Effective date: 25 August 2025

Controller: Mads Thines Coello, Denmark, madsthines@gmail.com, +4522139641

Contact: madsthines@gmail.com

Summary

We collect only what’s needed to create and save your stories (for example: listener first name, age, interests). You control it: edit or delete profiles and stories anytime. We don’t sell data or use it for third-party advertising. We use limited analytics/diagnostics to improve the app. If you opt to use cloud sync/backup or AI features, relevant data is processed by those service providers solely to run the feature.

Information We Process

• Account data (optional): Email and password or single-sign-on ID (if you create an account).
• Listener profiles (parent-provided): First name (or nickname), age range, interests, and preferences you enter.
• Story content & prompts: Text you type to generate or save stories.
• App usage & diagnostics: Event logs, crash reports, and performance metrics (non-marketing).
• Support communications: Messages you send us (e.g., support email).

Special notes: Your prompts are sent to our AI processing provider.

Why We Use the Data & Legal Bases

• Provide the app and personalize stories: Performance of a contract; parental consent where required.
• Improve reliability and quality: Legitimate interests (app safety and quality).
• Support & communication: Performance of a contract / legitimate interests.
• Compliance & security: Legal obligation / legitimate interests.

Children’s Privacy

YourStory is designed for families and may be used by children under parental supervision.

• COPPA (US): We do not knowingly collect personal information from children under 13 without verifiable parental consent. If we learn a child provided data without consent, we will delete it.
• EEA/UK: When consent is the basis for processing a child’s data, consent must come from a parent/guardian if the child is under 16, or the lower age set by their country (13–16).

Parents/guardians can review, edit, or delete child profiles at any time in the app or by contacting us.

Sharing and Processors

We do not sell personal data. We share data only with service providers that process it on our behalf and under contract, for purposes such as cloud hosting, AI text/illustration generation, and analytics/diagnostics.

International Transfers

If data is transferred outside your country, we use approved safeguards, such as the EU Standard Contractual Clauses (and UK Addendum where applicable).

Data Retention

• Listener profiles & stories: kept until you delete them or after 12 months of inactivity.
• Account data: kept while the account is active; then retained only as needed for legal/accounting purposes.
• Diagnostics/analytics: kept for 31 days in aggregate form.

Your Rights

Depending on your location, you may have the right to access, rectify, erase, port, and restrict or object to processing. You can also withdraw consent at any time. You may lodge a complaint with your local data protection authority.

Security

We use industry-standard measures to protect data, including encryption in transit (HTTPS) and access controls. No method is 100% secure, but we work to keep information safe.

Your Choices & Controls

• Use the app without creating an account (where supported).
• Edit or delete listener profiles and stories in the app.
• Opt out of analytics/diagnostics where settings are provided, or by contacting us.
• Request account deletion or data export via in-app settings or by email.

Third-Party Links

If the app links to external content or sites, their privacy practices apply.

Changes to this Policy

We will update this page when our practices change and update the effective date above.

Contact

Questions or requests: madsthines@gmail.com