The short version:Squiggle is built for kids ages 3–6. We don’t collect personal information about your child. We don’t run third-party trackers. Drawings stay on the iPad. The longer version is below.
What information stays on the iPad
When you set up a profile, you tell Squiggle two things: your child’s age (a number from 3 to 6) and, optionally, their name. The age is used by the drawing engine to scale sketch complexity. The name appears in the “Hi, [name]” greeting on the home screen. Nothing more.
Everything your child creates — drawings, scenes, stickers — is saved on the iPad only. We do not sync it, back it up, or transmit it anywhere.
If you choose to back up the iPad through iCloud, Apple’s normal iCloud backup terms apply. That backup happens between your iPad and your Apple ID — Squiggle is not involved.
What our servers see
The Squiggle library is a curated collection of drawings hosted on our server. When the app fetches new drawings, our server receives normal HTTP request metadata: an IP address, a user agent, and the IDs of the drawings requested.
We do not link these requests to any user identity, account, or device ID. Server access logs are kept for up to 30 days for operational debugging (e.g., catching error spikes), then automatically deleted.
If you subscribe to the Family plan
The Family plan is sold through the Apple App Store. Apple handles the payment. We receive a subscription receipt and your Apple subscription identifier — which we use only to validate your subscription and unlock the paid features.
We do not link this subscription information to your child’s profile.
What we don’t do
- No third-party analytics on the child profile.
- No ad networks, advertising SDKs, or in-app advertising.
- No social SDKs (Facebook, Google, etc.).
- No third-party trackers of any kind.
- No biometric data collection.
- No location data collection.
- No accounts, email signup, or passwords.
Children’s privacy
Squiggle is designed for kids ages 3–6 and complies with the U.S. Children’s Online Privacy Protection Act (COPPA), the EU’s General Data Protection Regulation (GDPR), and similar children’s privacy regulations worldwide.
We do not knowingly collect personal information from children. The profile information your child enters (age and optional name) lives entirely on the iPad — we never receive it.
If you believe your child has provided us personal information by some means we did not anticipate, please email hi@squigglepad.com and we will investigate and delete it.
Data security
Because we do not collect or store personal information server-side, there is almost nothing for us to protect — by design.
Our library server uses standard TLS encryption for all traffic, the API is rate-limited to prevent abuse, and we follow industry-standard security practices for the infrastructure we run.
Sharing
We do not sell, share, or rent personal information to anyone. We have no advertising or data partners.
The only third party involved in the Family plan is Apple, which handles the App Store transaction.
Your rights
You can stop using Squiggle at any time. Deleting the app removes all data — there is no server-side data to request, export, or delete.
If you have questions about your rights under GDPR, CCPA, or other regional privacy laws, email hi@squigglepad.com and we will respond within 30 days.
Changes to this policy
If we change this policy in a meaningful way, we will update the “Effective” date at the top and announce the change inside the app before it takes effect. Minor wording and formatting changes will not bump the effective date.
Contact
Privacy questions: hi@squigglepad.com
Anything else: hi@squigglepad.com
Squiggle, Inc.