GDPR Compliance

Last Updated: June 08, 2025

1. Introduction

EyeOnKid ("we," "us," or "our") is committed to protecting the privacy and personal data of our users, particularly those in the European Union (EU) and European Economic Area (EEA). This GDPR Compliance statement explains how we comply with the General Data Protection Regulation (GDPR) when providing our monitoring services for Android, iOS, Windows, and macOS devices. The GDPR sets guidelines for the collection and processing of personal data of individuals within the EU/EEA, and we ensure our practices align with these regulations.

2. Scope of GDPR

This GDPR Compliance statement applies to all EU/EEA residents whose personal data we process as part of our Service. EyeOnKid provides monitoring solutions that allow users (e.g., parents or employers) to track activities such as location, web browsing, app usage, SMS, contacts, keystrokes, and more. If you are an EU/EEA resident, this statement outlines your rights and our obligations under GDPR.

3. Lawful Basis for Processing

Under GDPR, we process personal data based on the following lawful bases:

  • Consent: When you sign up for EyeOnKid and install our app, you provide explicit consent to process personal data for monitoring purposes (e.g., location, SMS, contacts). For monitoring of children under 18, consent is provided by the parent or legal guardian.
  • Contractual Necessity: Processing is necessary to fulfill our contractual obligations to you, such as providing access to the monitoring dashboard and generating reports.
  • Legitimate Interests: We process data for legitimate interests, such as improving our Service, ensuring security, and preventing fraud, provided these interests do not override your rights and freedoms.
  • Legal Obligation: We may process data to comply with legal requirements, such as responding to law enforcement requests.

4. Data Subject Rights

As an EU/EEA resident, you have the following rights under GDPR:

  • Right to Access: You can request a copy of the personal data we hold about you or the individual you are monitoring (e.g., your child).
  • Right to Rectification: You can request corrections to inaccurate or incomplete data.
  • Right to Erasure: You can request the deletion of your personal data (e.g., by terminating your account).
  • Right to Restrict Processing: You can request that we limit the processing of your data under certain circumstances.
  • Right to Data Portability: You can request a copy of your data in a structured, commonly used, and machine-readable format.
  • Right to Object: You can object to processing based on legitimate interests, including for direct marketing purposes.
  • Right to Withdraw Consent: If processing is based on consent, you can withdraw your consent at any time (e.g., by uninstalling the app).

To exercise these rights, please contact us at gdpr@eyeonkid.com. We will respond to your request within one month, as required by GDPR.

5. Data Protection Measures

We implement the following measures to protect personal data in compliance with GDPR:

  • Data Encryption: All data transmitted between your device and our servers (e.g., monitored data, login credentials) is encrypted using HTTPS. Data at rest is also encrypted.
  • Access Controls: Only authorized personnel have access to personal data, and access is restricted based on the principle of least privilege.
  • Regular Audits: We conduct regular security audits to identify and address vulnerabilities in our systems.
  • Data Minimization: We only collect data necessary for the functioning of the Service, as outlined in our Privacy Policy.
  • Data Breach Notification: In the event of a data breach, we will notify affected users and the relevant supervisory authority within 72 hours, as required by GDPR.

6. Data Transfers Outside the EU/EEA

EyeOnKid operates globally, and your data may be transferred to and stored in servers located outside the EU/EEA, including in the United States or India. To ensure compliance with GDPR, we:

  • Use Standard Contractual Clauses (SCCs) approved by the European Commission to safeguard data transfers.
  • Work with third-party service providers (e.g., cloud storage providers) that comply with GDPR requirements.
  • Conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities involving international transfers.

7. Data Protection Officer

We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance efforts. You can contact our DPO at:

8. Complaints

If you believe that our processing of your personal data violates GDPR, you have the right to lodge a complaint with a supervisory authority in the EU/EEA member state where you reside, work, or where the alleged infringement occurred. However, we encourage you to contact us first at gdpr@eyeonkid.com to resolve any concerns.

9. Contact Us

For GDPR-related inquiries or to exercise your data subject rights, please contact us at:

Contact Support