Skip to content
Bedtime Stories
← Back

Privacy Policy

Last updated: May 2026

Bedtime Stories for Kids (bedtimestoriesforkids.co) is operated by Tactical Marketing Pro, Houston, TX. This policy explains, in plain language, what data the site collects, how it is used, and your rights.

Anonymous usage data

When you visit, the site stores a random anonymous ID in your browser's local storage. We use it to count usage sessions and log a small set of product events: which story was started, whether it was completed, which ambient sound was chosen, and what sleep timer was set. None of this is tied to a name, an email, an account, or any other identifying information.

We do not collect cookies for advertising, do not run third-party tracking scripts, and do not embed social media trackers.

Email subscriptions

If you sign up to be notified about our app launch or new stories, we collect your email address. We use a double opt-in process: after you submit your email, you will receive a confirmation email. Your subscription only becomes active after you click the confirmation link.

We store your email, the date you subscribed, whether you confirmed, and which page you signed up from. We also record the IP address at the time of signup for abuse prevention. We do not purchase or rent email lists. Every subscriber opts in themselves.

We will email you when the app is available and occasionally about new stories. We will never send more than two emails per month. Every email includes an unsubscribe link that works immediately. Unsubscribe requests are honored within 10 business days. The unsubscribe mechanism remains functional for at least 30 days after any email is sent.

The email subscription form is for parents and guardians only. We do not collect email addresses from children.

Children under 13 (COPPA)

We do not knowingly collect personal information from children under 13. Our email notifications are intended for parents and guardians only. The site is anonymous by design.

Under the amended COPPA Rule effective April 22, 2026: no personal information from children is shared with third parties for targeted advertising. This site does not run targeted ads of any kind. This site does not share user data with third parties. This site does not serve advertising. Period.

If you are a parent and believe your child has provided personal information through this site, contact us and we will delete it immediately.

Content generation

Stories on this site are produced using a structured editorial pipeline. Some stories are generated with AI assistance and reviewed for compliance before publication. No user data, child data, or personal information of any kind is used as input to the content generation process. All stories follow strict child safety guidelines and are reviewed before publication.

Your rights

You may unsubscribe from emails at any time using the link in any email or by visiting our unsubscribe page. You may request deletion of all your data by clicking "Delete all my data" on the unsubscribe page or by emailing us directly. We will process deletion requests within 30 days.

If you are in the European Union, you have the right to access, correct, or delete your personal data under the General Data Protection Regulation (GDPR). Our legal basis for processing your email is legitimate interest: notifying parents who requested notification about a product they signed up for. You may withdraw consent at any time.

Where data is stored

All data lives on servers we operate. We do not share or sell data to third parties. We do not transfer data outside the United States except to deliver emails to recipients in other countries.

Parent and guardian accounts

You may optionally create an account so the site can recognize you on return visits. Accounts are for parents and guardians only. By signing in you confirm you are 18 or older. We do not knowingly create accounts for children under 13.

Sign-in uses a one-time email link. We never ask for or store a password. When you request a sign-in link, we record your email address, the request time, the IP the request came from, and a SHA-256 hash of the link token. The link expires after 15 minutes and can be used only once.

After you click a sign-in link, we set a single browser cookie named bsfk_session. It is HTTP-only, Secure, SameSite Lax, and contains a random session identifier (the raw token is never written to the cookie in recoverable form). The cookie lasts 30 days unless you log out. We also record the session creation time, last seen time, IP, and user agent so we can show you active sessions and revoke them if needed.

We do not use any cookie for advertising, analytics fingerprinting, cross-site tracking, or anything other than keeping you signed in. Logging out revokes the session immediately on our side and clears the cookie on your side.

We do not collect children’s names, ages, voices, photos, or any other personal information through the account. Account data is limited to the parent or guardian email address, the date the account was created, and the date the email was verified.

CAN-SPAM compliance

Every email we send includes our physical mailing address, a clear unsubscribe link, and accurate sender and subject line information. Promotional emails are identified as such. We do not use deceptive subject lines or misleading header information.

Changes

If this policy changes, we will update the "last updated" date at the top of this page and post the change on the home page for at least 30 days.

Contact

Questions, deletion requests, or COPPA inquiries: admin@tacticalmarketingpro.com

Tactical Marketing Pro
Houston, TX