Privacy Policy

1. Scope

Peblio provides communication infrastructure for childcare providers, staff, parents, and trusted family members. We process personal data to operate secure messaging, announcements, events, media sharing, and billing workflows.

We process data under UK GDPR and applicable safeguarding obligations. Providers remain responsible for lawful use and consent collection within their own setting.

2. Data We Handle

• Account profile data for staff, managers, parents, and family delegates.
• Child profile, safeguarding, and attendance context entered by providers.
• Messages, announcements, event responses, and delivery/read metadata.
• Media files and consent-linked sharing decisions.
• Subscription and billing records needed for service operation.

3. Why We Process

• Deliver service functionality and user authentication.
• Maintain safeguarding visibility through auditable communication records.
• Support legal and regulatory obligations around childcare operations.
• Prevent fraud, abuse, and unauthorized access.
• Operate subscriptions, invoicing, and support workflows.

4. Retention

Retention periods are driven by safeguarding and legal requirements set by the provider’s policy, local authority guidance, and applicable regulation. Where no statutory period applies, data is retained only as long as operationally necessary.

5. Your Rights

• Access and request a copy of personal data.
• Correct inaccurate or incomplete records.
• Request deletion where legally applicable.
• Restrict or object to specific processing.
• Request data portability for core account records.

To exercise your rights, contact privacy@peblio.co.uk. We respond in line with statutory timelines.