Clayviss Home

Clayviss Privacy Policy

Effective date: July 2, 2026
Last updated: July 2, 2026

Clayviss is operated by Bellalu Management LLC ("Clayviss," "we," "us," or "our"). This policy explains what information Clayviss collects, how we use it, how we protect it, and the choices you have. Because Clayviss involves a child's reading activity — and because that activity can reveal a family's faith — we treat this information with extra care and comply with the Children's Online Privacy Protection Act (COPPA), including the amendments that took full effect on April 22, 2026, and, for families in the EU/UK, the GDPR's protections for children.

Clayviss is a parental-control service. A parent or guardian installs it, sets it up behind a parent passcode, chooses what is locked, and decides the rules. There is no child login and no child account; the child uses a device the parent has configured. Because children read the passages, we treat all reading-activity information as a child's personal information and comply fully with COPPA — we do not rely on any argument that the service falls outside COPPA.

We do not sell your data. We do not use it for advertising or to build advertising or marketing profiles. We do not use third-party advertising networks, data brokers, or third-party analytics. We do not track you or your child across other apps or websites.


1. Parental consent comes first

The first time Clayviss opens, before any setup and before any information is collected or sent anywhere, the parent must read and agree to this policy. Setup does not begin, and no data is reported, until the parent gives verifiable consent. If you do not agree, Clayviss does not collect or transmit any information.

How we verify that consent is given by a parent. Clayviss is installed and configured by an adult on a device they control, behind a parent passcode they set. Before any information is collected, the parent must review this policy and affirmatively agree at first launch, providing their email address; we record that agreement, the policy version, and the date and time. We send a confirmation notice to that email. This consent is further supported by the parent's Apple Account, through which the subscription is managed. Because we never disclose a child's personal information to any outside party for that party's own use (see Section 4), this combination is an appropriate method of verifiable parental consent for the information Clayviss collects.

We store this consent record — the parent's email, the policy version agreed to, and the date and time — so we can honor requests and re-obtain consent when needed. If we make a material change to how we handle a child's information, we will present this policy again and ask the parent to agree before the change takes effect.


2. Information we collect

Information the parent provides during setup

  • The device name the parent types for each device (for example, "Emma's iPad"). Because a parent may include a child's name in the device name, we treat the device name as a child's personal information and protect it accordingly.
  • The parent's church or nonprofit choice for the donation feature (a name the parent writes in, or a selection from a list).
  • Optional contact information the parent chooses to enter (for example, a church or nonprofit contact for the donation feature).
  • The parent's email address, collected at the consent step so we can confirm consent and send required notices and honor requests to review or delete data. (See Sections 1 and 7.)
  • A parent passcode, which is stored on the device only and is never sent to us.

A child's reading activity (reported to our cloud)

When cloud reporting is active, each device reports only its own activity so the parent can see it from their phone. This includes:

  • Which passages or prayers were read (which may indicate a faith tradition — see Section 8A)
  • Minutes of screen time earned
  • Current reading streak
  • Comprehension quiz scores (if the parent turned on the optional comprehension test)
  • The device name the parent typed (which may include a child's name, and which we treat as the child's personal information)
  • A unique device identifier we generate so devices are labeled correctly and never mixed up
  • A family grouping identifier (and, if displayed, a Family Link Code) that links your family's devices together so each device's data appears under the right family

This reading-activity information, including the device and family identifiers, is a child's personal information under COPPA, and we treat it that way. These identifiers are used only to run the service for the parent (to label devices and route each device's own data); they are not used to contact the child, to advertise, or to track the child across other apps or services.

We do not collect a child's name, birthdate, photos, contacts, precise location, or any government identifier. Clayviss does not ask for a child's age; the parent selects a reading mode directly.

Information that stays on the device and is never sent to us

  • Voice and audio. When a child reads aloud, speech recognition runs entirely on the device, using on-device recognition only. The audio is used only to check the reading in the moment. It is never uploaded, transmitted, or stored by us, and it is not sent to Apple's servers for recognition. We do not create or store any voiceprint or other biometric identifier from the audio.
  • The scripture or prayer text shown, the unlock timer, the lock schedule, and the parent passcode all stay on the device.

