Privacy Policy
How MissPoppins, Inc. collects, uses, discloses, and protects your personal information.
- Who we are and what this Policy covers
- A note about your children's information
- Definitions
- Categories of personal information we collect
- Sensitive personal information
- How we share personal information; sale and "share"
- Advertising partners and opt-out resources
- Cookies and similar technologies
- AI-assisted features and sub-processors
- Information you provide about your children
- Data retention
- Your privacy rights
- State-specific addendum
- Update your information
- Security
- Recording of Sessions
- Notice at collection
- Changes to this Policy
- Contact
Who we are and what this Policy covers
This Privacy Policy describes how MissPoppins, Inc., a Delaware corporation, collects, uses, discloses, and protects personal information of users of misspoppins.io, expert.marypoppins.io, the Motherboard coach dashboard, the MissPoppins mobile applications, and related services (the "Services"). It applies in the United States only.
For privacy questions or to exercise rights, email us at ask@misspoppins.io.
A note about your children's information
How we treat information about your children. MissPoppins is built for parents, caregivers, and other adults. Children do not create accounts. You may choose to share information about your children to help your Coach support you. We treat that information with heightened care:
- We use it only to provide the Services.
- We do not sell it.
- We do not share it for cross-context behavioral advertising.
- We do not use it to train third-party AI models.
- We contractually prohibit our AI sub-processors from training on it.
- We keep it only as long as needed.
- You can review or delete it at any time.
Details are in Section 10. If you learn that a child has provided us with personal information in violation of this Policy, please alert us immediately at ask@misspoppins.io and we will promptly delete it.
Definitions
"Personal information" means information that identifies, relates to, or could reasonably be linked with a particular individual or household.
"Sensitive personal information" or "SPI" has the meaning given by the California Privacy Rights Act (Cal. Civ. Code Β§1798.140(ae)) and equivalent state laws.
"Sale" and "share" have the meanings given by California law and similar state laws.
Categories of personal information we collect
We collect the following CCPA categories:
| Category | Examples |
|---|---|
| Identifiers | Name, email, phone, account ID, IP address. |
| Customer Records | Mailing address, payment info processed by our payment processor. |
| Commercial Information | Subscription history, sessions purchased. |
| Internet or Network Activity | Device, browser, pages viewed, referral source. |
| Geolocation | General, from IP. We do not collect precise geolocation by default. |
| Audio, Video, Electronic | Session recordings if you opt in to recording; chat messages. |
| Professional or Employment | Coach side: credentials, license claims, work history. |
| Inferences | For example, topic interests for matching parents with coaches. |
| Sensitive Personal Information | Account login credentials; health-related information that you choose to share, including children's developmental and behavioral information; racial or ethnic origin and sex / gender identification (only if you choose to provide these in the optional demographic fields). |
4.1 Sources
Sources of personal information include: directly from you, from Coaches you interact with, from Sponsors who verify your eligibility, from cookies and SDKs, from payment processors, from background-check vendors (Coach side), and from publicly-available third-party sites as described in Section 4.4.
4.2 Purposes
We use each category for: providing and operating the Services; matching parents with coaches; processing payments and subscriptions; communicating with you about your account; providing customer support; security, fraud prevention, and trust and safety; analytics and product improvement; legal compliance and dispute resolution; marketing of MissPoppins's own products and services (with your separate opt-in for marketing emails and SMS); training, developing, and improving the artificial intelligence, machine learning, and models that we use to support the Services (subject to the limits in Section 10 for children's information and Section 13 for state-specific opt-outs); and AI-assisted features described in Section 9.
4.3 Recipients
Categories of recipients: Coaches with whom you book Sessions; service providers (hosting, analytics, customer support, payment processing, email/SMS providers, background-check vendors, AI sub-processors); Sponsors (only aggregate, de-identified utilization metrics for sponsored Members); legal and regulatory authorities when required; potential successors in a corporate transaction; and affiliates. A current list of specific service providers is available on request at ask@misspoppins.io.
