Privacy Policy

The types of personal data we collect depend on how you use our services. We may collect data directly from you (for example, when you fill in a form) and automatically (for example, basic technical data needed to display pages securely).

Typical categories include: parent/guardian name and contact details; limited child information needed for course placement (such as age group); communication history with support; and technical data such as device type and approximate location derived from IP address.

Kids' Smart is designed for children aged 5–16, but our services are managed through parents or guardians. We ask parents/guardians to provide consent where required and to supervise account creation and communications.

We minimise the child data we collect. In many cases, an age band is sufficient to place a child in an appropriate course. If a lesson requires sharing a child’s work (such as a drawing or a coding project), sharing is limited to the class environment and the parent account, depending on the course setup.

We do not request sensitive categories of data (such as health information). Please do not submit sensitive personal information through the contact form.

When the UK GDPR applies, we process personal data under one or more lawful bases, depending on the activity:

• Contract: to provide courses and related support.
• Legitimate interests: to keep the platform secure, prevent abuse, and improve service quality.
• Consent: for optional analytics cookies and certain communications when required.
• Legal obligations: to comply with applicable laws and requests from authorities where valid.

We may share personal data with trusted service providers (processors) who help us operate the website and deliver lessons, such as hosting providers, email delivery services, and customer support tools. These providers are required to protect data and use it only according to our instructions.

We may also share data when required to comply with the law, to protect our users, or to prevent fraud and abuse. We do not sell personal data.

We use administrative, technical, and organisational measures designed to protect personal data. This includes access controls, account security features, and monitoring for misuse.

No method of transmission or storage is completely secure. If you believe your account has been compromised, contact us promptly.

Depending on your location and applicable law, you may have rights to access, correct, delete, or restrict the processing of your personal data, as well as to object to certain processing and request portability.

To submit a request, email [email protected]. We may ask for information to verify your identity and your relationship to the child account.

If you are in the UK, you may also lodge a complaint with the Information Commissioner’s Office (ICO).

Cookies are small text files stored on your device. We use essential cookies to operate the site, such as remembering basic preferences. Optional analytics cookies may be used to understand how parents use the site so we can improve navigation and content.

You can choose to accept or reject optional cookies in the cookie banner. Your choice can be changed by clearing your browser storage for this site.

We keep personal data only as long as necessary for the purposes described in this policy, including delivering services, meeting legal obligations, resolving disputes, and enforcing agreements.

Retention periods vary based on the type of data, course participation, and support needs. When data is no longer needed, we take steps to delete or anonymise it.