Privacy Policy
Last updated: May 31, 2026
1. Introduction
This policy describes how k5 Genie (“k5 Genie”, “we”, “us”) handles information when you use our websites and apps. The product is designed for parents, guardians, and educators to create and manage accounts for use with K–5 learners. Your use of the Service is also subject to our Terms of Service.
Company/Controller:
Cheerful Games Inc
430 245th Ave SE, Sammamish, WA 98074
Privacy inquiries: [email protected]
We do not sell or share your personal information for money or for cross-context behavioral advertising, and we never sell or share information relating to children. We use the limited service providers (“sub-processors”) listed below solely to operate the Service.
2. Information We Collect
Account Data: When you authenticate (e.g., via Google or Apple), we receive your email and a stable user ID to create your profile, authorize API calls, and manage your subscription.
User-Generated Content (“UGC”): Text, PDFs, and photos of worksheets you upload are processed by our infrastructure and third-party AI processors to return requested outputs.
Note: Please only provide materials you are authorized to share. Avoid uploading content containing sensitive PII (full names, home addresses, or contact information) or images of children's faces.
Billing Artifacts: Transactions processed by Stripe retain metadata (tier, timestamps, customer identifiers) to reconcile your subscription state.
Automatically Collected Data: Our servers capture technical metadata (IP addresses, timestamps, request paths, browser user-agents) to ensure service reliability and security.
3. Cookies and Tracking
We use strictly necessary cookies to manage your logged-in sessions and persist UI preferences (e.g., via Supabase). Stripe’s hosted checkout may introduce cookies for payment risk and fraud prevention. This product does not currently use third-party advertising or social-tracking pixels. For additional details, see our Cookie Policy.
4. Children’s Privacy & COPPA
We do not direct account registration or marketing toward children. Because the service ingests uploaded work, adults operating the login are responsible for determining whether consent prerequisites are satisfied.
Correction/Deletion: If you believe information pertaining to a child was furnished without authority, or you need records deleted, email [email protected] with the learner’s context and timestamps. We will take reasonable corrective steps, including account and data erasure, within 30 days.
5. AI & Sub-processors
We and our third-party AI sub-processors do not use your submitted images, text, or personal data to train or improve our public or third-party AI models.
Core traffic may traverse:
- Supabase: Authentication and database storage.
- Stripe: Payment and subscription telemetry.
- Anthropic, OpenAI, & Google: AI completion and processing models.
6. Data Retention
Operational logs persist on a rolling schedule for anomaly detection. Stored student-oriented artifacts persist until you manually delete them within the app or close your account. Stripe retains payment artifacts per its legal and financial compliance obligations.
7. Security
We implement industry-standard safeguards, including TLS encryption in transit and segregated access privileges. No networked system is 100% secure; therefore, please withhold highly sensitive governmental or medical information from your uploads.
8. Your Rights
Depending on your jurisdiction, you have the right to:
- Access, rectify, or export your data.
- Request the erasure of your account and associated data.
- Object to specific processing activities.
- Withdraw consent where applicable.
To exercise these rights, please email [email protected] with the subject line "Privacy Request."
9. Changes to this Policy
We may update this policy to reflect changes in our product or legal obligations. Meaningful updates will adjust the "Last updated" date above, and we will notify you of material changes via email or an in-app banner.