StoryStars Logo

Privacy Policy

Last updated: 18 August 2025

This Privacy Policy explains how StoryStars ("StoryStars", "we", "our", "us") collects, uses, discloses, protects, and retains your personal data in compliance with Singapore’s Personal Data Protection Act 2012 and its subsidiary legislation (collectively, "PDPA"). By using our website or services, you agree to the practices described here.

1. Personal Data We Collect

  • Identity data: name of child and purchaser, relationship to child
  • Contact data: mobile number, email address, delivery address
  • Customisation data: photos and descriptions provided for main/side character likeness and custom storylines
  • Transaction data: order details, deposit and payment amounts, invoices
  • Technical and usage data: device information, pages viewed, and events for analytics (via PostHog)
  • Communications data: messages exchanged via WhatsApp and email

2. How We Collect Personal Data

  • Direct interactions: when you contact us via WhatsApp, submit details for customisation, or provide delivery and payment information
  • Automated means: via cookies or similar technologies for analytics and site performance (see Cookies and Analytics)
  • Third parties: payment processors, email service providers (e.g., Resend), and hosting/analytics providers

3. Purposes of Collection, Use, and Disclosure

We collect, use, and disclose personal data to:

  • Process and fulfil your personalised book order
  • Create previews, obtain approval, print, and deliver your order
  • Communicate with you (e.g., WhatsApp, email) about your order
  • Manage payments, deposits, invoices, and receipts
  • Provide customer support and handle defects or feedback
  • Improve our site, services, and user experience (analytics)
  • Comply with legal, regulatory, and tax obligations

4. Consent

By providing personal data to us, you consent to our collection, use, and disclosure of that data for the purposes above. If you provide personal data of another individual (including a child), you confirm you have obtained their consent or are authorised to provide such data.

5. Children’s Personal Data

Our service involves personalising content for children. We require that a parent or legal guardian provide and approve any child-related data. We do not knowingly collect personal data directly from children.

6. Cookies and Analytics

We use analytics (e.g., PostHog) to understand site usage and improve performance. Analytics may collect pseudonymous information such as pages visited and events (e.g., clicks). You can adjust your browser settings to block cookies, though this may impact site functionality.

7. Use of WhatsApp and Email

Many orders are coordinated via WhatsApp. Messages may be processed by WhatsApp’s systems. We also use email service providers (e.g., Resend) to send order-related emails. Your data may be processed by these providers to deliver communications.

8. Disclosure to Third Parties

We may disclose personal data to service providers who support our operations, including printing partners, couriers, payment processors, email/IT/analytics providers, and professional advisers. These parties are obligated to handle personal data in compliance with applicable laws and our instructions.

9. Cross-Border Data Transfers

Where personal data is transferred outside Singapore, we will ensure that the recipient is bound by legally enforceable obligations to provide a standard of protection comparable to the PDPA, or we will obtain your consent for the transfer where required.

10. Data Protection and Security

We implement reasonable security measures to protect personal data from unauthorised access, collection, use, disclosure, copying, modification, disposal, or similar risks. However, no method of transmission or storage is fully secure; you share data at your own risk.

11. Retention

We retain personal data only as long as necessary for the purposes for which it was collected, or as required by law (e.g., accounting/tax record-keeping). We will cease retention or anonymise personal data when it is no longer needed.

12. Accuracy

We rely on you to provide accurate and complete personal data. Please update us if your information changes, especially before approving your book for printing.

13. Access and Correction Requests

You may request access to, or correction of, your personal data in our possession or control, subject to legal exceptions. We may charge a reasonable fee for processing access requests. Please see Contact Us below for how to reach our Data Protection Officer (DPO).

14. Withdrawal of Consent

You may withdraw consent for our collection, use, or disclosure of your personal data by contacting our DPO. We will process your request within a reasonable time. Withdrawing consent may affect our ability to provide services (e.g., we may not be able to complete or deliver an order).

15. Data Breach Notification

Where required by law, we will notify the Personal Data Protection Commission (Singapore) and affected individuals of any notifiable data breach that results in, or is likely to result in, significant harm, or affects a prescribed threshold of individuals.

16. Third-Party Sites

Our site may contain links to third-party websites or services. We are not responsible for the privacy practices of such third parties. Please review their privacy policies.

17. Contact Us (Data Protection Officer)

If you have any questions, requests (access/correction/withdrawal), or complaints regarding your personal data, please contact our DPO:

  • WhatsApp: via the contact link on our site

We will aim to respond within a reasonable timeframe.

18. Updates to This Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with the updated effective date, and changes take effect upon posting.