Privacy Policy

1. Introduction

MakeMyStory (“we,” “us,” or “our”) respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our personalized children's book creation service.

By using our Service, you consent to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access or use the Service.

This Privacy Policy complies with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Children's Online Privacy Protection Act (COPPA), and other applicable privacy laws.

Privacy Compliance Statement

GDPR Compliant

Full compliance with European Union General Data Protection Regulation

Lawful basis for data processing
Right to access, rectify, and delete data
Data portability and objection rights

CCPA Compliant

Full compliance with California Consumer Privacy Act

Right to know what data we collect
Right to delete personal information
We do not sell personal information

COPPA Compliant

Children's Online Privacy Protection Act compliance

Parental consent for children's data
Photos used only for book creation
No data shared for marketing

Contact our Privacy Team: privacy@makemystory.co

2. Information We Collect

We collect several types of information from and about users of our Service:

2.1 Account Information

Registration Data: Email address, name, and authentication credentials
Profile Information: Optional profile details you choose to provide
Contact Information: When you contact our support team

2.2 Book Creation Information

Child's Name and Age: Used to personalize the story
Story Preferences: Theme, adventure type, and interests
Art Style Choices: Selected illustration style
Custom Dedications: Personal messages you add to books

2.3 Payment Information

Billing Details: Name, billing address, and payment method information
Transaction History: Records of your subscription and payment history
Note: Payment processing is handled by Stripe; we do not store full payment card details

2.4 Technical Information

Device Information: Browser type, operating system, device identifiers
Log Data: IP addresses, access times, pages viewed
Cookies: Browser cookies and similar tracking technologies

3. Children's Photos - Special Protections

Important: We take the protection of children's photos extremely seriously. This section explains exactly how we handle these sensitive images.

3.1 How We Use Photos

Character Analysis: Our AI analyzes the photo to create a consistent character description for illustrations
Book Generation Only: Photos are used solely to create your personalized book
No Other Purpose: Photos are never used for AI training, marketing, or any purpose other than your book

3.2 Photo Storage and Security

Encrypted Storage: All photos are encrypted at rest using AES-256 encryption
Secure Transmission: Photos are transmitted via TLS 1.3 encryption
Access Control: Photos are only accessible to you and our automated book generation system
No Human Review: Photos are not reviewed by human staff except for technical support you request

3.3 Photo Deletion

Your Control: You can delete any photo at any time through your account
Account Deletion: All photos are permanently deleted within 30 days of account deletion
Automatic Cleanup: Temporary processing files are deleted immediately after book generation

4. How We Use Information

We use the collected information for the following purposes:

4.1 Service Provision

Generate personalized children's books
Process your book creation requests
Manage your account and subscription
Store and provide access to your created books

4.2 Communication

Send book completion notifications
Respond to your inquiries and support requests
Notify you of changes to our Service or policies

4.3 Service Improvement

Analyze usage patterns to improve our AI and illustration quality
Monitor service performance and reliability
Develop new art styles and story features

4.4 Legal and Security

Comply with legal obligations and regulations
Protect against fraud, abuse, and security threats
Enforce our Terms of Service

6. Data Retention

We retain your information for as long as necessary to provide our Service:

Account Information: Until you delete your account plus 30 days for backup purposes
Generated Books: As long as your account is active
Photos: Until you delete them or close your account
Payment Information: As required by law (typically 7 years for tax purposes)

You can request deletion of your data at any time by contacting us or using account deletion features in our Service.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information:

Encryption: AES-256 encryption at rest, TLS 1.3 in transit
Access Controls: Limited access to personal information on a need-to-know basis
Authentication: Secure authentication via Supabase
Regular Audits: Security assessments and vulnerability testing
Photo Protection: Encrypted storage with strict access controls

However, no method of transmission over the Internet is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

Access: Request access to your personal information
Correction: Request correction of inaccurate information
Deletion: Request deletion of your personal information and photos
Portability: Request a copy of your data in a portable format
Restriction: Request restriction of processing
Withdraw Consent: Withdraw consent for processing where consent is the legal basis

8.1 GDPR Rights (EU Users)

If you are located in the European Union, you have additional rights under the GDPR including the right to lodge a complaint with your local data protection authority.

8.2 CCPA Rights (California Users)

California residents have specific rights including the right to know what data we collect, the right to delete, and the right to opt-out of sales (we do not sell personal information).

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

Essential Cookies: Required for basic site functionality and security
Preference Cookies: Remember your settings and preferences
Analytics Cookies: Help us understand how you use our Service

For more detailed information, please see our Cookie Policy.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place including standard contractual clauses and encryption.

