This Privacy Policy explains what information Brighter Day ("Brighter Day," "we," "us," or "our") collects from the parents and children who use our mobile app, how we use it, who we share it with, and the choices and rights you have. Brighter Day is a video-sharing app made for children, and protecting children's privacy is central to how the product is built. Please read this policy together with our Terms of Service.
The short version. A parent controls every account. We give each child a fun nickname that is the only name other kids ever see, keep the child's real name private for the parent's use only, and never collect a birthday. Location is city-level at most — never GPS. Every video is checked by an automated safety review and approved by a parent before anyone else can see it. There is no chat or messaging between users. We show no ads, use no tracking or analytics, and never sell or share anyone's information. The full detail is below.
A note on where we are today. Brighter Day is in an invited, controlled testing phase (a "beta"). During this phase, a parent gives consent by signing in with their own Apple or Google account and explicitly confirming consent in the app. This is an honest interim method — it is not yet the identity-verified parental consent we will use at general public launch. We explain this plainly in the Children's privacy section, because we would rather be clear about it than overstate it.
1. Who we are
Brighter Day is operated by Brighter Day Media, LLC, a California limited liability company based in San Pedro, California. Brighter Day Media is the entity responsible for (the "controller" of) the personal information described in this policy.
- Privacy and legal contact: info@brighterdaymedia.com
- In-app support contact: alexandra@brighterdaymedia.com
- Company location: San Pedro, California, United States. For written inquiries, email info@brighterdaymedia.com.
This policy covers the Brighter Day app and the information we handle through it. It does not cover the separate services a parent uses to sign in — when you sign in with Google or Apple, that sign-in is governed by Google's or Apple's own privacy policy, not ours.
2. Who Brighter Day is for
Brighter Day has two kinds of users, and they are treated differently:
- Parents (adults, 18 or older). A parent creates and controls the family's account. Parents can only sign in with an existing Google or Apple account — we do not offer email-and-password registration, and we do not create passwords for parents. The parent is in control of every child account in their family.
- Children (ages 7–17). A child account can only be created by a parent. Children cannot register themselves, cannot change account settings, and cannot add other children. A family can have up to five child accounts.
3. The information we collect
We collect only what the app needs to work and to keep children safe. Here is the complete picture.
From the parent
- The name and email address associated with the Google or Apple account the parent signs in with. If a parent uses Apple's "Hide My Email" feature, we receive only Apple's private relay address, and we may not receive a name.
- Which sign-in provider was used, and a record that the parent accepted these Terms and this Policy (the date and the version they agreed to).
About each child
- A fun, auto-generated nickname (for example, "CosmicPanda42"), created from word lists on the device. This nickname is the only name other users ever see for a child.
- A separate system-generated sign-in username of the form nickname@brighterday.app, used only to log the child in.
- An age range (such as 7–9 or 13–17) — we do not collect a child's date of birth.
- An age-appropriate, automatically generated cartoon avatar. We do not collect or use a child's photograph.
- The child's real name, provided by the parent. We store this privately and use it only to help the parent identify and manage their own children. It is never shown to other users or made public.
A child's real name stays private. A parent provides their child's name so they can tell their own children apart and manage their family, and we store it privately for that purpose — it is accessible to the parent, but it is never shown to other users and is never made public. Other children only ever see the auto-generated nickname.
Family location (approximate only)
- Brighter Day places a family's videos on an interactive globe. To do this we use an approximate location at the city or country level only. We never use your device's GPS and never collect precise coordinates.
- The approximate location is derived from your device's country/region setting, or from an approximate, IP-based city lookup (typically accurate to tens of kilometres). The parent chooses the level of precision, can choose to show only the country, and can change or remove it at any time in Settings. At the most private setting, a family's pin is placed on a random major city in their country rather than their own.
Videos and the information attached to them
- The 60-second video a child records, an automatically generated thumbnail image, a required title and an optional short description the child types, and a category (pets, food, or hobbies).
- The result of our automated safety review, a view count, and — added only at the moment a parent approves a video — the family's approximate (fuzzed) location pin.
Children's in-app activity
- Watch history (which videos were viewed, the category, who created them, how long they were watched, and whether they finished), the reactions a child gives (a heart, smile, or star sticker), badges earned, and aggregate counts such as how many videos were created or watched and how many countries were seen.
Reports, security, and consent records
- Content reports: if someone reports a video, we record who reported it, which video, the reason chosen, any optional details, and the status of our review.
- Security: sign-in attempts and rate-limiting information, including the IP address involved, kept on our servers to protect accounts from abuse.
- Consent records: for each child, a record linking the parent and child, the date, the consent method, the policy version, the IP address at the time of consent, and whether consent has been revoked. This is our compliance audit trail.
What we do not collect, and a word on tracking
To be explicit, Brighter Day does not collect a child's date of birth, a child's real email address, precise GPS location, children's photographs, or any analytics or telemetry about how you use the app. (We do collect the child's name, but only for the parent's private use, as explained above — it is never public.) We do not use advertising identifiers, we do not use tracking cookies, and we do not send push notifications. Because we do not track users across other apps or websites, a browser "Do Not Track" signal has nothing to act on in Brighter Day. We collect the least information we reasonably can to run the service — a practice often called data minimization.
