Privacy Policy — Cartoon Video

Effective: 12 May 2026
Publisher: Hiren Paghadal
App: com.cartoonvideotv.mobile
Contact: privacy@hirenpaghadal.in

No ads · No login · No data collection from kids · Parent-gated controls

The short version.

Cartoon Video is a safe-content video app designed for children. We do not collect personal information from children.
The app does not require accounts, sign-in, or any identifiable input from your child.
All child-facing settings — profile name, avatar, age group, parent PIN, favourites, watch history, blocked items — are stored locally on the device in encrypted Android preferences.
Videos play through the official YouTube IFrame embed. Watching a video means YouTube also processes that view per its own policy; we do not store the IDs you watch on our servers.
We use Firebase (Google) for crash reports, remote configuration, push notifications, and read-only catalog delivery. These services receive a Google-generated app instance ID — never your child’s name or any data you typed into the app.
Parents control everything that touches the outside world: subscriptions, content blocking, search, bedtime, and the ability to delete every profile.

1. Quick FAQ

Question	Answer
Do you collect my child’s name, photo, location, or contacts?	No.
Does the app show ads or behavioural advertising?	No.
Does the app require an account or sign-in?	No.
Is search available to my child?	Only if a parent enables it from Parent Zone. It is off by default for younger profiles.
Do you sell or share data with brokers, advertisers, or analytics resellers?	No.
Where is my data stored?	Profile data stays on the device. Crash/usage telemetry goes to Firebase (Google Cloud, multi-region).
How do I delete everything?	Parent Zone → Privacy → Delete Account, or uninstall the app.

2. Information collected off your device

The Cartoon Video app intentionally avoids sending personal data off your device. The following items are sent to Google-operated Firebase services so the app can run, be diagnosed, and stay secure:

Approved catalog reads from Cloud Firestore.We read the curated list of safe videos and categories. Your queries do not include your child’s profile or watch history.
Crash diagnostics: when the app crashes, Firebase Crashlytics receives a stack trace, the Android version, device model, and a Google-generated app-instance ID. No name, email, or content you typed is sent.
Push notification token: Firebase Cloud Messaging assigns the install a random token so we can later deliver parent-only operational messages (none are sent today).
Anonymous usage metrics via Firebase Analytics: screen views, crash rates, and broad install counts. We have not enabled advertising-id collection.
Remote configuration fetch:the app pulls feature-flag values (for example, “show subscription card”) on a periodic interval. No user data is sent in the request.
YouTube IFrame embed:when your child plays a video, YouTube receives the standard request data (the video ID, IP address, user-agent, and any cookies your browser engine has). This is governed by Google’s privacy policy.
Google Play Billing (if a parent buys a subscription): purchase tokens are exchanged with Google Play and stored on the device for entitlement reconciliation.

3. Information that stays on your device

The following items never leave the device unless you back them up to your Google account through Android’s standard auto-backup:

Child profile name(s) and chosen avatar.
Selected age group (2–4, 5–7, 8–10, 11–12).
Parent PIN — stored as a SHA-256 hash, never as plain text.
Favourites and watch history (kept local for “Continue watching”).
Blocked videos, channels, and categories.
Daily watch-time counters and bedtime window.
Premium entitlement flag and the active Play product id.

Removing the app removes all of the above. Parent Zone → Privacy → Delete Account also clears these fields immediately.

4. Why we process data

Operate the app: render the catalog, play approved videos, persist parent settings.
Diagnose bugs and crashes so we can fix them quickly.
Enforce safety controls chosen by the parent (search off, blocklists, bedtime, daily watch limit).
Process subscription payments through Google Play.
Improve the safe-content catalog (we adjust what we publish based on aggregate, non-identifying signals such as which categories are popular).

We do not profile your child, build behavioural ad segments, or share anything with marketers.

5. Third-party recipients

We only share data with the providers we technically depend on. Each is listed below with the specific category of data they receive.