11. Children's Privacy (COPPA Compliance)

Important: Our service creates books featuring children, but the service is intended for use by parents and guardians, not children directly.

11.1 Service Users

MakeMyStory is designed for adults (parents, grandparents, guardians) to create personalized books for children. The service is not intended for direct use by children under 13.

11.2 Children's Information

We collect limited information about children solely for book creation:

Child's first name (for story personalization)
Child's age (for age-appropriate content)
Child's photo (for character illustration)

11.3 Parental Rights

Parents and guardians have the right to:

Review all information collected about their child
Request deletion of their child's information and photos
Refuse further collection of their child's information

11.4 COPPA Protections

We do not knowingly collect information from children under 13 without parental consent
Parents must create and manage accounts
Children's photos are never used for marketing or shared with third parties
We do not condition participation on disclosure of more information than necessary

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the updated policy on our website
Sending an email notification to your registered email address
Displaying a prominent notice on our Service

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Team: privacy@makemystory.co

General Support: support@makemystory.co

We will respond to your requests within the timeframes required by applicable law, typically within 30 days.

Last Updated: 2026-01-24

This Privacy Policy is effective as of 2026-01-24. We reserve the right to modify this policy at any time, so please review it frequently.

1. Introduction

Privacy Compliance Statement

GDPR Compliant

Full compliance with European Union General Data Protection Regulation

Lawful basis for data processing
Right to access, rectify, and delete data
Data portability and objection rights

CCPA Compliant

Full compliance with California Consumer Privacy Act

Right to know what data we collect
Right to delete personal information
We do not sell personal information

COPPA Compliant

Children's Online Privacy Protection Act compliance

Parental consent for children's data
Photos used only for book creation
No data shared for marketing

Contact our Privacy Team: privacy@makemystory.co

2. Information We Collect

We collect several types of information from and about users of our Service:

2.1 Account Information

Registration Data: Email address, name, and authentication credentials
Profile Information: Optional profile details you choose to provide
Contact Information: When you contact our support team

2.2 Book Creation Information

Child's Name and Age: Used to personalize the story
Story Preferences: Theme, adventure type, and interests
Art Style Choices: Selected illustration style
Custom Dedications: Personal messages you add to books

2.3 Payment Information

Billing Details: Name, billing address, and payment method information
Transaction History: Records of your subscription and payment history
Note: Payment processing is handled by Stripe; we do not store full payment card details

2.4 Technical Information

Device Information: Browser type, operating system, device identifiers
Log Data: IP addresses, access times, pages viewed
Cookies: Browser cookies and similar tracking technologies

3. Children's Photos - Special Protections

Important: We take the protection of children's photos extremely seriously. This section explains exactly how we handle these sensitive images.

3.1 How We Use Photos

Character Analysis: Our AI analyzes the photo to create a consistent character description for illustrations
Book Generation Only: Photos are used solely to create your personalized book
No Other Purpose: Photos are never used for AI training, marketing, or any purpose other than your book

3.2 Photo Storage and Security

Encrypted Storage: All photos are encrypted at rest using AES-256 encryption
Secure Transmission: Photos are transmitted via TLS 1.3 encryption
Access Control: Photos are only accessible to you and our automated book generation system
No Human Review: Photos are not reviewed by human staff except for technical support you request

3.3 Photo Deletion

Your Control: You can delete any photo at any time through your account
Account Deletion: All photos are permanently deleted within 30 days of account deletion
Automatic Cleanup: Temporary processing files are deleted immediately after book generation

4. How We Use Information

We use the collected information for the following purposes:

4.1 Service Provision

Generate personalized children's books
Process your book creation requests
Manage your account and subscription
Store and provide access to your created books

4.2 Communication

Send book completion notifications
Respond to your inquiries and support requests
Notify you of changes to our Service or policies

4.3 Service Improvement

Analyze usage patterns to improve our AI and illustration quality
Monitor service performance and reliability
Develop new art styles and story features

4.4 Legal and Security

Comply with legal obligations and regulations
Protect against fraud, abuse, and security threats
Enforce our Terms of Service

6. Data Retention

We retain your information for as long as necessary to provide our Service:

Account Information: Until you delete your account plus 30 days for backup purposes
Generated Books: As long as your account is active
Photos: Until you delete them or close your account
Payment Information: As required by law (typically 7 years for tax purposes)

You can request deletion of your data at any time by contacting us or using account deletion features in our Service.

