Privacy Policy

Last updated: January 30, 2026

Introduction

Kiddos Tales ("we," "us," "our," or "Company") is committed to protecting your privacy and the privacy of your children. This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with our website, mobile application, and related services (collectively, the "Services").

We comply with the Children's Online Privacy Protection Act (COPPA) and the California Consumer Privacy Act (CCPA), as well as other applicable privacy laws. If you have questions about our privacy practices, please contact us at [email protected].

COPPA Compliance
Children's Online Privacy Protection Act

Parental Consent

Kiddos Tales is directed to children ages 5-8 and their parents. We do not knowingly collect personal information from children under 13 without verifiable parental consent. Before collecting any personal information from a child, we obtain verifiable parental consent from a parent or legal guardian.

Information We Collect

With parental consent, we collect:

  • Child's name, age, gender, and reading level
  • Information about family structure and living environment
  • Parental contact information (name, email, age range)
  • Interaction data from story reading and Co-Creation Loom sessions
  • Developmental assessment responses (if applicable)

How We Use Information

We use collected information to:

  • Generate personalized, age-appropriate stories
  • Provide developmental insights through the Clinical Mirror
  • Improve our Services and user experience
  • Communicate with parents about their account
  • Comply with legal obligations

Parental Rights Under COPPA

Parents have the right to:

  • Request access to their child's personal information
  • Request deletion of their child's personal information
  • Refuse further collection or use of their child's information
  • Revoke previously given consent

Data Retention

We retain children's personal information only for as long as necessary to provide the Services and comply with legal obligations. Parents can request deletion of their child's data at any time by contacting [email protected].

GDPR Compliance
General Data Protection Regulation (EU)

Your GDPR Rights

If you are located in the European Economic Area (EEA), you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

Legal Basis for Processing

We process personal data based on:

  • Consent: When you provide explicit consent for specific purposes
  • Contract: When necessary to provide our Services
  • Legal Obligation: When required by law
  • Legitimate Interests: For service improvement and security

Children's Data (GDPR-K)

For children under 16 in the EU, we require verifiable parental consent before collecting personal data. Parents can review, modify, or delete their child's data at any time.

International Data Transfers

Your data may be transferred to and processed in the United States. We use Standard Contractual Clauses and other appropriate safeguards to ensure your data is protected during international transfers.

Data Protection Officer

For GDPR-related inquiries, contact our Data Protection Officer at [email protected]. You also have the right to lodge a complaint with your local supervisory authority.

CCPA Compliance
California Consumer Privacy Act

Your CCPA Rights

If you are a California resident, you have the following rights:

  • Right to Know: You can request what personal information we collect, use, and share
  • Right to Delete: You can request deletion of personal information (with certain exceptions)
  • Right to Opt-Out: You can opt-out of the sale or sharing of personal information
  • Right to Correct: You can request correction of inaccurate personal information
  • Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA rights

Categories of Personal Information

We collect the following categories of personal information:

  • Identifiers (name, email, account ID)
  • Commercial information (subscription tier, purchase history)
  • Biometric information (age, gender)
  • Internet activity (pages visited, time spent, interactions)
  • Geolocation data (inferred from IP address)
  • Inferences (developmental profile, learning preferences)

Do Not Sell My Personal Information

Kiddos Tales does not sell personal information in the traditional sense. However, we may share information with service providers and partners to improve our Services. You have the right to opt-out of this sharing.

How to Exercise Your Rights

To exercise your CCPA rights, please submit a request to [email protected] with the following information:

  • Your name and email address
  • The specific right you wish to exercise
  • Any relevant account or profile information

We will verify your identity and respond within 45 days. You may also designate an authorized agent to submit requests on your behalf.

Data Security

We implement industry-standard security measures to protect personal information, including:

  • Encryption of sensitive data in transit and at rest
  • Secure authentication and access controls
  • Regular security audits and vulnerability assessments
  • Limited access to personal information on a need-to-know basis
  • Incident response procedures

However, no security system is impenetrable. We cannot guarantee absolute security of your information. If you believe your data has been compromised, please contact us immediately.

Third-Party Sharing

We do not sell personal information to third parties. We may share information with:

  • Service Providers: Companies that help us operate our Services (hosting, analytics, payment processing)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In case of merger, acquisition, or sale of assets

All service providers are contractually obligated to maintain confidentiality and use information only for the purposes we specify.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: [email protected]

Mailing Address:

Kiddos Tales, Inc.
Privacy Department
San Francisco, CA 94105
United States

We will respond to all inquiries within 30 days. For COPPA-specific concerns, you may also contact the Federal Trade Commission at www.ftc.gov/complaint.

Updates to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our Services after such modifications constitutes your acceptance of the updated Privacy Policy.