Privacy Policy

Last Updated: September 2025

Subscription and Payment Information

Payment Data Processing:

• Apple Handles All Payments: We do not collect, store, or process any payment card information, billing addresses, or financial data
• Apple ID Required: Subscriptions are linked to your Apple ID account, managed entirely by Apple
• Subscription Status: We only receive anonymous subscription validation tokens from Apple to verify active subscriptions
• No Personal Financial Data: Your payment information, card details, and billing address remain with Apple and are never shared with us
• Purchase History: Apple maintains your subscription purchase history - we do not store transaction records

Subscription Management:

• Cancellation: Cancel anytime through iOS Settings → [Your Name] → Subscriptions
• Billing Support: Contact Apple Support for all billing inquiries and payment issues
• Subscription Verification: App checks subscription status with Apple's servers to unlock premium features
• Family Sharing: Subscriptions can be shared with family members through Apple's Family Sharing
• Auto-Renewal: Subscriptions automatically renew unless cancelled 24 hours before renewal

Information We Collect

Information Stored Locally on Your Device:

• Voice recordings (processed temporarily for story generation only)
• Generated stories and images (stored locally on your device)
• App preferences and settings (language, voice, animation style)
• No user accounts: No usernames, passwords, or personal profiles created
• No server storage: All your data remains on your device
• Subscription preferences: Premium unlock status (stored locally after verification with Apple)

Subscription-Related Data:

• StoreKit Receipt Validation: Anonymous subscription validation tokens exchanged with Apple's servers
• Feature Access Tracking: Local tracking of premium feature availability (no personal data)
• Usage Analytics: Anonymous premium feature usage statistics for app improvement (opt-out available)

Technical Information (Minimal):

• Basic app performance data for functionality (non-personal)
• Technical error logs for troubleshooting (anonymous)
• Subscription service connectivity status (no personal data)

How We Use Your Information

We use your information to:

• Generate personalized stories from your voice recordings
• Store your stories locally on your device
• Provide text-to-speech narration for stories
• Verify subscription status to unlock premium unlimited story creation
• Process subscription receipts through Apple's StoreKit framework
• Enable premium features for active subscribers (unlimited story creation)
• Provide technical support when needed
• Ensure the app functions properly
• Improve premium feature performance and reliability

Data Sharing and Third Parties

We do NOT sell, trade, or share your personal information with third parties, except in these limited circumstances:

• Apple Inc. (Subscription Processing): Anonymous subscription validation through Apple's StoreKit APIs to verify premium access. Apple processes all payment information according to their privacy policy.
• AI Processing Services: Voice recordings are transcribed on our secure backend with immediate deletion after processing. PII Redaction removes personal information before any third-party model processing.
• Google Cloud Text-to-Speech: Only redacted, sanitized story text (never voice recordings or personal information) is processed for narration, then immediately discarded.
• Mandatory Cloud Processing: This app requires cloud services for story generation functionality. When cloud processing is disabled, the app cannot create stories and will display appropriate error messages. All cloud processing includes comprehensive PII protection and 24-hour data deletion policies.
• Legal Requirements: When required by law or legal process
• Safety: To protect our rights or the safety of others
• Your Consent: With your explicit permission only

Data Storage and Security

Local Device Storage (Your Complete Control):

• Stories: All generated stories stored locally on your device in app sandbox
• Settings: App preferences saved to device storage (UserDefaults)
• Subscription Status: Premium access status cached locally (re-verified with Apple periodically)
• Complete Control: Delete all data by removing the app from your device
• No Cloud Backup: Stories are not backed up to iCloud or any cloud service
• Device Security: Protected by your device's security (passcode, Face ID, Touch ID)

Temporary Processing (Automatic Deletion):

• Voice Recordings (Audio): Never stored persistently. Buffered in memory only for transcription and destroyed immediately after transcription completes (typically within seconds). Temporary encrypted files auto-expire in ≤60 minutes if needed for network retries.
• Transcripts (Text): Kept for up to 24 hours to allow parents to review or regenerate stories, then automatically deleted. Parents can delete immediately using "Delete session now" button.
• Generated Images and Audio: Kept for up to 24 hours for download convenience, then automatically deleted from servers.
• PII Protection: Automated redaction removes names, addresses, phone numbers, and personal details before any third-party processing.

Security Measures:

• All network communications use HTTPS encryption
• No user accounts or profiles: No login credentials to be compromised
• No centralized database: No single point of failure for data breaches
• Device-level security protects all local data

Children's Privacy (COPPA Compliance)

Magical Story Teller is designed for families including children. We:

• Do not knowingly collect personal information from children under 13
• No user accounts required: Children cannot create accounts or profiles
• Device-only storage: All child data remains on parent-controlled device
• Enhanced Parental Controls: 2-step verification system protects all sensitive settings
• PII Protection: Automatically redact personal information (names, addresses, phone numbers, school names, locations) before any cloud processing
• Mandatory Cloud Processing: App requires cloud services for story generation. When disabled, no stories can be created, ensuring no data processing occurs without cloud PII protection.
• Process voice recordings only for story generation with immediate deletion
• Provide "Delete session now" button accessible to parents at all times
• Do not use children's data for advertising, marketing, or AI training
• Do not include any advertisements in the app
• No user profiles or behavior tracking: Account-free design prevents profile creation
• Delete all temporary data within specified timeframes

Enhanced Child Safety Security Measures (August 2025)

2-Step Parent Verification System

To protect children from accidentally bypassing safety controls, sensitive app functions now require comprehensive parental verification:

Step 1: Adult-Level Mathematics

• Complex arithmetic problems requiring adult-level mathematical skills
• Problem ranges: Addition (23-89 + 17-67), Subtraction (50-120 - 15-45), Multiplication (12-25 × 3-8)
• Time pressure: 20-second countdown timer per step prevents casual attempts
• Example: "47 + 23 = ?" or "18 × 6 = ?"

