CuriSpark
👤

Hi, Explorer!

Learn About the World!

CuriSpark © 2025
Back

Privacy Policy

Last updated: November 25, 2025

🛡️ COPPA & GDPR Compliance - Child Safety First

✅ We are committed to protecting children's privacy

  • COPPA Compliant: We comply with the Children's Online Privacy Protection Act (COPPA) for users under 13.
  • GDPR Compliant: We comply with the General Data Protection Regulation (GDPR) for all users.
  • No Unauthorized Collection: We do not knowingly collect personal information from children without parental consent.
  • Minimal Data: We only collect the minimum data necessary to provide our service.
  • No Advertising: We do not serve targeted advertising to children.
  • No Third-Party Sharing: We do not sell or share children's data with third parties.

Parents: If you believe your child has provided personal information without your consent, please contact us immediately at info@curispark.com and we will delete it promptly.

1. Introduction

Welcome to CuriSpark ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience on our website and in our application. This privacy policy explains how we collect, use, store, and protect your information when you use our services.

2. Verifiable Parental Consent

In compliance with the Children's Online Privacy Protection Act (COPPA), we obtain verifiable parental consent before collecting, using, or disclosing personal information from children under 13 years of age.

How We Obtain Consent:

  • Age Verification: Before creating an account, we require confirmation that the user is 18+ and a parent or legal guardian.
  • Explicit Consent: Parents must explicitly consent to the collection and use of their child's information by checking a consent box that links to this Privacy Policy.
  • Timestamp Recording: We record the date and time of consent for our records.
  • Opt-Out Option: Parents can withdraw consent at any time by deleting their account as described in Section 6.

Parent/Guardian Responsibility: By using this service, you confirm that you are a parent or legal guardian with authority to consent to the collection of your child's information.

3. Information We Collect

Google User Data:

When you sign in with Google, we collect the following information from your Google account:

  • Email Address: Used to uniquely identify your account and sync learning progress across devices.
  • Basic Profile Information: Your name and profile picture (if available) to personalize your experience.
  • Authentication Token: A secure token provided by Google to verify your identity.

For Children (Ages 2-5):

We collect minimal information to provide a safe, educational experience:

  • Child Profile Data: Child's first name, age, and avatar selection (stored locally and synced to your account).
  • Learning Progress: Quiz scores, lesson completion status, and achievement data. This is stored both locally on your device using browser storage (IndexedDB) and synced to our secure database when signed in.
  • Anonymous Analytics: We use Google Analytics to understand app usage patterns (e.g., which lessons are popular). This data is completely anonymous and cannot identify individual children.

Important: We do NOT collect: children's last names, photos, location data, contact information, or any other personally identifiable information from children beyond what is listed above.

4. How We Use Google User Data

We use the Google user data we collect solely to provide and improve our educational services. Specifically, we use your data to:

  • Authentication: Verify your identity and provide secure access to your account.
  • Service Provision: Enable you to create child profiles, track learning progress, and access educational content.
  • Cross-Device Sync: Save and sync your child's learning progress across multiple devices.
  • Account Management: Allow you to manage your account settings and preferences.
  • Service Improvement: Analyze usage patterns (in aggregate, anonymized form) to improve our educational content and user experience.

We will NOT use your Google user data for: Advertising, marketing to third parties, selling to data brokers, training AI models, determining creditworthiness, or any other purpose outside of providing our educational services.

5. Data Sharing and Third-Party Access

We do NOT sell, rent, or share your Google user data with third parties.

The only exceptions are:

  • Google Analytics: We use Google Analytics for anonymous usage statistics. This service does not receive any personally identifiable information and uses anonymized data only. Learn more at Google's Privacy Policy.
  • Service Providers: We use Google Firebase for secure data storage and authentication. Firebase adheres to strict security standards and processes data only as needed to provide our services. Your data remains under our control and is protected by Firebase's security measures.
  • Legal Requirements: We may disclose information if required by law, court order, or governmental authority.

We do NOT transfer or disclose your information to third parties for purposes other than those described above. We do not share data with advertisers, data brokers, or any parties for marketing purposes.

