Tiny Promptr

Privacy Policy

Effective Date: [Insert Launch Date]

Tiny Promptr (“Tiny Promptr,” “we,” “us,” or “our”) is committed to protecting the privacy of children and families. This Privacy Policy explains how we collect, use, store, and protect personal information when you use our website and services (the “Service”).

This Policy is designed to comply with COPPA, GDPR, and PIPEDA.

1. Who This Policy Applies To

  • Parents and Guardians: Adults who create and manage Tiny Promptr accounts
  • Children: Users under 18 who access the Service through a parent-managed account

Parents or legal guardians are the primary account holders and control all child profiles.

2. Information We Collect

We collect only the information necessary to operate an educational creative platform.

A. Parent / Guardian Information

  • Name and email address
  • Account login credentials (via secure authentication providers)
  • Subscription and billing status (payment details processed by third-party providers)

B. Child Information

  • Profile name or nickname
  • Age or age range (optional)
  • Learning progress, XP, and mission completion
  • Creative content such as prompts, AI outputs, games, apps, and assets
  • Usage and safety logs related to moderation

We do not require children to provide real names, addresses, or contact information.

3. How We Use Information

We use information solely to:

  • Provide and operate the Service
  • Personalize learning experiences
  • Track progress and achievements
  • Maintain safety, security, and moderation
  • Communicate with parents about accounts or updates

We do not use child data for advertising or marketing purposes.

4. COPPA Compliance (United States)

Tiny Promptr complies with COPPA.

  • Children under 13 may only use the Service with verifiable parental consent
  • Consent is obtained when a parent creates an account and approves a child profile
  • Parents may review, delete, or revoke consent at any time
  • If consent is revoked, the child’s data will be deleted or anonymized

We do not knowingly collect personal information from children without parental consent.

5. GDPR Lawful Basis & EU Rights (European Union)

Lawful Basis for Processing

For users in the European Economic Area (EEA), we process personal data based on:

  • Consent (provided by parents or guardians)
  • Contractual necessity (to provide the Service)

Your GDPR Rights

Parents and guardians have the right to:

  • Access personal data
  • Correct inaccurate data
  • Request deletion (right to be forgotten)
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent at any time

You may exercise these rights by contacting us using the details below.

6. PIPEDA Compliance (Canada)

We follow PIPEDA principles by:

  • Obtaining meaningful parental consent
  • Limiting collection to reasonable educational purposes
  • Allowing access, correction, and deletion of information

7. AI Data Use & Safety

Tiny Promptr uses artificial intelligence to help users create educational content.

  • Prompts and outputs are processed to provide the Service
  • Child data is not used to train public AI models
  • Inputs and outputs are filtered for safety and appropriateness
  • We apply automated and human moderation where necessary

AI outputs are provided for educational purposes only and may not always be accurate.

8. Data Retention

We retain personal data only as long as:

  • An account remains active, or
  • Necessary to provide the Service, or
  • Required by law

Parents may request deletion of their account or child profiles at any time.

9. Data Sharing & Third Parties

We do not sell personal data.

We may share limited data with trusted service providers solely to operate the Service, including:

  • Authentication services
  • Payment processors
  • Hosting and infrastructure providers

All providers are required to protect data and use it only for authorized purposes.

10. International Data Transfers

Tiny Promptr operates from the United States. If you access the Service from outside the U.S., your information may be transferred to and processed in the United States or other jurisdictions.

Where required, we rely on appropriate safeguards such as standard contractual clauses.

11. Security Measures

We use reasonable administrative, technical, and organizational measures to protect personal information.

No system is 100% secure, but we continuously improve our safeguards.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated to parents through the Service or by email.

13. Contact & Data Requests

For privacy questions or to exercise your rights, contact:

Tiny Promptr

📧 privacy@tinypromptr.com

EU residents may also contact their local data protection authority.