Coming soon

Legal

Privacy Policy

Last updated: 8 June 2026

1. Who is responsible for your data

HouseApps Limited, a private limited company incorporated under the laws of England and Wales with company number 17243528 and registered office at 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom (“HouseApps”, “we”, “us” or “our”), is the data controller responsible for HouseRoster and the personal data processed through the service. For privacy-related enquiries, contact us at [email protected].

HouseRoster is offered to users worldwide except in the EU/EEA, where we do not currently offer the app. As a UK business, we handle personal data under UK data protection law (UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018). We currently do not target or operate in the EU/EEA and therefore have not appointed an EU Article 27 representative; we have also not appointed a Data Protection Officer. We will revisit this if our EU position changes.

2. Summary

We collect the data we need to run a scheduling app, being your account details, the households and shifts you create, details of people you invite, messages you send, and limited technical data to keep the app working and secure. We show no advertisements, do no cross-app tracking, and do not sell your data. You can export or delete your data at any time in the app.

3. What we collect

We collect the following information to run HouseRoster:

  • Account information – your name, email address, and sign-in method. You provide this, or your sign-in provider does.
  • Sign-in provider information – if you sign in with Apple or Google, we receive a provider user identifier, your name, and your email as those services make available. If you sign in using email, we may send one-time verification codes or magic links to authenticate your account.
  • Household details – household name, address, and timezone, which you enter.
  • Information about people you invite – the names and emails a host enters to invite staff or helpers, and the status of each connection.
  • Shift and rota details – shift times, roles, rates, notes, recurrence, and responses that you create.
  • Messages – the content and metadata of messages between connected users.
  • Notifications and device information – push notification tokens, your notification preferences, and your in-app notification history from your device.
  • Calendar Sync (Premium) – a private, unguessable calendar-feed link (token) and the shift data it exposes when you subscribe to it in a calendar app.
  • Subscription information – your plan tier, status, and store/RevenueCat identifiers, from RevenueCat, Apple, or Google. We do not receive your full card details.
  • Support information – the messages you send us and a support reference.
  • Technical, analytics, and crash information – collected automatically, such as app version, device/OS type, pseudonymous usage events, crash diagnostics, and a pseudonymous user ID.

We do not intentionally collect special-category data (e.g. health, religion). Please do not put sensitive information into free-text notes or messages.

4. Information you choose to share within HouseRoster

Some features share your information with others by design:

  • Invitations – inviting a person sends them your invitation and connects your accounts.
  • Messages – messages are delivered to the people in that conversation.
  • Calendar Sync (Premium) – if you enable it, anyone with your private calendar-feed link can see the shift details in that feed through their calendar app. Treat the link like a password. You can revoke it anytime by regenerating it in Settings → Calendar Sync, which immediately stops the old link from working.

Connected users can see your display name, your shift activity with them, and messages you send each other. They cannot see your email or your other connections.

5. Why we use your data

  • Provide the service: accounts, households, shifts, invitations, messaging, notifications, and Calendar Sync.
  • Send transactional emails (invitations, important account messages).
  • Deliver push notifications you have enabled.
  • Manage subscriptions and entitlements.
  • Keep the app secure and prevent abuse (crash diagnostics, rate limiting, audit records).
  • Understand and improve the app with pseudonymous / aggregated analytics.
  • Respond to support requests and comply with legal obligations.
  • Authenticate users through Apple, Google, or email-based one-time verification codes and magic links.

6. Legal bases (UK GDPR / Data Protection Act 2018)

  • Contract – to provide the app (accounts, households, shifts, messaging, Calendar Sync, subscriptions).
  • Legitimate interests – security, abuse prevention, analytics, crash diagnostics, and basic improvement, balanced against your rights.
  • Consent – device notification permission (granted at the OS level). You can withdraw consent anytime.
  • Legal obligation – keeping limited records (e.g. proof a deletion request completed) and responding to lawful requests.

7. Who we share data with

Trusted providers process data on our instructions under contract.

