Privacy Notice

Effective date: April 1, 2026

Duerme Now is a service operated by its owner, an individual entrepreneur based in Colima, Colima, Mexico (hereinafter "we", "us", or "the Controller"). We are responsible for the processing of personal data you provide to us, in accordance with Mexico's Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP). If you are located in the European Union, this notice also addresses the requirements of the General Data Protection Regulation (GDPR).

1. Personal data we collect

a) Account data (parent or guardian): email address, name (optional), Google account ID (only if you sign in with Google), and Stripe customer ID (created when you subscribe).

b) Child profile data: name, age, gender (optional), interests, favorite characters, preferred language, and profile avatar (optional). This data is provided voluntarily by the parent or guardian.

c) Usage and generated content: created stories (title, text, summary, theme, mood, length, language, selected voice), generated audio files, daily context provided by the parent or guardian (max. 200 characters), and session language preference.

We do not collect credit card or banking information. Payments are processed directly by Stripe, Inc.

2. Purposes of processing

Primary purposes (required to provide the Service):

  • Creating and managing your user account.
  • Generating personalized bedtime stories using artificial intelligence.
  • Generating narrated audio of stories using voice synthesis.
  • Processing and managing subscription payments.
  • Sending access links and account-related notifications.

Secondary purposes (not required for the Service):

  • Improving the quality and operation of the Service through aggregated and anonymized usage analysis.

We do not use your personal data for targeted advertising, third-party marketing, or commercial profiling.

3. Children's data

The Service is designed for parents or legal guardians to create profiles for their children. Child profile data (name, age, gender, interests, and favorite characters) is used exclusively to personalize the generated stories. This data is transmitted to third-party AI services solely for this purpose. We do not sell, freely transfer, or use children's data for advertising. The parent or guardian is responsible for the accuracy of the data provided and for supervising the minor's use of the Service.

4. Third-party data transfers

To operate the Service, we share data with the following providers:

  • Anthropic, PBC (Claude API, USA): receives the child's name, age, gender, interests, favorite characters, and daily context to generate the story text.
  • Google Cloud (Text-to-Speech API, USA): receives the story text in SSML format to generate narrated audio.
  • Google LLC (OAuth, USA): if you sign in with Google, we receive your email address, name, and Google account ID.
  • Stripe, Inc. (USA): processes subscription payments. Receives your email address and name to create your customer profile.
  • DigitalOcean, LLC (USA): infrastructure provider hosting the Service's server and database.

All transfers are governed by confidentiality agreements or service terms that protect your data. Since our providers are located in the United States, your data is transferred internationally. By using the Service, you expressly consent to these transfers.

5. Your rights

Mexican residents: you have the right to Access, Rectify, Cancel, or Object to the processing of your personal data (ARCO rights).

EU/EEA residents (GDPR): you also have the right to data portability, restriction of processing, and to lodge a complaint with your local data protection authority.

To exercise any of these rights, email us at hola@duerme.now with your full name, registered email address, and a description of your request. We will respond within 20 business days (Mexico) / 30 calendar days (EU).

6. Data retention

We retain your personal data while your account is active. If you request account deletion, we will delete or anonymize your personal data and associated child profiles within 90 calendar days of receiving your request, unless the law requires us to retain it for a longer period.

7. Security

We implement technical and organizational measures to protect your data, including: encryption in transit (HTTPS/TLS), secure storage of authentication tokens, and restricted access to personal data on a need-to-know basis.

8. Changes to this notice

We may update this Privacy Notice. The current version will always be available on this page with the last updated date. Continued use of the Service after changes are published constitutes your acceptance.

9. Contact

For privacy-related questions or requests, contact us at hola@duerme.now.