KiddoTalesKiddoTales

Privacy Policy

Last updated: March 2025

1. Introduction

KiddoTales ("we", "our", or "us") is committed to protecting children's privacy. This Privacy Policy explains how we collect, use, and protect personal information when you use our service to create personalized storybooks for your child. We comply with the Children's Online Privacy Protection Act (COPPA) and the FTC's COPPA Rule.

2. Information We Collect

We collect the following information to create personalized storybooks:

  • Child's name – used in the story
  • Child's age – for age-appropriate content
  • Child's interests – to personalize the story
  • Optional appearance details – hair color, skin tone, etc., for illustrations
  • Life lesson – the theme you choose for the story
  • Generated content – story text, AI-generated illustrations, and optional AI voice narration

We also collect parent/guardian information when you sign in with Google: email address and account identifier.

3. How We Use Information

We use the information we collect solely to:

  • Create personalized storybooks for your child
  • Store your books so you can view and download them
  • Manage your account and subscription

We do not use this information for advertising, marketing, or profiling.

4. Third Parties We Share Information With

To provide our service, we share child information with:

  • OpenAI – to generate story text and AI voice narration (text-to-speech). Child name, age, interests, and appearance are sent to OpenAI. See OpenAI's Privacy Policy.
  • Replicate – to generate story illustrations. See Replicate's Terms.
  • Supabase – to store your books and account data securely.
  • Google – for sign-in authentication.
  • Stripe – for subscription payments (if applicable).

These providers process data only for the purposes we authorize and do not use it for their own advertising or profiling.

5. Data Retention

You may request deletion of your child's data at any time (see Parent Rights below). That is our primary retention mechanism. In addition, we automatically remove data according to the following rules:

5.1 Delete on Request

You can delete individual books or all your books at any time from Manage books. We process deletion requests promptly and remove data from our systems and storage.

5.2 Free Tier Retention

If you are on the free tier, we may automatically delete your books when both of the following are true:

  • You have not logged in for more than 30 consecutive days ("inactive" means no login to your account)
  • The books are older than 3 months from their creation date

We also remove individual books on the free tier if a book has not been opened for 90 consecutive days. We show warnings in Manage books and in your Notifications when a book has not been opened in over 30 days, so you can open it to keep it.

5.3 Paid Tier Retention

If you have an active paid subscription (Spark, Magic, or Legend), we retain your books for as long as your subscription is active. The per-book 90-day inactivity rule does not apply to paid tiers.

5.4 Downgrade from Paid to Free

When your paid subscription ends and you return to the free tier, the free tier retention rules apply from that date. Books may be removed according to the free tier rules above.

5.5 Backup and Legal Hold

After you request deletion or after automatic removal, we may retain data for up to 12 months in backup systems for legal and operational purposes, after which it is permanently removed.

6. Parent Rights

As a parent or guardian, you have the right to:

  • Access – View the personal information we have collected about your child
  • Correct – Request correction of inaccurate information (you can delete a book and create a new one with corrected details)
  • Delete – Request deletion of all your child's data and books at any time
  • Revoke consent – Withdraw consent and stop future collection

To exercise these rights, go to Account settings and use the "Manage child data" section. You may also contact us at the email below.

7. Security

We use industry-standard security measures including encryption in transit (HTTPS) and at rest. Access to child data is restricted to authorized personnel and systems necessary to provide the service.

8. Contact Us

For privacy questions or to exercise your rights, contact us at: privacy@712int.com