Privacy Policy

1. Data we collect

We collect information you provide directly, information created while using LilMuseum, and limited technical data needed to operate and secure the service.

This may include:

• Account details such as name, email address, consent records, and short-lived one-time sign-in challenge records.
• Authentication data linked to supported sign-in providers such as Google or Apple.
• Child profile details, artwork images, titles, descriptions, tags, collections, and gallery settings.
• Temporary pre-account gallery data if you use our deferred upload flow, including uploaded artwork, gallery/session identifiers, and the child or artwork names you enter before creating an account.
• Invite and collaborator information, including invited email addresses and access role details.
• Signup access details, including temporary signup pause controls and invite token usage when those features are enabled.
• Subscription and plan metadata, including billing status and Stripe customer references if billing is enabled.
• Technical data such as session identifiers, browser metadata, device or request information, and error reports.

2. How we use data

We use personal data to provide and secure LilMuseum, including to create and manage accounts, authenticate users, run private galleries, store and process uploaded artwork, send service emails, enforce plan limits, manage subscriptions, and respond to support or operational issues.

We also use data to detect, prevent, and investigate abuse, fraud, security incidents, and violations of our Terms of Service, including content moderation and enforcement actions.

3. Moderation and safety processing

Uploaded artwork may be reviewed by automated moderation systems and related internal workflows to determine whether content is safe and appropriate for the service. While review is pending, content may be quarantined and not displayed.

We may use moderation results and related account activity to remove content, reject uploads, suspend features, or ban accounts that violate our rules or present safety, legal, or abuse risks.

4. Sharing and processors

We do not sell personal data. We share data only with infrastructure and service providers required to run LilMuseum, under appropriate safeguards.

Depending on the features enabled, these providers may include:

• Hosting, database, and object storage providers used to run the app and store artwork files.
• Email delivery providers used for sign-in codes, invitations, and other transactional messages.
• Stripe for subscription checkout, billing, and customer portal functionality.
• Google or Apple when you choose to use their sign-in services.
• Analytics providers such as Plausible, which we use to understand site usage and product interactions.
• Meta, when Meta ad measurement is enabled for your region and preference settings on the landing page and selected signup or onboarding pages.

We may also disclose information if required by law, to protect rights and safety, or in connection with a merger, acquisition, financing, or asset transfer.

5. Cookies and session data

LilMuseum uses essential cookies and similar session mechanisms to keep you signed in, protect your account, support guest or deferred gallery flows, and make core parts of the service work. These technologies are necessary for functionality and security.

We use Plausible Analytics across LilMuseum, including the public landing page, to measure visits, pageviews, and product interactions. Plausible receives limited usage data such as page URLs and event metadata.

We use Meta Pixel for ad measurement on the public landing page and on selected signup or onboarding pages connected to registration attribution, including first-child onboarding and deferred-claim completion flows. When enabled, Meta may receive limited browser and device information such as page URL, browser metadata, IP-derived location, and first-party Meta attribution cookies like _fbc and _fbp.

We enable this measurement only for the countries where we actively run Meta ads. In the UK, Canada, and Australia, we ask before enabling it. In the United States, you can opt out at any time using the "Do Not Sell or Share My Personal Information" link in the footer. We also configure Meta Limited Data Use using Meta's geolocation controls to limit processing where applicable.

If you use our deferred upload flow before creating an account, we also create a temporary low-privilege session so you can preview a gallery and later claim it after signup. That flow may temporarily store limited data in your browser, including the child name you entered and a short-lived signup attribution flag insessionStorage, alongside the server-side temporary gallery session.

We may also process limited request metadata and browser information for fraud prevention, debugging, and reliability monitoring, including frontend error reports you trigger while using the app.

6. Retention and deletion

We keep data only as long as needed for service operation, legal obligations, and security. You can request deletion by contacting us or, where available, using account deletion features in the app.

If you delete your account, core account records are removed and stored artwork files are deleted asynchronously by background jobs. If you delete an individual artwork, it is hidden immediately and the image file is permanently removed within 7 days. We may retain limited records for legal compliance, billing, fraud prevention, enforcement, and security purposes.

Temporary deferred-upload sessions and unclaimed guest galleries are retained only for a limited period needed to operate that flow. These sessions currently use approximately 24-hour server-side expiry windows and may be renewed while you remain active; if you create an account and claim the gallery, the claimed content becomes part of your normal account data.

7. Children's information

LilMuseum is intended to be used by adults managing children's artwork. We expect a parent, guardian, or other authorized adult to provide any child-related information uploaded to the service.

If you believe information about a child was provided without proper authorization, contact us and we will review the request.

8. GDPR and EEA/UK rights

If you are in the EEA or UK, you may have rights to access, correct, delete, export, or restrict processing of your personal data, and to object to certain processing activities.

To exercise these rights, contact [email protected].

9. US state, Canadian, and Australian privacy choices

Depending on where you live, you may have rights to opt out of certain advertising-related disclosures or sharing, withdraw consent, or request access to or deletion of personal information. You can use the "Do Not Sell or Share My Personal Information" footer link to change your Meta measurement preference at any time, or contact us using the details below.

10. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in LilMuseum, our providers, or legal requirements. The updated version will be posted on this page with a revised "Last updated" date.

11. Contact

Privacy questions can be sent to [email protected].