4.4 Information from third-party sites and publicly-available sources
Training data from publicly-available sources. We collect publicly-available information from third-party sites and other public sources to enable the training, development, and improvement of our models and systems. We do not knowingly collect non-public personal information from third-party sources for this purpose, and we apply the same restrictions described in Section 10 to any information about children. If you believe publicly-available information about you should be excluded from our training data, contact us at ask@misspoppins.io.
Sensitive personal information
We treat the following as SPI: account credentials; precise geolocation (if ever collected); racial or ethnic origin; sex life or sexual orientation; gender identification; health-related information (including children's developmental or behavioral information); and the contents of communications you direct through the Services where MissPoppins is not the intended recipient.
California residents have the right to limit our use and disclosure of SPI to the purposes specified in Cal. Civ. Code Β§1798.121; use the "Limit the Use of My Sensitive Personal Information" link in our footer or contact us at ask@misspoppins.io.
How we share personal information; sale and "share"
We share personal information with the categories of recipients listed in Section 4 for the purposes described there.
We may disclose personal information to comply with law, respond to lawful requests, enforce our Terms, protect rights or safety, or in connection with a corporate transaction.
Advertising partners and opt-out resources
We work with third-party advertising partners and analytics providers to help us understand how the Services are used and to deliver marketing materials that may be relevant to you. These partners may collect information about your online activities over time and across different services using cookies, pixel tags, SDKs, or similar technologies.
Some of our advertising partners are members of the Network Advertising Initiative or the Digital Advertising Alliance. You can opt out of receiving certain interest-based ads from member companies using the following resources:
- Network Advertising Initiative (NAI): https://optout.networkadvertising.org
- Digital Advertising Alliance (DAA): https://optout.aboutads.info
- Mobile (AppChoices): install the AppChoices app or use your mobile device's "Limit Ad Tracking" or equivalent setting
These opt-outs apply only to advertising partners that participate in those programs. You can also manage cookies through your browser and through the Cookie Preferences control on misspoppins.io.
Cookies and similar technologies
We use cookies and similar technologies for essential functionality, analytics, and (with consent where required) marketing. You can manage cookies through your browser or the Cookie Preferences control on misspoppins.io. We honor the Global Privacy Control (GPC) signal as a valid opt-out of any sale or sharing.
AI-assisted features and sub-processors
Certain Services use third-party large-language-model APIs to assist with content generation, summarization, and search. We work with our AI service providers under Data Processing Agreements that limit how those vendors may handle data submitted to their APIs, including restrictions on using the data to train their general models and limits on retention.
We send only the minimum information needed and never send government identifiers or biometric data.
AI output is informational, not professional advice. A current list of AI sub-processors is available on request at ask@misspoppins.io.
Information you provide about your children
You decide what to share about your children. We use what you share solely to enable the coaching services you request, including making it visible to the Coach(es) you select, storing your session notes, sending reminders, and providing customer support.
Children do not have accounts on MissPoppins, and we do not knowingly collect personal information online directly from a child under 13 within the meaning of the Children's Online Privacy Protection Act, 16 C.F.R. Part 312.
If a child is present during a Coaching Session you join, audio and video of the child are recorded only if you and the Coach affirmatively consent (see Section 8 of the Terms).
You may view, correct, or delete information you have provided about your child at any time in your account settings or by emailing ask@misspoppins.io. We retain information about your child only as long as your account is active and for a limited period after closure, unless we are required by law to keep it longer.
If we learn we have inadvertently collected personal information directly from a child under 13 online without verifiable parental consent, we will promptly delete it.
Data retention
We retain personal information only for as long as needed to provide the Services, comply with our legal obligations, resolve disputes, and enforce our agreements. Retention varies by data type based on its purpose. Where multiple bases for retention apply to a single record, the longest applicable retention controls. Coach payout-related data may be retained longer than other categories in order to comply with applicable tax and financial reporting obligations. You may request deletion of your personal information at any time by emailing ask@misspoppins.io, subject to legal exceptions described in this Policy.
Your privacy rights
If you reside in a US state with a comprehensive consumer privacy law, you may have the following rights:
What personal information we collect about you and how we use it.
