Privacy Policy

Little Voice Club (“we”, “our”, or “us”) operates the Little Voice Club website at littlevoice.club and the Little Voice Club mobile application (together, the “Service”). This Privacy Policy explains how we collect, use, and protect information when you and your children use our Service.

We are committed to protecting children’s privacy online. Our Service is designed for families with children, and we comply with the Children’s Online Privacy Protection Act (COPPA), the EU General Data Protection Regulation as it applies to children (GDPR-K), and other applicable data protection laws.

What changed in Version 2.0: expanded disclosures to cover subscription & purchase data (Apple StoreKit, Razorpay on the web), anonymous diagnostic and analytics data (Firebase Crashlytics and Firebase Analytics), Sign in with Apple as an authentication option, and explicit GDPR-K coverage.

1. Information We Collect

a) Parent Account Information

When you sign in with Google or with Sign in with Apple, we receive your name, email address, and (for Google) profile photo from the authentication provider. With Sign in with Apple, you may choose to share or hide your real email; if hidden, Apple provides a relay address. This information is used solely for authentication and to personalize your parent dashboard.

b) Child Profile Information

Parents create child profiles with a first name (or nickname), birth year, and an avatar emoji. We do not collect children’s email addresses, photos, phone numbers, or any other personally identifiable information directly from children.

c) Usage Data (anonymous)

We collect gameplay data such as scores, BrainPower points earned, games played, and learning progress. This data is associated with the child profile (not with any external identity) and is used to provide progress reports to parents and to personalize the learning experience.

d) Family Codes

We generate unique family codes that allow multiple family members (parents/guardians) to co-manage children’s profiles. Family codes do not contain or expose any personal information.

e) Subscription & Purchase Information

If you purchase a Family Premium subscription, we receive a record of the transaction so we can grant your family the corresponding access:

• On iOS: Apple processes the purchase through its StoreKit framework. We receive a transaction receipt (a signed token issued by Apple) which we forward to our server to verify the subscription state. We do not see, store, or have access to your payment card or Apple ID password — Apple handles all of that.
• On Android: Google Play handles the purchase. We receive a purchase token and verify it the same way. No card data passes through our servers.
• On the web (India): our web subscribe flow uses Razorpay as the payment processor. Razorpay collects card / UPI details directly; we receive only the transaction outcome and an identifier we use to mark your subscription active.

We retain the subscription state (active / expired / refunded) and a transaction identifier so we can grant access, honor refunds, and answer support questions. We never use this data for advertising.

f) Crash & Diagnostic Data (anonymous)

If the app crashes, our crash-reporting service (Firebase Crashlytics) sends us a crash log: stack trace, OS version, device model, app build number, and timestamp. This is not linked to your identity and is used only to fix bugs.

g) Anonymous Product Analytics

We use Firebase Analytics to understand which features are used and where users have trouble — for example, “the Story tab was opened” or “a game was completed”. These events are anonymous: not linked to your identity, never used for behavioral advertising, and never cross-referenced with profile data. The mobile app does not collect Apple’s Identifier for Advertisers (IDFA) and does not show the App Tracking Transparency prompt because we do not track you.

h) Shipping Information (campaign goodies, optional)

When a parent chooses to receive physical campaign goodies, we collect a shipping address and (optionally) a phone number. This data is owner-locked: only the parent can read or edit it. Our fulfillment team can reveal the address only through an audit-logged callable — every reveal is recorded with the staff member, the parent, the winner, and the timestamp. Retention and removal are described in section 7a below.

2. How We Use Information

• Authentication: To verify parent identity via Google Sign-In or Sign in with Apple.
• Personalization: To tailor games, stories, and content to each child’s age and learning level.
• Progress Tracking: To show parents how their children are doing through BrainPower stats and activity reports.
• Subscription Entitlement: To grant access to Family Premium features after a successful purchase.
• Stability: To fix crashes and bugs (anonymous crash reports).
• Service Improvement: To understand which games and content are most engaging (anonymous analytics), so we can create better experiences.

We do not send promotional or marketing email unless you explicitly opt in. Account-related and safety-critical messages (legal-acceptance prompts, password resets, refund confirmations, data-deletion notices) are sent regardless because they are necessary to operate the Service.

3. Information We Do NOT Collect

• We do not collect children’s email addresses or phone numbers.
• We do not collect precise geolocation data.
• We do not show advertising and do not use advertising trackers.
• We do not sell, rent, or share personal data with third-party advertisers, data brokers, or marketing platforms.
• We do not allow children to make purchases within the app.
• We do not collect Apple’s Identifier for Advertisers (IDFA) or any equivalent device-level advertising identifier.
• We do not link our anonymous Crash or Analytics events to your account or to your child’s profile.

What children may share publicly: Children cannot post or message anyone outside their family from inside the Service. The optional Gallery feature lets a parent (not the child) submit a child’s artwork for public display on littlevoice.club/gallery. Approved submissions are limited to a first name or nickname plus avatar emoji — never an email, phone number, last name, age, school, or location — and every submission is reviewed by our team before it appears publicly. Parents can request removal of any approved artwork at any time by emailing hello@littlevoice.club.

