as special category data under Article 9 of the GDPR. We process this data only with the explicit consent of a parent or legal guardian, provided through a dedicated consent form per child. This consent can be withdrawn at any time by removing the medical data in settings. All medical data is encrypted before storage using AES-256-GCM. See our Trust & Security page for full details.

Automated Decision-Making

We do not engage in automated decision-making or profiling as defined in Article 22 of the GDPR. All decisions about hour limits, leave requests, and task management are made by the users themselves.

Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will:

  • Update the "Last updated" date at the top of this page.
  • Notify you via the email address associated with your account at least 30 days in advance.
  • Where required by law, seek your consent for material changes to data processing.

If you do not agree with the changes, you may delete your account before the changes take effect. Your continued use of the Service after changes take effect constitutes your acknowledgment of the updated policy.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal data, please contact us:

Opairly Email: hello@opairly.nl Website: www.opairly.nl

We aim to respond to all inquiries within 5 business days.