Privacy Policy

Last updated: March 1, 2025  ·  Effective: March 1, 2025

Blockling Academy (“Blockling,” “we,” “our,” or “us”) is committed to protecting your privacy and the privacy of children who use our platform. This Privacy Policy explains how we collect, use, and protect information when you use our mobile app and website (collectively, the “Service”).

We do not sell personal information to third parties — ever.

1. Information We Collect

Information You Provide

• Account registration: display name, email address, password (hashed), and account type (child or adult).
• Parent/guardian information: email address and contact details provided during parental consent for child accounts.
• Profile preferences: avatar selection, daily learning goal, and notification preferences.

Information Collected Automatically

• Learning progress: lessons completed, quiz answers, XP earned, streaks, and review history.
• Usage data: features used, time spent in the app, and lesson interaction events.
• Device information: device type, operating system version, and app version — used for debugging and compatibility.
• Error reports: crash logs and error stack traces sent to our error tracking service (Sentry), which are anonymized where possible.

Information We Do Not Collect

• We do not collect precise geolocation data.
• We do not collect photos, contacts, or microphone/camera data.
• We do not use third-party advertising SDKs or behavioral ad tracking.

2. How We Use Your Information

• To provide, maintain, and improve the Service.
• To personalize the learning experience (adaptive difficulty, review scheduling).
• To track learning progress and award XP, streaks, badges, and league standings.
• To issue NFT course completion certificates on the Solana blockchain (for eligible users).
• To send optional weekly progress emails to parents (only if enabled).
• To diagnose technical issues and improve app stability.
• To comply with legal obligations.

3. Children's Privacy (COPPA)

• Children under 13 require parental consent. A parent or legal guardian must create the account and provide consent before a child can use the Service.
• We collect only the minimum information necessary for children to use the Service.
• We do not display behavioral advertising to children.
• We do not allow children to share personal information publicly.
• Parents may review, update, or delete their child's information at any time by contacting us at privacy@blockling.io.
• Parents may request that we stop collecting information about their child by deleting the account through the app's settings or by contacting us.

4. How We Share Information

We do not sell, rent, or trade your personal information. We may share data with:

• Supabase: Our database and authentication provider. Data is stored in US-based servers (USA). See Supabase Privacy Policy.
• Sentry: Error tracking. Crash reports may include device info and anonymized stack traces. See Sentry Privacy Policy.
• Solana blockchain: NFT certificate metadata (course completion data) is written to the public Solana blockchain. Do not include sensitive personal data in display names if you wish to mint certificates.
• Law enforcement: If required by applicable law or valid legal process.

5. Data Storage and Security

• Data stored in USA (Supabase) on servers located in the United States.
• All data is transmitted over encrypted HTTPS connections.
• Passwords are never stored in plain text; they are hashed using industry-standard algorithms.
• We apply Row Level Security (RLS) policies so users can only access their own data.
• We conduct regular security reviews of our infrastructure.

6. Data Retention

• Account data is retained as long as your account is active.
• If you delete your account, we will delete or anonymize your personal information within 30 days, except where we are required to retain it by law.
• Aggregated, anonymized analytics data (with no personally identifiable information) may be retained indefinitely for product improvement.
• Blockchain records (NFT certificates) are permanent by nature of the Solana network and cannot be deleted once issued.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal information we hold about you.
• Request correction of inaccurate data.
• Request deletion of your account and associated data.
• Opt out of non-essential communications.
• File a complaint with your local data protection authority.

To exercise any of these rights, contact us at privacy@blockling.io.

8. Cookies and Tracking

Our website uses only essential cookies required for authentication and session management. We do not use third-party advertising cookies or cross-site tracking technologies. The mobile app does not use browser cookies.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by emailing the address associated with your account or by displaying a notice in the app. Continued use of the Service after the effective date of any changes constitutes your acceptance.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, contact us: