AskOwlo – Privacy Policy
Last updated: 16 June 2025
Welcome! We value your family’s privacy and safety. This Policy explains what data we collect, why we collect it, how we protect it, and the choices you have when you use the AskOwlo mobile app (the “App”) or visit our sites.
1. Who We Are
AskOwlo BVLijnbaansgracht 100 R2, 1016 KT Amsterdam, Netherlands
KVK: 97409618
Email: privacy@askowlo.com
We are the Data Controller under the EU General Data Protection Regulation (GDPR).
2. Key Principles
- Safety first – Features are built to protect children.
- Data minimisation – We collect only what we need.
- Parental control – Parents can review or delete child data at any time.
- Transparency – No hidden ads, trackers, or surprises.
3. What Data We Collect & Why
| Category | Examples | Why | Legal Basis |
|---|---|---|---|
| Parent account | Email, IP address | Login & essential service messages | Contract (GDPR 6-1-b) |
| Parental consent | Timestamp, text version, gate answer | Verify consent for children | Consent (GDPR 6-1-a) / COPPA |
| Child profile | Alias, birth year, gender, language | Personalise content | Consent |
| Voice input | Child’s spoken question | Generate a response; audio deleted quickly | Consent |
| Transcription & reply | Text versions of question + answer | Display & quality checks | Consent |
| App diagnostics (optional, anonymised) | Crash logs, session length | Improve stability & UX | Legitimate interest (GDPR 6-1-f) |
We do not collect precise location, advertising IDs, or contact lists.
4. How We Process Voice & Replies (High-Level)
- Your child speaks; the audio is sent via an encrypted channel to our EU data centre.
- The audio is converted to text, checked for safety, and deleted within minutes.
- The text is processed by an EU-based AI service to craft a child-friendly answer.
- The answer is converted to speech and delivered back to your device.
We keep the text question & answer for 18 months to help improve safety and learning quality.
5. Sub-Processors
To run the App we rely on a small number of specialised service providers (e.g. speech-to-text, AI processing, cloud storage) located in the European Economic Area.
All providers are bound by confidentiality agreements and Standard Contractual Clauses where necessary. A detailed list is available on request.
6. How We Protect Your Data
- Encryption everywhere (TLS 1.3 in transit, AES-256 at rest).
- Role-based internal access, protected by 2-factor authentication.
- Child-safety filters & human review for flagged content only.
- Regular security testing and rapid patching.
7. How Long We Keep Data
| Data Type | Retention Period |
|---|---|
| Parent account & consent logs | Until you delete the account + 2 years (audit) |
| Child profiles | Until deleted by parent |
| Raw audio | Automatically deleted within 60 minutes |
| Transcriptions & replies | 18 months rolling |
| Diagnostics | 18 months, then aggregated |
8. Your Rights
- Access a copy of data we hold
- Correct or delete child profiles
- Withdraw consent at any time (this disables profiles)
- Object to anonymised diagnostics
- Download a portable copy of data
Parents (and all users) can request these via in-app settings or email privacy@askowlo.com.
9. Children’s Privacy Statement
We comply with COPPA (USA) and GDPR-K (EU). We require verifiable parental consent before processing any child data. If we learn we collected data without consent, we delete it promptly.
10. International Transfers
All systems are hosted in the EU. Any future transfers outside the EEA will rely on GDPR-approved mechanisms (e.g. Standard Contractual Clauses) and you will be notified.
11. Changes to This Policy
We’ll notify you in-app or by email before significant changes take effect. If changes require new consent, we’ll ask for it.
12. Contact
Data Protection Lead: Shreef A.Email: privacy@askowlo.com
Postal: Lijnbaansgracht 100 R2, 1016 KT Amsterdam, Netherlands
Thank you for trusting AskOwlo to spark your child’s curiosity—safely and privately.