Privacy Policy

Introduction

SproutAStory ("we," "our," or "us") is committed to protecting the privacy and safety of our users, especially children. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our bedtime story application and related services (the "Service").

Children's Privacy (COPPA Compliance)

Our Service is designed for children under 13 and their parents/guardians. We comply with the Children's Online Privacy Protection Act (COPPA) and take special care to protect children's privacy:

Information We Collect from Children

• Character Information: Child's first name, age, and character traits for story personalization
• Story Preferences: Themes, story length preferences, and custom story requests
• Usage Data: How the app is used to improve our service (anonymized)

Information We Do NOT Collect from Children

• Full names, addresses, or contact information
• Photos or images of children
• Location data
• Social security numbers or other identifying information
• Personal communications or messages

Parental Consent

• We require verifiable parental consent before collecting any personal information from children under 13
• Parents can review, modify, or delete their child's information at any time
• Parents can contact us to request account deletion

Information We Collect from Adults

Account Information

• Email address (for account creation and communication)
• Payment information (processed securely through Stripe)
• Account preferences and settings

Usage Information

• Device information (type, operating system)
• IP address (for security and analytics)
• Usage patterns and feature interactions
• Story generation history and preferences

How We Use Information

For Children

• Create personalized bedtime stories
• Remember character preferences
• Improve story quality and age-appropriateness
• Ensure content safety and moderation

For Adults

• Provide customer support
• Process payments and manage subscriptions
• Send important account and service updates
• Improve our service based on usage patterns

Information Sharing and Disclosure

We do NOT sell, trade, or rent personal information to third parties. We may share information only in these limited circumstances:

Service Providers

• Payment processing (Stripe) - for subscription management
• Cloud hosting (Vercel/AWS) - for app functionality
• Analytics (anonymized data only) - for service improvement

Legal Requirements

• To comply with legal obligations
• To protect our rights and safety
• To prevent fraud or abuse
• In case of business transfer (with continued privacy protection)

Data Security

We implement industry-standard security measures:

• Encryption of data in transit and at rest
• Secure payment processing through PCI-compliant providers
• Regular security audits and updates
• Limited access to personal information
• Automatic data deletion policies

Your Rights and Choices

Parents/Guardians Can:

• Review all information collected about their child
• Request modification or deletion of child's data
• Withdraw consent and close child's account
• Contact us with privacy concerns

Adult Users Can:

• Access and update account information
• Delete their account and associated data
• Opt out of non-essential communications
• Request data portability

Contact Information

For privacy-related questions, concerns, or requests:

State-Specific Rights

California Residents (CCPA)

California residents have additional rights including:

• Right to know what personal information is collected
• Right to delete personal information
• Right to opt-out of sale of personal information
• Right to non-discrimination for exercising privacy rights

European Residents (GDPR)

EU residents have rights including:

• Right of access to personal data
• Right to rectification of inaccurate data
• Right to erasure ("right to be forgotten")
• Right to data portability
• Right to object to processing