  • Supabase – authentication, database, file storage, and backend functions. Data is hosted in the West EU (Ireland) region. Processing is governed by Supabase's Data Processing Agreement (DPA).
  • RevenueCat – subscription and entitlement management. RevenueCat processes data on our behalf under a DPA. Data may be processed in the United States and other countries where RevenueCat and its service providers operate.
  • Apple App Store / Google Play – payment processing and billing; their own privacy policies apply.
  • PostHog – product analytics (pseudonymous; user-id only). Data is hosted in the European Union (EU-hosted project). PostHog processes data on our behalf under a DPA.
  • Sentry – crash and error diagnostics (PII-scrubbed; user-id only). Data is hosted in the European Union (EU-hosted project). Sentry processes data on our behalf under a DPA.
  • Resend – transactional email delivery. Data is hosted in the European Union (Ireland, eu-west-1). Resend processes data on our behalf under a DPA.
  • Purelymail – email hosting for customer support communications. Purelymail processes data on our behalf to receive and store support emails.
  • Firebase Cloud Messaging / Apple Push Notification service – push notification delivery; device tokens only.
  • Cloudflare – website hosting, content delivery, and security services for houseroster.com. Cloudflare may process IP addresses and technical request information to provide these services.

We may also disclose data if required by law, to protect users or our rights, or as part of a business transfer (e.g. merger) with appropriate safeguards. We do not sell your personal data.

8. No advertising, no profiling

HouseRoster shows no advertisements, uses no advertising identifiers (such as Apple's IDFA or Google's Advertising ID), and performs no cross-app or cross-site tracking. We do not profile you for advertising and do not make automated decisions that produce legal or similarly significant effects about you. Our analytics are pseudonymous and used only to understand and improve the app.

9. International transfers

Some of our service providers may process personal data outside the United Kingdom and EU/EEA, including in the United States and other jurisdictions where they or their subprocessors operate.

Where personal data is transferred internationally, we rely on appropriate safeguards as required by applicable data protection laws. These may include the UK International Data Transfer Agreement (IDTA), the UK Addendum to the EU Standard Contractual Clauses (SCCs), adequacy regulations, or other lawful transfer mechanisms.

The following providers may involve international transfers: RevenueCat, Apple App Store, Google Play, Firebase Cloud Messaging, Apple Push Notification Service, Cloudflare, and Purelymail. Further information about their transfer safeguards is available in their respective privacy documentation.

10. How long we keep data

  • Account and app data: while your account is active.
  • After deletion: permanently deleted after the 14-day grace period, then removed from routine backups within 30 days thereafter. We keep a minimal, non-personal record that a deletion occurred.
  • Support emails: 12 months.
  • Pseudonymous analytics / crash data: 14 months.
  • Data exports in storage: removed after their 7-day download window.

11. Your rights

Subject to UK GDPR, you can:

  • Access / download your data – Settings → Download my data (a ZIP export in JSON + CSV), or contact us.
  • Delete your account and data – Settings → Delete account (14-day grace period, then permanent).
  • Correct inaccurate data – edit it in the app or contact us.
  • Object to or restrict processing in certain circumstances (for example, processing based on our legitimate interests, including analytics).
  • Withdraw consent where we rely on it.
  • Data portability – your export is machine-readable (JSON + CSV).

If you ask us to correct, delete, or restrict your data, we will also let the relevant providers who received it know, where feasible. We respond within the legal timeframe (usually one month). You can complain to the UK Information Commissioner's Office (ICO), ico.org.uk – though we would appreciate the chance to help first at [email protected].

12. Children's privacy

HouseRoster is for people 16 and over and is not directed at children under 16. We do not knowingly collect data from under-16s; if you believe we have, please contact [email protected] and we will review it.

13. Security

We protect data with encrypted connections (TLS), encryption at rest, access controls, database row-level security, private storage with short-lived signed download links, and pseudonymisation in analytics / crash tools. We use secure authentication mechanisms including Apple Sign In, Google Sign-In, and email-based one-time verification codes or magic links. Authentication credentials are not accessible to HouseApps staff. Push tokens and secrets are never shown in the app or logs. No system is perfectly secure, but we work to protect your information.

14. Data breaches

If a data breach affecting your information occurs, we will investigate, contain and mitigate it, and notify the ICO and affected users where the law requires (generally within 72 hours of becoming aware of the breach for qualifying breaches).

15. Cookies and tracking

The HouseRoster mobile app uses no advertising cookies and no cross-app tracking, and houseroster.com uses no cookies.

16. Changes to this policy

We may update this policy at any time. We will post the new version with an updated date and, for material changes, notify you in the app or by email.

17. Contact

[email protected] · HouseApps Limited, 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom.