Privacy summary.
Accounts
We use your email address to send secure sign-in links and connect your report purchase to your account.
Analytics and diagnostics
We use first-party analytics to understand unique visitor counts, popular pages, school search demand, planner/report conversion, traffic sources, device types, and page performance. The site stores pseudonymous visitor and session identifiers in browser storage and hashes them on the server. For generated reports, we may store salted hashes of visitor/session identifiers and IP addresses to improve abuse checks and attribution. We do not store raw IP addresses, magic-link tokens, Stripe session identifiers, child names, or exact report IDs in analytics views.
Payments and emails
Stripe processes payments. Resend sends sign-in and report access emails. We store only the Stripe identifiers needed to verify a paid report.
Child planning details
Planner inputs such as child names, birth month and year, and schools are used to calculate reports. We do not ask for a child's full date of birth. Unpaid draft reports expire after 30 days.
Fair-use audit metadata
To protect fair access for household family use, we may store limited account-linked generation records for up to 12 months. These records include generation timestamps, child counts, school pathway identifiers, birth month/year summaries, and pseudonymous child identity fingerprints. Raw child names are not stored for this audit, and the audit dashboard is only available to configured SchoolCost admins.
What we do not do
We do not sell child data or sell school rankings. Projections remain estimates and are not personal financial advice.