StoryToon Logo

Security at StoryToon

Protecting your data and your children's information is our top priority

Our Security Commitment

At StoryToon, we understand that parents trust us with sensitive information, including photographs of their children. We take this responsibility extremely seriously and have implemented comprehensive security measures to protect your data at every level of our infrastructure.

Our security approach follows industry best practices and is regularly reviewed by independent security experts. We believe in transparency about our security practices to help you make informed decisions about using our service.

Data Protection Measures

Encryption

All data, including photos and user information, is encrypted both in transit (using TLS 1.3) and at rest (using AES-256 encryption). This ensures your information remains protected at all times.

Secure Infrastructure

Our application is hosted on secure cloud infrastructure with multiple layers of protection, including firewalls, intrusion detection systems, and regular security audits.

Limited Data Retention

We only store your photos for as long as necessary to create cartoon avatars. Original photos are automatically deleted after processing, with only the transformed cartoon versions retained.

Access Controls

We implement strict access controls and authentication mechanisms to ensure only authorized personnel can access our systems, with all access logged and monitored.

Child Data Protection

As an application designed for children, we adhere to the highest standards for protecting children's data:

  • We comply with the Children's Online Privacy Protection Act (COPPA) and similar international regulations
  • Parental consent is required before collecting any information from children under 13
  • We collect only the minimum data necessary for the app's functionality
  • Parents have complete control over their children's data, including the right to review and delete it
  • We never use children's data for advertising purposes

Security Certifications and Compliance

Our security practices are aligned with industry standards and regulations:

SOC 2 Type II

Certified for security, availability, and confidentiality

GDPR Compliant

Meeting European data protection standards

COPPA Certified

Compliant with children's online privacy protection

Ongoing Security Practices

  • Regular Security Audits: We conduct comprehensive security audits and penetration testing by independent security firms.
  • Vulnerability Management: We maintain a robust vulnerability management program to identify and address potential security issues.
  • Security Training: All StoryToon employees undergo regular security awareness training.
  • Incident Response: We have a detailed incident response plan to quickly address any potential security events.
  • Continuous Monitoring: Our systems are continuously monitored for suspicious activities or unauthorized access attempts.

Responsible Disclosure Program

We welcome security researchers to help us maintain the highest security standards. If you discover a potential security vulnerability, please report it to us at wabane9077@daupload.com.

We are committed to:

  • Acknowledging receipt of your vulnerability report within 24 hours
  • Providing timely updates about our progress addressing the issue
  • Notifying you when the vulnerability is fixed
  • Recognizing your contribution (with your permission)

Contact Our Security Team

If you have any questions or concerns about our security practices, please contact our dedicated security team:

  • Email: wabane9077@daupload.com
  • For sensitive security matters: PGP key available on our security page