4. What other users can see
In plain terms: once a parent approves a video, other Brighter Day users can see the video, the child's nickname, and the country pin — and nothing else about the child.
Brighter Day is a place where children share videos with each other, so some information is meant to be seen by other users. When a parent approves a child's video, the following becomes visible to other Brighter Day users: the video itself, the child's auto-generated nickname, the video's title, description, and category, and the family's approximate country/city pin on the globe. Reactions a child gives appear to the video's creator as that child's nickname and country. Nothing else about a child — no real name, no precise location, no contact details — is ever shown to other users, and there is no way for one user to message or contact another.
Please also keep in mind that, despite our automated checks, a video is created by a child in the real world. Our safety review looks for visible personal information, but a child could still say something identifying out loud in a video. We encourage parents to watch their child's videos (which they must approve anyway) and to talk with their child about not sharing personal details.
5. How we collect it
We collect information directly from the parent (at sign-in and setup), from the child's activity in the app, and from the device — specifically the country/region setting, an approximate IP-based city lookup, and the accelerometer (used only on the device for a "shake to discover" gesture; this motion data is never stored or transmitted). We also receive your name and email from Google or Apple when a parent signs in.
6. How we use information
We use the information we collect to:
- Provide and operate the app, including showing a child age-appropriate, parent-approved content;
- Run an automated safety review on every video before anyone outside the family can see it (see Children's privacy);
- Power parental controls — mandatory approval of every video, the choice of how much location precision to share, content-visibility settings, data export, and account deletion;
- Send essential account-related email (for example, a data-export link or an account-security notice);
- Keep accounts secure (rate limiting, abuse prevention) and meet our legal and child-safety obligations (including the consent audit trail).
What we never do: we do not show advertising to children, we do not sell or share personal information, we do not use any data for targeted advertising, and we do not build advertising or behavioural profiles of children. Recommendations are not algorithmically personalised for children. And children's videos never leave the app — we do not post or use them on our own marketing pages, social-media channels, or anywhere outside Brighter Day.
7. Who we share information with
We do not sell or rent personal information, and we do not share it for anyone else's advertising or marketing. (Under California's "Shine the Light" law, we confirm that we do not share personal information with third parties for their own direct-marketing purposes.) We use a small number of trusted service providers ("sub-processors") that handle data only on our behalf and under contract, to make the app work:
- Google Firebase — authentication, database, file storage, and server functions (our core infrastructure).
- Google (Gemini API) — performs the automated safety review of each video, acting only as our service provider for that purpose.
- Google Identity and Apple — to let a parent sign in with their existing Google or Apple account.
- Railway — hosts the server that runs our moderation service (United States).
- Email delivery — essential transactional email (such as a data-export link or a security notice) is sent using Firebase's "Trigger Email from Firestore" extension.
- An approximate IP-geolocation provider (ipapi.co) — turns an IP address into an approximate city, used only to set the globe location.
We may also disclose information if required by law, to respond to lawful requests, to protect the safety of a child or another person, or as part of a business transfer (for example, a merger or acquisition, in which case information may be among the transferred assets) — in each case consistent with our obligations to children. We require each provider to protect personal information to a standard at least as protective as this policy.
8. Children's privacy and parental consent (COPPA)
Brighter Day is designed for children, and we follow the U.S. Children's Online Privacy Protection Act ("COPPA") and other applicable children's-privacy laws. The core of our approach is that a parent is always in control:
- Only a parent can create a child account, and only a parent can change settings, approve content, or delete data. Children cannot self-register.
- Every video a child records must pass our automated safety review and be explicitly approved by the parent before anyone outside the family can see it.
- A parent can review and revoke consent at any time, which immediately restricts the child's account.
How we obtain consent during the current beta — stated plainly. Right now, a parent provides consent by signing in with their own authenticated Apple or Google account and then explicitly confirming consent in the app. We do not currently use an identity-verification step, so this is best understood as interim parental consent for a small, invited, controlled test group — not the full "verifiable parental consent" that the law contemplates for a public service. We are implementing identity-verified parental consent (for example, government-ID and selfie matching) before Brighter Day is offered to the general public. We are being deliberately clear about this rather than claiming a level of verification we have not yet built.
Unlike many child-directed services, Brighter Day does knowingly collect information from children — their videos and in-app activity — but only after a parent has set up the account and given consent. We practise data minimization for children: we collect an age range rather than a birthdate, show each child to others only by an auto-generated nickname (a child's real name is kept private and used only by the parent), and keep location at the city or country level. We never show advertising to children and never sell their information. A parent can export or delete their child's data at any time, as described below.
9. International users and your regional rights
In plain terms: families in many countries are welcome, but our servers are in the United States, so your information is processed there. If you are in the EU/EEA, the UK, or Switzerland, you have specific data rights, listed below.
