Privacy Notice
Last updated: June 2026.
Who we are, and who's in control
What we collect
- Parent account: name, email, and payment details (payment is handled by Stripe — card numbers go directly to Stripe and we never receive or store them).
- Child profile: a first name or nickname, an avatar, and an age band — the minimum needed to personalize and age-appropriately level stories.
- Your child's hero and its memory: the special thing about kidtold is that your child's made-up hero remembers what happened in earlier stories. We call that memory the hero's “canon.” It can include traits your child picks, the hero's likes, hopes, fears, and friends, skills the hero “learns,” and the history of stories created. Much of this comes from your child's choices and the stories themselves, so it can reflect things about your child — and we protect it as your child's personal information.
- Stories & activity: the stories created, reading progress, and basic, security-related usage needed to run the service.
We do not ask for a child's full name, home or precise location, phone number, or contacts, and we do not capture a child's voice or photos.
How we use it
How you give consent — and how to decline
How long we keep it (retention)
Children's privacy (COPPA)
The vendors we use
A small set of vendors help us run kidtold. Each processes data only on our behalf, under contract, and none uses your child's data for its own purposes:
- Anthropic (Claude) — generates, adds memory to, and safety-checks stories. Before any text is sent, we strip out personal details like names, so it works on de-identified text. We require our AI provider to operate under no-training, no-retention terms — it may use this content only to create your child's stories for us, must not keep it afterward, and must not use it to train or improve its AI. We are finalizing the formal agreement that commits the provider to this before any children's data is processed.
- Neon and Qdrant — store your child's profile, stories, and the hero's long-term memory in our database and search index.
- Render and Vercel — host the app and website.
- Stripe — processes payment and the parental-consent checkout; card details go directly to Stripe and we never receive or store them.
- Resend — sends you safety-alert emails (your email plus a de-identified snippet of a blocked attempt).
Because these vendors act on our behalf under contract, this is not “selling” or “sharing” your child's information — and we never share it for advertising.
Safety, and what happens if a child seems upset
Your rights and choices (parents)
From the app's grown-up area, or by emailing us, a parent can at any time:
- Review the information associated with a child profile and its heroes.
- Delete a single hero (removing that hero's stories and memory), an entire child profile, or the whole account.
- Revoke consent — which means we delete the child's data.
Deleting the child's profile or your account also removes our safety log of any blocked attempts. In every case we delete the data — including the hero's long-term memory held in our database and search index — not just hide it from view.