4. Data Storage and Security

All account, family, and child data is stored securely on Google Firebase (Cloud Firestore) with industry-standard encryption in transit and at rest. Access to child data is restricted to authenticated parents/guardians of the family through Firestore Security Rules. You also set a 4-digit Parent PIN during onboarding which gates sensitive parent-side actions when a child is using the device — returning from the Kid Zone back to the Parent Zone, opening the Subscribe / paywall screen, editing profile or family settings, and deleting the family account. The Parent PIN does not gate entry into the Kid Zone itself; once the parent has handed the device to a child, the child stays within the Kid Zone surface until a parent enters the PIN to exit.

Where your data is stored. Firebase data is held on Google Cloud infrastructure, primarily in data centers in the United States. For users in the European Union, the United Kingdom, or other jurisdictions outside the United States, this constitutes an international data transfer. We rely on Google’s Standard Contractual Clauses (and the EU-U.S. Data Privacy Framework, where applicable) as the legal basis for that transfer. You can find Google’s details in the Firebase Privacy Policy.

5. Sub-Processors and Third-Party Services

We rely on the following sub-processors, each scoped to a specific purpose. We do not share data with any other third parties.

• Google (Firebase platform): Authentication, Cloud Firestore database, Cloud Functions, Cloud Storage (for parent-uploaded gallery artwork), Cloud Messaging (push notifications), Remote Config, App Check, Firebase Analytics (anonymous product events), and Firebase Crashlytics (anonymous crash reports). Stored on Google Cloud infrastructure. Firebase Privacy Policy.
• Google Sign-In: Parent authentication only. Children never interact with Google Sign-In.
• Sign in with Apple: Parent authentication only, available on iOS, the web, and Android. Apple may provide an email-relay address if you choose to hide your real email. Apple Privacy Policy.
• Apple StoreKit (iOS only): Processes in-app purchases on iPhone and iPad. We receive a signed transaction receipt that we verify on our server to grant subscription access. Apple handles payment instruments end-to-end.
• Google Play Billing (Android only): Equivalent to StoreKit on Android. We receive a purchase token only.
• Razorpay (web flow, India only): Payment processor for the web subscribe flow at app.littlevoice.club. Not used by the iOS or Android apps. Razorpay Privacy Policy.

We do not share child profile data, gameplay data, or any user-identifying data with third-party advertising networks, marketing platforms, or data brokers.

6. Parental Rights

As a parent or guardian, you have the right to:

• Review your child’s information stored in the app.
• Delete your child’s profile and all associated data at any time from the parent dashboard.
• Request deletion of your entire family account by contacting us or via Profile → Delete Family in the app.
• Withdraw consent for data collection by deleting your account or contacting us.
• Manage or cancel an active subscription via your Apple ID subscription settings (iOS), Google Play subscription settings (Android), or by contacting us for a web Razorpay subscription.

Step-by-step deletion instructions, what we delete, and what we retain for legal reasons live on our dedicated account deletion page.

7. Data Retention

We retain parent and child data for as long as the account is active. If you delete a child profile, all associated gameplay data, scores, and progress are permanently removed within 30 days of your request. If you delete your parent account, all family data including all child profiles is permanently removed within the same 30-day window. Backup snapshots taken before the deletion request are overwritten on a normal rolling basis (no later than 90 days) and are not used for any other purpose. Subscription transaction records (date, amount, store, anonymous transaction ID) are retained for the period required by applicable tax and accounting law and may outlive the account for that purpose only.

7a. Shipping data (campaign goodies)

We keep shipping data for up to 12 months after the last campaign use, then auto-remove it. We send a one-time push and in-app notification 30 days before that removal so you can keep the address on file or remove it sooner. Use Profile → Shipping & Contact → Remove address to delete it eagerly at any time.

8. Children’s Privacy (COPPA & GDPR-K)

Our Service is designed for use by children under parental supervision. We do not knowingly collect personal information from children without verified parental consent (provided through Google Sign-In or Sign in with Apple, plus PIN setup). All child interactions within the app are contained within the parent-supervised Kid Zone; the Parent PIN gates the return path back to the Parent Zone and any sensitive parent-side action, so a child cannot leave the Kid Zone or change family settings without a parent unlocking it.

For users in the European Union, the United Kingdom, and other jurisdictions with equivalent rules (collectively, GDPR-K): we treat all children as minors regardless of country, the legal basis for processing is the verifiable consent of the parent/guardian, and we honor the GDPR rights of access, rectification, erasure, restriction, portability, and objection on request to hello@littlevoice.club.

If you believe we have inadvertently collected personal information from a child without proper consent, please contact us immediately and we will promptly delete it.

9. Security Incidents

We take security seriously and apply industry-standard controls to prevent unauthorized access. If we discover a personal-data breach affecting your account, we will notify you and the relevant supervisory authorities within 72 hours of becoming aware where required by applicable law (including GDPR Art. 33 and 34). The notice will describe the nature of the incident, the data affected, the steps we are taking to mitigate it, and what you can do to protect yourself.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we publish a new version we bump the version number shown at the top of this page and update the effective date. Material changes will additionally be surfaced inside the mobile app via a re-acceptance prompt. Continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us at:

Email: hello@littlevoice.club