Store Policy

Last updated: 25/02/2026

This Privacy Policy explains how StudyHub ("we", "us", or "our") collects, uses, and protects information when you use the StudyHub mobile application (the "App") on Android and iOS devices.

1) Who the App is for

The App is intended for parents and legal guardians of children attending a study center ("StudyHub"). The App is not directed to children.

User accounts are created and managed by StudyHub. Parents/guardians receive their login credentials from StudyHub.

2) Data Controller & Contact

Data Controller: StudyHub
Address: Kerasountos 10, Aigaleo 122 42, Greece
Email: info@studyhub.gr
Website: https://www.studyhub.gr

3) Information we collect

3.1 Account and authentication data

• Username and/or email address used to sign in.
• Password: used only to authenticate during sign-in. The App does not store your password in plain text.

3.2 Child-related information shown in the App

The App may display information related to a child’s participation in StudyHub, as provided by StudyHub, such as:

• Child profile details (as entered by StudyHub)
• Attendance records
• Schedules/programs
• Daily progress reports and related notes

3.3 Offline storage (on-device cache)

To support offline mode and improve performance, the App stores data locally on your device. This cached data may include the information described above (including child-related information, reports, attendance, and schedules), as well as your preferences.

You are responsible for maintaining the security of your device (e.g., device passcode/biometrics). If you use a shared device, other device users may be able to access locally cached data.

3.4 Push notification tokens (FCM / APNs)

The App uses push notifications to inform you about updates such as new progress reports or other Study Center notifications.

• On Android, notifications are delivered via Firebase Cloud Messaging (FCM).
• On iOS, notifications are delivered via Apple Push Notification service (APNs).
• A device-specific push token may be stored on our backend to deliver notifications to your device.

Push tokens are used only for delivering service notifications and are not used for advertising or cross-app tracking.

3.5 Crash reporting (Firebase Crashlytics)

To improve stability and fix bugs, the App uses Firebase Crashlytics (Google LLC) for crash reporting. Crash reports may include diagnostic information such as:

• Device information (e.g., model, OS version)
• App version
• Crash stack traces and performance/diagnostic metadata
• Approximate time of the crash

We do not intend to send the content of your child’s records (e.g., reports/attendance) to Crashlytics. However, logs and diagnostics can sometimes include incidental technical data depending on the nature of the crash.

4) How we use information

We use information strictly to:

• Authenticate users and provide access to the App
• Provide App functionality, including offline access
• Deliver service push notifications
• Monitor crashes and improve reliability and performance
• Provide user support and troubleshoot issues

5) Authentication (JWT) and session handling

User authentication is performed via a backend API over encrypted HTTPS connections. After a successful sign-in, the server issues a JSON Web Token (JWT). The JWT contains only an internal user identifier (user_id) and is used to authenticate subsequent API requests.

When you log out, the App deletes the JWT from the device. We do not store JWTs in our database for lookup. Access is therefore limited by the token’s validity period and normal server-side authorization checks.

6) Legal bases for processing (GDPR)

We process personal data under one or more of the following legal bases, as applicable:

• Performance of a contract (to provide the App’s services to parents/guardians in connection with StudyHub)
• Legitimate interests (to secure and improve the App, prevent abuse, and maintain reliability)
• Consent (where required, e.g., for enabling push notifications on your device)

StudyHub is responsible for ensuring that the necessary permissions/consents and declarations related to children’s data are collected from parents/guardians as required by law.

7) Sharing of information (third-party processors)

We share limited data with third-party service providers that help us operate the App:

• Google Firebase (FCM for push notifications on Android; Crashlytics for crash reporting)
• Apple (APNs for push notifications on iOS)

These providers process data on our behalf as service providers, under their own privacy terms and security practices.

Relevant policies:

• Google Privacy Policy: https://policies.google.com/privacy
• Firebase (Google) information: https://firebase.google.com/support/privacy
• Apple Privacy: https://www.apple.com/legal/privacy/

8) Data retention

• Account-related data is retained for as long as StudyHub maintains your account or as needed to provide the service.
• Push tokens are retained as long as needed to deliver notifications, and may be refreshed or replaced when your device token changes.
• Crash reports are retained according to Firebase Crashlytics retention practices and our operational needs.
• On-device cached data remains on your device until it is cleared by the App (e.g., logout, cache reset if available) or by uninstalling the App.

9) Your rights (GDPR)

If you are in the European Economic Area (EEA), you may have rights including access, rectification, deletion, restriction, objection, and data portability, subject to applicable law.

To exercise your rights, contact us at info@studyhub.gr. We may need to verify your identity before fulfilling requests.

Because accounts are managed by StudyHub, certain requests (e.g., updating child-related records) may require coordination with StudyHub.

10) Security

We implement reasonable administrative, technical, and organizational safeguards designed to protect information, including encrypted transport (HTTPS). No method of transmission or storage is completely secure.

11) International transfers

Our service providers (e.g., Google Firebase, Apple) may process data on infrastructure located outside your country. Where applicable, transfers are handled under appropriate safeguards.

12) Changes to this Policy

We may update this Privacy Policy from time to time. We will post the updated version on this page and update the "Last updated" date. Continued use of the App after changes become effective indicates acceptance of the updated policy.

13) Support

For support questions, contact: info@studyhub.gr