Privacy Policy

This Privacy Policy explains how QuestSpark (“QuestSpark,” “we,” “us,” or “our”) collects, uses, discloses, and protects information when you use the QuestSpark mobile application and the questspark.app website (together, the “Service”). QuestSpark is a family quest and reward app designed to be used on a shared device by a parent or guardian with their children.

By creating a QuestSpark account you confirm that you are a parent or legal guardian of each child profile you create, and you consent to the collection and use of your child’s limited information as described below. We designed QuestSpark to comply with the U.S. Children’s Online Privacy Protection Act (COPPA) and applicable international privacy laws.

1. The short version

• Only the parent has an account. Children have profiles on the parent’s device.
• We collect the minimum information needed to run the app — names, quest submissions, coin balances, and a device push token.
• We do not sell your data, we do not use it for advertising, and we do not use third-party analytics or tracking SDKs.
• You can delete your family’s data at any time from Settings or by emailing us.

2. Information we collect

From parents

• Account details — your name and email address (via Apple, Google, or email/password sign-in).
• Device push token — issued by Apple so we can notify you when a child completes a quest.
• Support messages — anything you send to us at djolezizou@gmail.com.

From children (with parental consent)

• Profile details — a first name or nickname you enter, the chosen Spark (avatar) color, and coin balance.
• Quest submissions — when a child submits proof of a quest, we may store a photo, short audio clip, or a simple check-in, along with a timestamp.
• We do not ask children for email addresses, phone numbers, location, or any personally identifying information beyond a chosen name or nickname.

Automatically

• Technical data — app version, iOS version, device model, and anonymous error logs used to diagnose crashes.
• QuestSpark does not collect precise location, browsing history outside the app, or contacts.

3. How we use information

• To provide the core features of the Service — creating quests, approving submissions, awarding coins, and redeeming rewards.
• To send push notifications you opt into (e.g., a kid submitted a quest).
• To keep the Service secure, detect abuse, and fix bugs.
• To respond to your questions and support requests.

We do not use any family data to train AI models, to serve advertising, or to build profiles for behavioral targeting.

4. Service providers

We rely on a small number of trusted infrastructure providers who process data on our behalf and are contractually bound to protect it:

• Google Firebase (Authentication, Firestore, Cloud Functions, Cloud Storage, and Firebase Cloud Messaging) — hosts your family’s account, data, quest submissions, and push notification delivery.
• Apple — handles sign-in with Apple and delivery of push notifications via APNs.

We do not share your data with advertisers, data brokers, or analytics vendors.

5. Children’s privacy (COPPA)

QuestSpark is a family-use app, and children under 13 may use it only under a parent’s account and supervision. Because children do not sign up themselves and cannot message or interact with anyone outside the family, the information we collect about a child is limited to what the parent chooses to enter and what the child submits as quest proof.

As the parent, you can review, edit, or delete your child’s profile and all associated data at any time from the Settings screen inside the app, or by emailing djolezizou@gmail.comwith the subject line “Child data deletion.”

6. Data retention

We keep family data for as long as the account is active. When you delete a child profile, the child’s submissions and coin history are removed from our active systems within 30 days. When you delete your parent account, all associated family data is removed within 30 days, except for limited records we’re required to keep for security, fraud prevention, or legal compliance.

7. Security

QuestSpark transmits all data over TLS-encrypted connections, and stores data at rest in encrypted Firebase infrastructure operated by Google Cloud. Access to production data is restricted to authorized members of the QuestSpark team. No system is perfectly secure, and we cannot guarantee that data will not be compromised by a breach; if that happens, we will notify affected parents promptly as required by law.

8. Your rights

Depending on where you live, you may have the right to:

• Access the personal data we hold about you and your children.
• Correct inaccurate information.
• Delete your account and all associated family data.
• Export your data in a portable format.
• Withdraw consent for push notifications (in iOS Settings) or for future data processing.

To exercise any of these rights, email djolezizou@gmail.com from the email address associated with your account.

9. International users

QuestSpark is operated from the United States. If you use the Service from outside the U.S., you understand that your data will be transferred to and processed in the United States and in other countries where our infrastructure providers operate. We take reasonable steps to ensure your data receives an adequate level of protection wherever it is processed.

10. Changes to this policy

If we make material changes to this policy, we will update the “Effective” date above and notify you in-app or by email before the changes take effect. Your continued use of the Service after a change means you accept the updated policy.

11. Contact us

Questions, concerns, or requests about this policy? Email djolezizou@gmail.com. We respond to every message a real person sends.