When you download a baby book app and start uploading photos of your newborn, you're trusting a company with some of the most personal images you'll ever take.
Most parents don't think twice about it. But maybe we should.
What happens to your photos
Most baby and parenting apps upload your photos to cloud servers — usually AWS, Google Cloud, or similar infrastructure. This is how they sync across devices, share with family, and process images for features like facial recognition or auto-tagging.
Once your photos are on someone else's server, a few things are true:
- •You're trusting their security. Data breaches happen to companies of every size. Baby apps are not immune. A breach of a baby app means photos of children are exposed.
- •You're trusting their business model. Companies get acquired, pivot, shut down. What happens to your data when the company behind your baby app is bought by an advertising company? Read the terms of service carefully — many reserve the right to change privacy policies.
- •You're trusting their policies. Some apps use your images to train machine learning models. Some share anonymized data with partners. "Anonymized" is a flexible term when the data includes photos of identifiable children.
What the law says (and doesn't)
In the US, COPPA (Children's Online Privacy Protection Act) restricts how companies collect data from children under 13. But COPPA applies to data collected from children — it doesn't clearly cover data that parents upload about children.
GDPR (in Europe) is stronger — it considers photos of children sensitive personal data and requires explicit consent for processing. But enforcement is inconsistent, and many apps are based in jurisdictions where GDPR doesn't apply.
The gap between what feels private and what's legally protected is wider than most parents realize.
What privacy-first actually means
A truly privacy-first baby app doesn't just encrypt your photos or promise not to look at them. It never has them in the first place.
Local-first storage means your photos, videos, voice notes, and text stay on your device. There's no cloud sync. There's no server-side copy. The app works entirely on your phone.
Explicit upload consent means photos only leave your device when you specifically choose to print a book — and you're shown exactly what will be uploaded before it happens.
Time-limited retention means any photos that are uploaded for printing are deleted within a defined window (we use 48 hours) after the book is rendered. Not "when we get around to it." Not "within a reasonable time." 48 hours, then gone.
No tracking means no Google Analytics, no Facebook pixels, no advertising SDKs. If a company doesn't track you, they can't sell what they don't have.
Why we built Smalldays this way
We built Smalldays for our own families. We have the same photos on our phones that you do — first baths, first steps, sleepy 3am nursing sessions. We'd never put those photos in a system we didn't trust.
So we built one we do.
- •Every moment stays on your device
- •No cloud sync, no server-side storage
- •Photos only upload when you print a book, with explicit consent
- •Uploaded photos are deleted within 48 hours
- •AES-256 encryption for any data in transit
- •No ads, no tracking, no data sales
- •COPPA, GDPR, and CCPA compliant by design
Our business model is simple: we make money when you love your book enough to hold it in your hands. That's it.
Your baby's photos deserve better than the cloud. Join the waitlist to try Smalldays when it launches.