Recipient	Purpose	What they receive
Google (Firebase)	Catalog, crash reporting, remote config, push, analytics	App-instance ID, crash stack traces, device model and Android version, FCM token, screen-view events
YouTube (Google)	Video playback via official IFrame embed	Standard playback request data — IP, user-agent, video ID
Google Play Billing	Subscription purchase and reconciliation	Purchase token, product ID

We do not use AdMob, third-party analytics resellers, attribution SDKs, social SDKs, or data brokers.

6. Telemetry

6.1 What is collected

Telemetry is limited to crash reports (Crashlytics) and aggregate app-usage events (Analytics) such as screen views and feature interactions. Each event carries the Google app-instance ID and device basics — never the child’s name or input.

6.2 Why

To find and fix bugs, monitor performance, and decide which features deserve more polish. We do not use telemetry for ad targeting or sell it to third parties.

6.3 Your control

You can opt out of anonymous analytics from Parent Zone → Privacy → Anonymous analytics. Crash reports remain on so we can keep the app stable; you can disable them too if you prefer.

7. Permissions

Permission	Why we need it
`INTERNET`	Fetch the safe catalog, deliver crash reports, embed YouTube videos.
`ACCESS_NETWORK_STATE`	Detect offline state so we can show the No Internet screen.

We do not request camera, microphone, contacts, location, calendar, storage, phone, accounts, or any other sensitive permission.

8. Security

All traffic to Firebase and YouTube uses HTTPS / TLS.
The parent PIN is hashed with SHA-256 before being written to encrypted DataStore preferences.
The app cannot be installed by your child without your knowledge — installation requires an authenticated Google Play account.
Adult-only flows (subscriptions, content blocking, profile deletion, report content) are gated by the parent PIN.

9. Your rights and how to exercise them

Access & portability: write to privacy@hirenpaghadal.in with the subject “Data request” and we will respond within 30 days.
Deletion:open Parent Zone → Privacy → Delete Account for an immediate on-device wipe. To delete crash and analytics records held by Firebase, email us and we will issue an app-instance ID deletion request to Google.
Withdraw consent for telemetry:Parent Zone → Privacy → Anonymous analytics.
Object / restrict / correct: same email contact above.
Complain:you can also contact your local data protection authority — for India, the Data Protection Board of India; for the EU/UK, the supervisory authority where you reside.

10. Children’s privacy

Cartoon Video is intentionally built for children. The app:

Asks for no personal information at any point.
Does not display ads, behavioural or otherwise.
Has no chat, comments, public profiles, or any way for a child to be contacted by strangers.
Restricts every external action (purchase, report content, change settings) behind a parent PIN.
Plays videos only from a manually curated, parent-approved catalog.

We comply with the Google Play Families Policy, the U.S. Children’s Online Privacy Protection Act (COPPA), the EU/UK GDPR-K rules for processing children’s data, and India’s Digital Personal Data Protection Act, 2023 (DPDP) provisions for verifiable parental consent. Parents who provide consent retain the right to revoke it at any time using the in-app deletion controls or by contacting us.

11. International transfers and legal bases

Crash, analytics, and catalog data are processed on Google Cloud infrastructure operated by Google LLC and its affiliates, including in regions outside India and the EEA. Google maintains Standard Contractual Clauses and equivalent safeguards.

EEA / UK (GDPR): our lawful bases are (a) legitimate interests for crash and diagnostic data, and (b) verifiable parental consent for any processing that concerns a child.
California (CCPA / CPRA): we do not sell or share personal information as defined by the statute.
India (DPDP): we are the Data Fiduciary and Google operates as a Data Processor; we obtain verifiable parental consent before any child-related processing.

12. Contact

Hiren Paghadal
Email: privacy@hirenpaghadal.in

For child-safety concerns or to report inappropriate content in the catalog, parents can also use the in-app Report content flow which routes directly to our review queue.

13. Updates to this policy

If we make material changes to this policy we will update the “Effective” date at the top and, where feasible, surface a notice in the Parent Zone the next time you open the app. The current version is always available at hirenpaghadal.in/cartoon-video-tv/privacy-policy.