Brighter Day's testing phase is open to invited families in multiple countries. Our servers and service providers are located in the United States, so if you use Brighter Day from outside the United States, your information will be transferred to and processed in the United States, whose data-protection laws may differ from, and may be less protective than, those of your home country. By using Brighter Day, you understand and consent to this transfer. We apply the same child-protection practices described in this policy to all children, regardless of where they live.
Automated safety review and human involvement
Our safety review uses automated technology (Google's Gemini service) to flag unsafe videos. This is an automated step, but it is never the final word on its own: a video our system clears still requires a parent's explicit approval before it is visible, and a video our system flags can be re-recorded and resubmitted. A human — the parent — is always in the loop, and you can contact us at info@brighterdaymedia.com about any moderation decision.
If you are in the European Economic Area, the United Kingdom, or Switzerland
Where the EU/UK General Data Protection Regulation ("GDPR") applies, Brighter Day Media is the data controller. We process personal data on the following legal bases: to perform our agreement with you (providing the service); to comply with legal obligations (including child-safety law); our legitimate interests in operating and securing the service, balanced against your rights; and your consent, which you may withdraw at any time. Subject to the conditions in the law, you have the right to: access a copy of your personal data; have it corrected; have it deleted; restrict or object to our processing; receive your data in a portable form; and withdraw consent. You also have the right to lodge a complaint with your local data-protection authority (for example, the UK Information Commissioner's Office). To exercise any of these, email info@brighterdaymedia.com; we may need to verify your identity, and we will respond within the time the law requires. Full GDPR and UK Children's Code compliance measures are being put in place ahead of our general public launch.
10. Your rights and choices
Parents control their family's data and can exercise these rights from within the app or by contacting us:
- Access and export. A parent can request an export of a child's data. We email a secure download link that expires after 30 days. The export includes the child's profile, videos, reactions, watch history, activity, badges, consent records, and any reports.
- Correction. A parent can edit account settings, the display details, and the location precision in the app.
- Deletion. A parent can delete an individual child account, or delete their own account — which also deletes all of their children's accounts — directly in the app. See retention for what happens next.
We may ask you to verify your identity before acting on a request, to protect your family's data, and we aim to respond within 30 days.
California residents (CCPA/CPRA)
We do not sell or share personal information, including the personal information of consumers under 16, and we do not use personal information for cross-context behavioural advertising. Because we do not sell or share, there is no "opt out of sale" to exercise — but you always have the access, export, and deletion rights described above, and we will not discriminate against you for exercising them.
11. California Age-Appropriate Design Code
Brighter Day is built with privacy-protective defaults for children: location is capped at the city or country level with no GPS, every video is reviewed and parent-approved before it is visible, we do not use manipulative or "dark pattern" designs, we do not algorithmically profile children, and a parent has full control over the account.
12. How long we keep information
We keep information only for as long as we need it for the purposes described in this policy. In practice:
- Account and child information, videos, and activity: kept while the account is active. When a parent deletes a child account or their own account, we carry out a comprehensive deletion across our systems, normally completed within 30 days. Stored video files are moved to a protected area and permanently purged after a 30-day window.
- Security and sign-in logs (including IP addresses and records of failed sign-in attempts): kept only as long as needed for abuse prevention and account security, and automatically deleted within 30 days.
- Consent and deletion/export records: kept as our compliance audit trail (a revoked-consent record is retained to show consent was properly handled).
We do not currently run automatic deletion of inactive accounts; we will update this policy if that changes. Information may persist briefly in routine backups before it ages out.
13. How we protect information
- All traffic is encrypted in transit (HTTPS), and data stored on our infrastructure is encrypted at rest.
- A child's sign-in password is generated on the parent's device and stored only in the device's secure Keychain (on iOS) or Keystore (on Android). It is never written to our database — our security rules structurally prevent any password from being saved to a user record.
- Access to data is restricted: each user's stored files are isolated from other users, and our database security rules and access controls limit who and what can read or write each record.
- We apply server-side rate limiting and account-lockout protections, keep audit trails, and enforce the content-approval gate and automated moderation on our servers (so they cannot be bypassed by the app).
No system is perfectly secure, and we cannot guarantee absolute security, but we work to protect personal information using measures appropriate to its sensitivity and to the fact that it concerns children.
14. If there is a data breach
If a data breach affects personal information we hold, we will act on it promptly. We will notify affected users and, where the information concerns children, notify parents by email. Where the law requires it, we will also notify the appropriate authorities — including, as applicable, the U.S. Federal Trade Commission, state regulators under data-breach-notification laws, and EU/UK data-protection authorities within the time those laws require (the GDPR generally requires notice to the relevant authority within 72 hours). We maintain procedures to detect, contain, and respond to security incidents.
15. Changes to this policy
If we make a material change to this policy, we will notify you in the app or by email, and where appropriate we will ask a parent to review and re-confirm consent (our consent records are versioned for this reason). The "Effective date" at the top shows when the current version took effect. The protections in this policy continue to apply to information we already hold even after you stop using Brighter Day.
16. How to contact us
If you have any question about this policy or your family's data, or if you want to exercise any of your rights, contact us at info@brighterdaymedia.com. For help inside the app, you can also reach support at alexandra@brighterdaymedia.com.