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information:

Encryption: AES-256 encryption at rest, TLS 1.3 in transit
Access Controls: Limited access to personal information on a need-to-know basis
Authentication: Secure authentication via Supabase
Regular Audits: Security assessments and vulnerability testing
Photo Protection: Encrypted storage with strict access controls

However, no method of transmission over the Internet is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

8. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

Access: Request access to your personal information
Correction: Request correction of inaccurate information
Deletion: Request deletion of your personal information and photos
Portability: Request a copy of your data in a portable format
Restriction: Request restriction of processing
Withdraw Consent: Withdraw consent for processing where consent is the legal basis

8.1 GDPR Rights (EU Users)

If you are located in the European Union, you have additional rights under the GDPR including the right to lodge a complaint with your local data protection authority.

8.2 CCPA Rights (California Users)

California residents have specific rights including the right to know what data we collect, the right to delete, and the right to opt-out of sales (we do not sell personal information).

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience:

Essential Cookies: Required for basic site functionality and security
Preference Cookies: Remember your settings and preferences
Analytics Cookies: Help us understand how you use our Service

For more detailed information, please see our Cookie Policy.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place including standard contractual clauses and encryption.

11. Children's Privacy (COPPA Compliance)

Important: Our service creates books featuring children, but the service is intended for use by parents and guardians, not children directly.

11.1 Service Users

MakeMyStory is designed for adults (parents, grandparents, guardians) to create personalized books for children. The service is not intended for direct use by children under 13.

11.2 Children's Information

We collect limited information about children solely for book creation:

Child's first name (for story personalization)
Child's age (for age-appropriate content)
Child's photo (for character illustration)

11.3 Parental Rights

Parents and guardians have the right to:

Review all information collected about their child
Request deletion of their child's information and photos
Refuse further collection of their child's information

11.4 COPPA Protections

We do not knowingly collect information from children under 13 without parental consent
Parents must create and manage accounts
Children's photos are never used for marketing or shared with third parties
We do not condition participation on disclosure of more information than necessary

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

Posting the updated policy on our website
Sending an email notification to your registered email address
Displaying a prominent notice on our Service

13. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Team: privacy@makemystory.co

General Support: support@makemystory.co

We will respond to your requests within the timeframes required by applicable law, typically within 30 days.

Last Updated: 2026-01-24

This Privacy Policy is effective as of 2026-01-24. We reserve the right to modify this policy at any time, so please review it frequently.

1. Introduction

Privacy Compliance Statement

GDPR Compliant

CCPA Compliant

COPPA Compliant

2. Information We Collect

2.1 Account Information

2.2 Book Creation Information

2.3 Payment Information

2.4 Technical Information

3. Children's Photos - Special Protections

3.1 How We Use Photos

3.2 Photo Storage and Security

3.3 Photo Deletion

4. How We Use Information

4.1 Service Provision

4.2 Communication

4.3 Service Improvement

4.4 Legal and Security

5. Information Sharing and Disclosure

5.1 Service Providers

5.2 AI Services

5.3 Legal Requirements

5.4 What We Never Share

6. Data Retention

7. Data Security

8. Your Privacy Rights

8.1 GDPR Rights (EU Users)

8.2 CCPA Rights (California Users)

9. Cookies and Tracking Technologies

10. International Data Transfers

11. Children's Privacy (COPPA Compliance)

11.1 Service Users

11.2 Children's Information

11.3 Parental Rights

11.4 COPPA Protections

12. Changes to This Privacy Policy

13. Contact Information

Table of Contents

Privacy Policy

1. Introduction

Privacy Compliance Statement

GDPR Compliant

CCPA Compliant

COPPA Compliant

2. Information We Collect

2.1 Account Information

2.2 Book Creation Information

2.3 Payment Information

2.4 Technical Information

3. Children's Photos - Special Protections

3.1 How We Use Photos

3.2 Photo Storage and Security

3.3 Photo Deletion

4. How We Use Information

4.1 Service Provision

4.2 Communication

4.3 Service Improvement

4.4 Legal and Security

5. Information Sharing and Disclosure

5.1 Service Providers

5.2 AI Services

5.3 Legal Requirements

5.4 What We Never Share

6. Data Retention

7. Data Security

8. Your Privacy Rights

8.1 GDPR Rights (EU Users)

8.2 CCPA Rights (California Users)

9. Cookies and Tracking Technologies

10. International Data Transfers

11. Children's Privacy (COPPA Compliance)

11.1 Service Users

11.2 Children's Information

11.3 Parental Rights

11.4 COPPA Protections

12. Changes to This Privacy Policy

13. Contact Information

Table of Contents