FamilyCare Hub - Legal Charter & Consent Model

Legal Notice

Last updated: 07 October 2025

This page explains our consent model in plain language.

It is guidance only and not legal advice.

Consent Overview

At FamilyCare Hub, consent means control over how personal information — especially health-related data — is used, shared, and stored.

Consent in our system is:

  • Informed – Clear explanations are provided before any data is collected.
  • Granular – You can enable or disable specific features: Medications, Wellness Tracking, Notes.
  • Opt-in only – We never pre-check boxes or assume permission.
  • Revocable at any time – You can change your mind at any time.
  • Auditable – Every action is logged with a timestamp.

Who Gives Consent

FamilyCare Hub supports both direct and proxy consent.

RoleCan Grant Consent?Can Revoke Consent?Access Affected
Care Circle Owner✅ Yes✅ YesAll modules
Primary Carer❌ No❌ NoNo effect
Family / Professionals❌ No❌ NoNo effect
  • When the Care Circle is created, the Owner may confirm consent on behalf of the care recipient if they are a lawful proxy.
  • Everyone else must opt in personally.

Revocation & Proxy Rights

Consent isn't permanent. Anyone can withdraw consent at any time from the Consent Settings page.

Two types of revocation exist:

  • Self-revocation – The Care Circle Owner (who is the Care Recipient) disables access on their own behalf.
  • Proxy revocation – The Care Circle Owner (or lawful proxy) disables access on another user's behalf.

When consent is revoked:

  • Access is immediately blocked.
  • Timestamp and optional reason are recorded.
  • Proxy-based revocations are logged as such.

Data Usage and Access Gating

Data is only accessible when: (1) the Care Circle has globally enabled a module, and (2) the user has permission for that module. This dual gating applies to Medications, Wellness, and Notes. If either flag is false, both UI and backend access are denied.

Audit and Legal Notes

  • All consent actions are timestamped and stored in Firestore.
  • We operate under EU/UK data protection law (GDPR/UK GDPR) and relevant ePrivacy/PECR rules.
  • This page summarises our approach and does not replace the Privacy Policy or Terms of Service.