Privacy Policy for MiniPic
Effective Date: March 25, 2026 
Operator & COPPA Compliance Officer: Masterov Anna 
Contact Email: masterova@gmail.com
1. Introduction and Scope 
MiniPic is designed specifically for children under parental supervision to foster creativity and imagination. We prioritize safety and privacy, adhering strictly to the U.S. Children’s Online Privacy Protection Act (COPPA) and the E.U. General Data Protection Regulation (GDPR). This policy explains how we handle data for our child users and their parents.
2. Verifiable Parental Consent 
We do not collect personal information from children without verifiable parental consent. Consent is obtained through a paid credit card subscription and email verification, which serves as a recognized "adult action" to confirm the identity of the parent or guardian.
3. Information We Collect
  • Creative Content: We collect on-screen sketches and microphone recordings (initiated solely by the child) to create digital collages. These sketches do not contain photographs.
  • Parental Information: We collect parents' email addresses and payment information for account management and verification.
  • What We DO NOT Collect: We do not collect or transmit sensitive identifiers such as Android Advertising ID (AAID), IMEI, MAC addresses, or precise location
4. Data Processing and AI Usage
  • NanoBanana AI: Sketches are processed using the NanoBanana Image-to-Image model to apply creative styles. We use strict, child-friendly safety prompts to ensure generated content is appropriate.
  • Cloud Infrastructure: Data is stored in Amazon S3 and processed via AWS Lambda. All data is encrypted at rest using AWS KMS and in transit.
  • Firebase: We use Google Firebase for secure communication between children and parents.

5. Optional Application Improvement: 

If parents explicitly opt in via the "Allow anonymous data use" checkbox during registration, we may use anonymized (de-identified) versions of sketches and sounds to improve the app's functionality and statistics. This is entirely optional.

6. Data Retention and Deletion 
We follow a strict one-year deletion timeline. All sketches and sounds are automatically deleted from S3 and our databases after one year. Parents may also use the "Forget All" feature in Parent Mode to delete data immediately at any time.
7. No Third-Party Advertising 
MiniPic does not show ads to children. We do not engage in behavioral tracking or interest-based targeting. We use no third-party analytics outside of the infrastructure providers (AWS, Firebase) listed in our documentation.