Receive a copy of your personal information in a portable format.
Request deletion of your personal information, subject to legal exceptions.
Correct inaccurate personal information we hold about you.
Receive your data in a structured, commonly used format.
Opt out of any sale or sharing of your personal information.
Opt out of profiling that produces legal or similarly significant effects.
Restrict our use of your sensitive personal information.
No penalty or worse service for exercising your rights.
Appeal an adverse decision on a rights request (most VCDPA-model states).
12.1 How to exercise your rights
Email ask@misspoppins.io with the subject "Privacy Request" describing the right you wish to exercise. We will respond within 45 days of receipt, with a possible 45-day extension on notice (Iowa allows up to 135 days).
We verify your identity using information already on file, such as your account email and recent activity; we will request the minimum information necessary. You may designate an authorized agent, who must provide written authorization and identity verification.
Appeals may be sent to ask@misspoppins.io with the subject "Privacy Appeal" and will be answered within 60 days.
12.2 Global Privacy Control
State-specific addendum
13.1 California (CCPA/CPRA)
In addition to the rights above, California residents may use the "Do Not Sell or Share My Personal Information" and "Limit the Use of My Sensitive Personal Information" links in our footer or contact ask@misspoppins.io. We do not knowingly sell or share for cross-context behavioral advertising the personal information of any consumer we know is under 16. California's Shine the Light law (Cal. Civ. Code Β§1798.83): we do not share personal information with third parties for their direct marketing purposes.
13.2 Virginia, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah
Residents of these states have, where applicable, the rights to access, delete, correct, portability, opt out of sale, opt out of targeted advertising and profiling (where the state law provides), and to appeal.
We require opt-in consent before processing sensitive data, except where the state law uses an opt-out model (California, Utah, Iowa).
Maryland residents: we apply a strict-necessity standard to sensitive data, do not sell sensitive data even with consent, and do not engage in targeted advertising or sale of data of any consumer we know or should know is under 18.
Oregon and Delaware residents: you may request the specific third parties to whom we disclosed your data.
Connecticut residents (effective July 1, 2026): we use publicly-available information from third-party sources to train our models and systems as described in Section 4.4. We do not knowingly use Connecticut residents' non-public personal information for large-language-model training without an applicable lawful basis.
13.3 Florida
The Florida Digital Bill of Rights applies to businesses meeting its $1 billion revenue threshold, which we do not currently meet. We voluntarily extend equivalent rights described above to Florida residents.
Update your information
You can update your account and profile information, change your communication preferences, or close your account through your profile settings on the Services.
You may also request access to, correction of, or deletion of your personal information at any time by emailing ask@misspoppins.io. U.S. residents may have additional rights under state-specific privacy laws (such as the CCPA/CPRA and the other state privacy laws described in Section 13) depending on their location. We will respond to verified requests within the timeframes described in Section 12.
Security
We use reasonable administrative, technical, and physical safeguards designed to protect personal information, including encryption in transit and at rest, role-based access controls, multi-factor authentication for staff, and vendor oversight. No system is perfectly secure. If a breach affects you, we will notify you as required by law.
MissPoppins is not a healthcare provider and is not HIPAA-compliant. While some Coaches may have health-related professional backgrounds, services on the platform are offered as coaching, guidance, and wellness support, and not as medical care. We do not maintain or transmit Protected Health Information under HIPAA.
Recording of Sessions
By default, Sessions are not recorded. Where a Session is recorded, all participants are notified by an in-product banner and must affirmatively consent before recording begins. This consent is given for purposes of the California Invasion of Privacy Act and similar all-party-consent laws. Recordings are retained per Section 11.
Notice at collection
When we collect personal information from you, we provide a short notice at or before collection that lists the categories collected, the purposes, whether the information is sold or shared (it is not), retention, and a link to this Policy. The notice appears at signup, at the point a Coach creates a profile, and at any subsequent collection of new categories.
Changes to this Policy
We will post any changes here with an updated effective date and, for material changes, will notify you by email or in-product banner.