Privacy Policy

Last updated: 19 May 2026

This Privacy Policy explains how Teraniq LLC, trading as AuPairsy, processes personal data.

1. Controller

Controller: Teraniq LLC
Trading name: AuPairsy
Registry code: 17394227
Registered office: Harju maakond, Tallinn, Kesklinna linnaosa, Ahtri tn 12, 15551
Privacy contact: privacy@aupairsy.com

If we appoint a data protection officer or EU/UK/Swiss representative, we will publish their contact details here.

2. Who this policy covers

This policy covers:

visitors to www.aupairsy.com;
au pair candidates;
host families;
professional users and agencies;
persons contacting support;
persons submitting reports or complaints;
persons mentioned in reports, messages, or profiles.

AuPairsy is not for users under 18. If we learn that a minor created an account, we will delete or restrict the account.

3. Personal data we collect

We may collect the following categories.

Account data

Name, email address, password hash, account type, language, country, registration date, login data, and account settings.

Profile data

Photos, age or age range, nationality, residence country, desired destination, languages, start dates, availability, experience, education, preferences, family composition, household description, childcare needs, and other profile fields.

Communication data

Messages, replies, attachments, support requests, feedback, complaints, reports, and moderation communications.

Verification data

If verification is used: email/phone verification status, identity-check results, document metadata, reference results, selfie/liveness checks, risk flags, and fraud-prevention indicators.

Do not upload passport scans, identity documents, or criminal-record documents unless AuPairsy specifically requests them through a secure verification flow.

Payment and transaction data

Plan, price, currency, tax information, invoice data, payment status, payment-provider token/reference, billing address, and transaction history. Full card details are processed by Stripe, not by AuPairsy.

Technical data

IP address, device identifiers, browser, operating system, session logs, security logs, cookie identifiers, referral URLs, approximate location, error logs, and analytics events.

Safety and moderation data

Reports, evidence, profile/message IDs, alleged violations, risk assessments, moderation notes, enforcement decisions, appeal outcomes, and communications with authorities where legally required or permitted.

Marketing data

Newsletter consent, email preferences, campaign interactions, and unsubscribe status.

4. Data about children

Host Families must minimise information about children.

Do not upload children’s photos, full names, school names, exact routines, home address, medical details, or other unnecessary child-identifying information.

Where a Host Family provides information about children, the Host Family confirms that it has parental authority and a lawful basis to provide that information.

5. Special categories of data

AuPairsy does not require sensitive data unless specifically needed for a defined feature or legal/safety reason.

If you voluntarily disclose sensitive information, such as health information, religion, dietary needs, biometric data, criminal-background information, or similar data, we may process it only where a valid legal basis exists, such as explicit consent, legal claims, vital interests, or another lawful ground under applicable law.

Do not disclose sensitive data unless necessary.

6. Purposes and legal bases

Purpose	Data used	Legal basis
Create and manage accounts	Account data, technical data	Contract
Provide matching, search, profiles, and messaging	Account, profile, communication data	Contract
Process payments and invoices	Payment, transaction, account data	Contract, legal obligation
Customer support	Account, communication data	Contract, legitimate interests
Safety, fraud prevention, and abuse prevention	Account, profile, communication, technical, verification, safety data	Legitimate interests, legal obligation, vital interests where necessary
Content moderation and DSA notice handling	User Content, reports, moderation data	Legal obligation, legitimate interests
Identity or trust verification	Verification data	Consent where required, legitimate interests, contract where necessary
Service security	Technical data, logs	Legitimate interests, legal obligation
Analytics and service improvement	Technical and usage data	Consent where required, legitimate interests where permitted
Marketing emails	Email, marketing preferences	Consent or soft opt-in where permitted
Legal compliance and claims	Relevant records	Legal obligation, legitimate interests, legal claims
International tax/accounting compliance	Transaction data, invoices	Legal obligation

7. Matching, ranking, and automated systems

AuPairsy may use automated systems to sort, rank, filter, recommend, flag, or prioritise profiles or content.

