Privacy Policy
Draft for legal review. This policy is a template aligned with our current product design. A qualified attorney or privacy professional should confirm it matches your actual practices, regions, and laws (including GDPR, UK GDPR, COPPA, and U.S. state privacy laws).
1. Who we are
This Privacy Policy describes how we collect, use, and share information when you use Lock the Goal("Service"). For privacy requests, contact: mail@lockthegoal.com.
2. Information we collect
Account and profile. Email address, password (stored hashed), display name, age, country, region (optional), grade level, subject interests, career exploration data, learning progress, chat messages you send within the Service, and similar information you choose to provide.
AI interactions. When you use KAI or other AI features, we send relevant prompts and context to our AI providers (for example Google Gemini) to generate responses. Do not submit sensitive personal data you do not want processed for this purpose.
Technical data. IP address, device/browser type, approximate location derived from IP, timestamps, and diagnostic logs needed to operate and secure the Service.
3. How we use information
- Provide, maintain, and improve the Service;
- Authenticate you, send verification and transactional emails, and respond to support requests;
- Enforce our Terms, prevent abuse, and protect safety and security;
- Comply with legal obligations;
- Analyze aggregate or de-identified usage to improve the product.
4. Legal bases (where applicable)
If GDPR or similar laws apply, we may rely on performance of a contract, legitimate interests (such as security and product improvement), consent where required, and legal obligation.
5. Sharing
We use service providers (for example cloud hosting, database, email delivery, and AI APIs) that process data on our behalf under appropriate agreements. We may disclose information if required by law or to protect rights, safety, and security. We do not sell your personal information for money as commonly defined in U.S. state "do not sell" laws; we do not use your data for third-party behavioral advertising as described in those laws unless we notify you and offer required choices.
6. Retention
We keep information while your account is active and for a reasonable period afterward for backups, security, and legal compliance. Deleted accounts may be archived for a limited period as described in our account deletion flow before purge. Specific retention periods should be finalized with counsel.
7. Security
We use reasonable technical and organizational measures to protect information. No method of transmission or storage is 100% secure.
8. Children
The Service is designed for users age 14 and older (as reflected in our registration flow). We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided data, contact us and we will take appropriate steps.
9. International transfers
We may process data in the United States and other countries where we or our providers operate. Where required, we use appropriate safeguards for cross-border transfers.
10. Your rights
Depending on where you live, you may have rights to access, correct, delete, or export your data, or to object to or restrict certain processing. Contact mail@lockthegoal.com to make a request. You may appeal or complain to a supervisory authority where applicable.
11. Cookies and similar technologies
We use cookies or local storage as needed for login sessions and preferences. We do not use invasive cross-site tracking for advertising unless we disclose otherwise and comply with applicable law.
12. Changes
We may update this policy. We will post the revised policy and revise the effective date. Where required, we will provide additional notice.
13. Contact
Privacy questions: mail@lockthegoal.com