ΜMathainoHome

Privacy Policy

Last updated: March 2026

1. Introduction

Mathaino is a Greek language learning platform designed for children in Kindergarten through Grade 5. We are committed to protecting the privacy of all our users, especially children. This policy explains what information we collect, how we use it, and how we protect it.

2. Information We Collect

From parents and guardians: Email address, name, and password (stored securely hashed by our authentication provider).

From children: First name only, lesson progress, and exercise scores.

We do NOT collect: Date of birth, photographs, precise location, device identifiers, social media accounts, or any information beyond what is necessary to provide the educational service.

3. How We Use Information

  • To provide the Greek language learning service
  • To track learning progress for parents and teachers
  • To process subscription payments (via Stripe)
  • To send transactional emails (account confirmations, password resets)

We NEVER use children's data for advertising, marketing, profiling, or sale to third parties.

4. Children's Privacy (COPPA Compliance)

Mathaino is designed for children under 13 and complies with the Children's Online Privacy Protection Act (COPPA).

  • We require verifiable parental consent: a parent or guardian must create the account.
  • Children cannot create accounts independently.
  • We collect minimal data from children: first name and learning progress only.
  • No children's personal information is shared with third parties for marketing or advertising.
  • Parents can review, request deletion of, or refuse further collection of their child's data by contacting support@mathaino.net.
  • Schools using Mathaino may act as the parent's agent for COPPA consent in the educational context.

5. Data Sharing

We use the following third-party services to operate Mathaino:

  • Supabase — Database hosting and authentication (US region)
  • Vercel — Web hosting (US)
  • Stripe — Payment processing (PCI compliant). Only receives parent payment data, never children's data.
  • Narakeet — Text-to-speech audio. Only Greek text is sent; no user data.
  • Resend — Transactional email. Only parent email for confirmations.

No children's personal information is shared with any third party for marketing, advertising, or any purpose other than operating the service.

6. Data Retention

Account data is retained while the account is active. Upon deletion request, all data is removed within 30 days. Payment records are retained as required by applicable law.

7. Data Security

We protect your data with encryption in transit (HTTPS) and at rest. Passwords are hashed and never stored in plaintext. We use role-based access controls to limit data access.

8. Your Rights

  • Parents can access, correct, or delete their child's data at any time.
  • You have the right to opt out of non-essential communications.
  • To exercise these rights, contact support@mathaino.net.

9. Changes to This Policy

If we make material changes, we will notify you by email. Continued use after changes constitutes acceptance.

10. Contact

Mathainosupport@mathaino.net