These systems do not make decisions that produce legal effects or similarly significant effects without human review where required by law.

Main ranking parameters are described in the Ranking and Recommendation Policy.

8. Who can see your data

Depending on your settings and account type, other Users may see your public profile information and may receive your messages.

Do not put private or high-risk information into public profile fields.

We may share data with processors and service providers that help operate AuPairsy, including:

hosting and infrastructure providers: Lovable;
database, storage, backup, and monitoring providers;
email and notification providers;
payment providers: Stripe;
analytics providers: Google Analytics and Google Tag Manager, loaded only after consent where required;
customer support tools;
security, anti-fraud, and abuse-prevention providers;
identity verification providers: None;
professional advisors;
translation and communication tools.

Processors may process data only under contract and only for the instructed purpose.

We may disclose data if necessary to:

comply with law;
respond to lawful authority requests;
protect a person from imminent harm;
investigate fraud, exploitation, trafficking, abuse, or serious policy violations;
enforce these Terms;
establish, exercise, or defend legal claims;
complete a merger, acquisition, restructuring, or asset transfer.

11. International transfers

AuPairsy is based in Estonia. Users and service providers may be located worldwide.

Where personal data is transferred outside the EEA, UK, or Switzerland, we use safeguards where required, such as adequacy decisions, Standard Contractual Clauses, the UK International Data Transfer Addendum, Swiss transfer safeguards, or another lawful mechanism.

12. Retention

We keep personal data only as long as necessary.

Data type	Typical retention
Account and profile data	while the account is active, then up to 24 months after closure unless earlier deletion is required or longer retention is justified
Messages	while the account is active, then up to 24 months after closure
Support tickets	up to 36 months after resolution
Safety, fraud, and moderation records	up to 5 years, or longer if needed for legal claims, serious safety risks, or repeat-abuse prevention
Payment, invoice, and accounting records	up to 7 years or as required by applicable tax/accounting law
Security logs	usually up to 12 months
Analytics data	according to the cookie and analytics settings, usually up to 26 months unless configured differently
Backups	usually up to 90 days before overwrite
Legal claims and authority requests	as long as necessary for the proceeding or legal obligation

Deletion may be delayed if retention is required for legal, safety, fraud-prevention, dispute, or accounting reasons.

13. Your rights

Depending on your location and applicable law, you may have rights to:

access your data;
correct your data;
delete your data;
restrict processing;
object to processing;
receive a portable copy;
withdraw consent;
object to direct marketing;
complain to a supervisory authority.

Users in the EEA may contact their local data-protection authority or the Estonian Data Protection Inspectorate.

UK, Swiss, California, Brazilian, and other users may have additional local rights where applicable.

14. California privacy notice

AuPairsy does not sell personal data for money.

If AuPairsy uses advertising or tracking that qualifies as “sharing” or “sale” under California law, we will provide a “Do Not Sell or Share My Personal Information” mechanism and honour legally required opt-out signals such as Global Privacy Control.

California users may have rights to know, access, delete, correct, opt out of sale/share, limit use of sensitive personal information, and non-discrimination, where the law applies to AuPairsy.

15. Marketing

You can unsubscribe from marketing emails at any time using the link in the email or by contacting privacy@aupairsy.com.

Transactional, legal, security, and account emails may still be sent.

16. Cookies

Cookies and similar technologies are described in the Cookie Policy.

Non-essential cookies are not set before consent where consent is required.

17. Security

We use technical and organisational measures designed to protect personal data, including access controls, encryption in transit, backups, monitoring, logging, and restricted administrative access.

No online service can guarantee absolute security. You are responsible for keeping your password safe.

18. Changes

We may update this Privacy Policy. Material changes will be notified by website notice, email, or in-product notice where appropriate.

19. Contact

Privacy requests: privacy@aupairsy.com
Legal contact: legal@aupairsy.com