Step 2: COPPA/Child Safety Knowledge Assessment

• Reading comprehension questions requiring adult understanding of child privacy laws
• Topics covered: COPPA regulations, PII (Personally Identifiable Information) risks, voice recording safety
• Educational component: Parents learn about child safety requirements while verifying access
• Example: "COPPA regulations protect children under what age from unauthorized PII collection?"

Anti-Memorization Protection

• Question rotation: 8-question pool ensures variety in security challenges
• No repetition: Questions don't repeat for 5 consecutive attempts
• Persistent tracking: System remembers used questions even after app restart
• Automatic reset: When all questions are used, history clears for continued security

Lockout Protection System

• Attempt limits: 3 failed verification attempts trigger security lockout
• Timeout duration: 5-minute lockout prevents brute force attempts by children
• Visual warnings: Clear messaging with countdown timer during lockout
• Persistent security: Lockout cannot be bypassed through app restart or device reboot

Session-Based Privacy Requirements

• Every app launch: Privacy verification required on all app launches
• Screen wake protection: Privacy verification required when device wakes from sleep
• Continuous oversight: Ensures ongoing parental awareness of app usage
• No persistent bypass: Children cannot gain permanent access without repeated verification

Protected Settings and Actions

The enhanced parent verification system protects:

• Privacy Setup Completion: Marking privacy settings as complete
• Data Deletion: Deleting story data or resetting app data
• Security Settings: Changing any child safety or privacy configurations

Child Safety Impact

• Eliminates easy bypass: Children cannot simply click buttons to access restricted features
• Educational value: Parents learn about COPPA compliance and PII protection requirements
• Adult-level verification: Requires genuine mathematical and reading comprehension skills
• Memory-resistant: Question rotation prevents children from memorizing answers
• Brute-force protected: Multiple failed attempts trigger extended security timeouts

Your Privacy Rights

With our account-free design, you have enhanced privacy rights:

• Complete data control: All stories stored locally on your device only
• Easy data deletion: Remove the app to delete all data permanently
• No account dependencies: No forgotten passwords or account recovery processes
• Device-level security: Your device's security protects all app data
• Export your stories and settings through the app's sharing feature
• Control voice data processing (microphone permission required)
• Request information about temporary data processing by contacting us

Data Retention

• Voice recordings (Raw Audio): Never stored. Buffered in memory and deleted immediately after transcription completes. If temporary encrypted files are created for network retries, they auto-expire within 60 minutes.
• Transcripts (Text): Kept for up to 24 hours to allow story editing/regeneration, then automatically deleted. Parents can delete immediately at any time.
• Generated Stories, Images, and Audio: Kept for up to 24 hours for download convenience, then automatically deleted.
• Stories on Device: Stored locally until you delete them manually
• App Settings: Stored locally until you delete the app
• Subscription Validation Data: Anonymous tokens cached locally for 24 hours, then re-verified with Apple
• Purchase Receipts: Never stored by us - Apple maintains all subscription and billing records
• Technical Logs: Retained for maximum 30 days (if enabled)

International Data Transfers

• AI processing may occur on secure servers outside your country (Google Cloud, OpenAI services)
• We ensure appropriate safeguards through:
  • Encryption of all data in transit (TLS/SSL)
  • PII redaction before any international processing
  • Contracts with GDPR and COPPA compliant service providers
  • Immediate deletion policies (within 24 hours)
• All data transfers use enterprise-grade encryption and secure protocols

Changes to This Policy

We may update this Privacy Policy occasionally. When we do:

• We will notify you through the app
• The "Last Updated" date will be changed
• Continued use of the app constitutes acceptance
• Significant changes will require renewed consent

Subscription Privacy Rights

Regarding your subscription and payment privacy:

• Payment Privacy: All financial information is managed by Apple - we never see your payment details
• Subscription Control: Cancel, modify, or restore subscriptions through iOS Settings
• Family Sharing Privacy: Family members can share subscriptions without sharing payment information
• Purchase History: Apple maintains your complete subscription history and receipts
• Billing Support: Contact Apple Support for all payment and billing privacy concerns
• Subscription Portability: Your subscription follows your Apple ID across devices

Compliance

This Privacy Policy complies with:

• Apple App Store Guidelines (including subscription requirements)
• Apple StoreKit and In-App Purchase Guidelines
• Children's Online Privacy Protection Act (COPPA)
• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• California Age-Appropriate Design Code
• Auto-Renewable Subscription Terms and Conditions