Tiny Tools for Big Feelings

Trust & Compliance

Privacy Policy

Last updated: May 2, 2026

Our commitment to children and families

Tiny Tools for Big Feelings is built specifically for children ages 3–8 and the educators and families who serve them. We design every feature with FERPA, COPPA, and state student-privacy laws in mind. We do not sell student data. Ever.

What we collect

From district & educator users: name, work email, district name, role, and any information voluntarily submitted through forms or demos.

From students: we minimize student data collection. Where required for program operation, we collect only what is necessary (e.g., aggregated, de-identified engagement data) and only with district authorization.

Automatically: standard server logs (IP, browser, page visited) used for security, debugging, and aggregate analytics. We do not use third-party advertising trackers.

How we use information

  • To deliver and improve the educational service
  • To respond to district and educator inquiries
  • To produce de-identified, aggregate reports for districts
  • To meet legal, safety, and security obligations

We never use student data to target advertising.

FERPA & COPPA compliance

We act as a "school official" under FERPA when serving districts and use student information only for authorized educational purposes. For users under 13, we comply with COPPA by collecting only what is necessary for the educational service, with verifiable school or parental consent obtained by the district.

Sharing & third parties

We share information only with vetted infrastructure providers (hosting, database, email) under contractual confidentiality. We do not sell information. We do not share information for marketing purposes. We may disclose information when required by law.

Data retention & deletion

District lead inquiries are retained while the relationship is active. Districts may request deletion of their data at any time by emailing tinytoolsforbigfeelings@outlook.net. We delete data within 30 days of a verified request, except where law requires retention.

Security

We use encryption in transit (HTTPS), encryption at rest, role-based access, and row-level database security to protect information. No system is perfectly secure, but we follow industry-standard practices for early-childhood education platforms.

Your rights

You may request access to, correction of, or deletion of personal information at any time. Parents and guardians may request review or deletion of their child's information through the child's school district.

Contact

Questions? Email tinytoolsforbigfeelings@outlook.net. We respond within one business day.

Note: This policy is provided as a starting template. We recommend having qualified legal counsel review and customize it for your specific data practices before signing district contracts.