6. Data Security and Protection

We take the security of your data seriously and implement industry-standard security measures to protect your information:

  • Encryption: All data transmitted between your device and our servers is encrypted using HTTPS/TLS protocols.
  • Secure Authentication: We use Google's OAuth 2.0 authentication, which provides secure, industry-standard user authentication without storing passwords.
  • Database Security: User data is stored in Google Firebase, which provides enterprise-grade security including encryption at rest, access controls, and regular security audits.
  • Access Controls: Only authorized personnel have access to user data, and access is logged and monitored.
  • Regular Updates: We regularly update our security practices and software to protect against emerging threats.

While we implement strong security measures, no system is completely secure. We continuously monitor and improve our security procedures to protect the confidentiality of your data.

7. Data Retention and Deletion

How Long We Keep Your Data:

  • We retain your account information and learning progress for as long as your account is active.
  • If you do not use the app for an extended period (more than 2 years), we may contact you to confirm whether you wish to keep your account active.
  • Anonymous analytics data is retained indefinitely in aggregated form but cannot be linked back to individual users.

How to Delete Your Data:

You have the right to request deletion of your data at any time. To delete your account and all associated data:

  • Send an email to info@curispark.com with the subject "Account Deletion Request"
  • Include the email address associated with your account
  • We will process your request within 30 days and confirm deletion via email

What Happens After Deletion:

  • All your account information, child profiles, and learning progress will be permanently deleted from our systems.
  • Anonymous analytics data cannot be deleted as it is not linked to your identity.
  • Some data may be retained for a limited period in backup systems but will be deleted within 90 days.
  • We may retain certain information if required by law or for legitimate business purposes (e.g., preventing fraud).

8. Prohibited Data Uses

We are committed to using your data only for providing and improving our educational services. We explicitly DO NOT use your Google user data or any personal information for:

  • ❌ Targeted advertising or personalized advertisements
  • ❌ Selling to data brokers or information resellers
  • ❌ Training AI or machine learning models
  • ❌ Determining creditworthiness or lending purposes
  • ❌ Retargeted or interest-based advertising
  • ❌ Creating user profiles for marketing purposes
  • ❌ Any purpose unrelated to our educational services

Our Commitment: Your data is used exclusively to help your child learn and grow through our educational platform. Nothing more.

9. Google Analytics

We use Google Analytics to collect anonymous usage data that helps us understand how users interact with our application and improve the user experience. Google Analytics may use cookies to collect this information, but all data is anonymized and cannot be used to identify individual users or children.

You can learn more about how Google uses data at https://policies.google.com/technologies/partner-sites and review Google's Privacy Policy at https://policies.google.com/privacy.

10. Your Rights as a Parent/Guardian

As a parent or legal guardian, you have specific rights under COPPA and GDPR regarding your child's information:

  • Review: Request to review the personal information collected from your child.
  • Delete: Request deletion of your child's personal information at any time.
  • Refuse Further Collection: Refuse to allow further collection or use of your child's information.
  • Access: Request a copy of all data we have about you and your child.
  • Correction: Request correction of any inaccurate information.
  • Data Portability: Request your data in a portable format.
  • Withdraw Consent: Withdraw your consent at any time by deleting your account (as described in Section 7).

Important: Withdrawing consent or deleting data may limit your child's ability to use certain features of our service. We will notify you of any such limitations before processing your request.

To exercise any of these rights, please contact us at info@curispark.com with your request.

11. FTC COPPA Compliance Statement

CuriSpark is committed to full compliance with the Children's Online Privacy Protection Act (COPPA) and the Federal Trade Commission (FTC) regulations.

Our COPPA Compliance Measures:

  • ✓ We obtain verifiable parental consent before collecting personal information from children under 13
  • ✓ We provide clear notice to parents about our information practices
  • ✓ We give parents the choice to consent to collection without consenting to disclosure to third parties
  • ✓ We provide parents access to their child's personal information
  • ✓ We give parents the opportunity to prevent further use or collection of their child's information
  • ✓ We maintain the confidentiality, security, and integrity of the personal information we collect
  • ✓ We retain children's personal information only as long as necessary to fulfill the purpose for which it was collected
  • ✓ We delete children's personal information using reasonable measures to protect against unauthorized access

For Parents: If you have questions or concerns about our COPPA compliance practices, please contact us at info@curispark.com.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify users of any material changes by updating the "Last updated" date at the top of this policy. Continued use of our services after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: info@curispark.com

We will respond to your inquiry within 7 business days.