Security at KidsCheck
We take the protection of children's data seriously. KidsCheck is built on enterprise-grade infrastructure with multiple layers of security designed to keep your church and families safe.
256-bit Encryption
All data is encrypted at rest and in transit using AES-256 and TLS 1.3 — the same standard used by banks and governments.
COPPA Compliance
KidsCheck complies fully with the Children's Online Privacy Protection Act (COPPA). We never collect unnecessary data from minors and never sell or share your families' information.
Role-Based Access Control
Seven permission levels ensure every team member sees only what they need. Volunteers cannot access admin data. Parents see only their own children.
Church-Controlled Data
Your data is yours. Always. You can export your complete dataset at any time. We will never sell, share, or use your church's data for any purpose other than operating the service.
Infrastructure
KidsCheck runs on Supabase (PostgreSQL) and Vercel — both SOC 2 Type II certified platforms with 99.9%+ uptime SLAs, automated backups, and global redundancy.
Have a security concern?
Please report security vulnerabilities responsibly to security@kidscheck.app. We take all reports seriously and respond within 48 hours.