Purchase information

Subscriptions are handled by Apple through the App Store. Apple processes the payment; we do not receive or store your card number. We receive from Apple only what is needed to know a subscription is active and to record parental consent as described in Section 1.


3. How we use information

We use the information above only to:

  • Show the parent their child's reading activity across the family's devices
  • Generate the optional comprehension quiz from the passage just read
  • Operate the donation feature (earmarking 25% of a subscription to the parent's chosen church or nonprofit)
  • Verify and record parental consent
  • Provide, maintain, and secure the service, and respond to parent requests
  • Meet legal, tax, and accounting obligations

We do not use this information for any other purpose, and we do not use it to build advertising or marketing profiles of children or to make automated decisions that produce legal or similarly significant effects on a child.


4. Third parties who help us run Clayviss

We share information only with service providers that help operate Clayviss, and only as much as they need. These providers are bound by contract to protect the information, to use it only to perform services for us, and not to use it for their own purposes.

  • Anthropic (Claude API) — optional comprehension test only. When the parent enables the optional comprehension test, the text of the passage just read, its scripture reference (for example, "Mark 4:25–28"), and the reading language are sent to Anthropic's Claude service to generate quiz questions. We do not send a child's name, device identifier, or any personal information to Anthropic — only the passage text, its reference, and the language. This feature is off by default; enabling it is an explicit, separate choice the parent makes, and the app discloses at that moment that passage text will be sent to a third-party AI service. Under our commercial agreement, Anthropic does not use this content to train its models and processes it only to return the questions.
  • Apple. Handles app distribution, in-app purchases, subscription processing, and Family Sharing.
  • Vercel (hosting) and Neon (database) provide the secure infrastructure that stores the reporting data described in Section 2. They act as our processors and store data only on our behalf. This reporting data is stored in our own database — it is not stored in Apple's iCloud.
  • GoHighLevel. Handles our email and messaging, including the consent-confirmation notice we send to the parent's email address. It acts as our processor for that purpose and does not use the information for its own purposes.

We do not share information with advertising networks, data brokers, or third-party analytics services. We do not sell or "share" (as those terms are used in U.S. state privacy laws) a child's personal information, and we do not disclose a child's personal information to any third party for that party's own purposes.


5. How information is stored and protected

We establish, implement, and maintain a written information security program appropriate to the sensitivity of children's data, consistent with COPPA's requirements. That program:

  • designates the person responsible for coordinating it;
  • identifies and assesses internal and external risks to the confidentiality, security, and integrity of the information we collect;
  • puts safeguards in place to control those risks — reporting data is stored in our database (Neon Postgres) served through our hosting provider (Vercel), access is restricted, and each device authenticates with its own token rather than a shared secret; and
  • is evaluated and updated at least annually and when our practices change.

No method of storage or transmission is completely secure, so we cannot guarantee absolute security, but we work to protect information consistent with its sensitivity. If we learn of a data breach affecting a child's personal information, we will notify affected parents and any regulators as required by applicable law, without undue delay.


6. How long we keep information (data retention)

We keep a child's reading activity only as long as reasonably necessary to provide the service to the family, and never indefinitely:

  • Reporting data is retained while the family's subscription is active and the device is in use.
  • If a device is removed, or a parent requests deletion, we delete that device's records within 30 days.
  • When information is no longer needed for the purpose it was collected, we delete it securely.

Some limited records required for tax, accounting, or legal purposes (for example, records tied to the donation program) may be kept longer where the law requires, but these do not include a child's reading-activity detail beyond what the law requires.


7. Parental choices and rights

As a parent or guardian, you may at any time:

  • Review the information we have collected about your child's device
  • Delete your child's data, or a specific device's data
  • Withdraw consent and stop further collection (turning off reporting)
  • Refuse to allow further use of information already collected

To make any of these requests, contact us using Section 12. We may need to verify that you are the parent or account holder before acting, to protect the child's information. We honor verified requests promptly and, for deletion, within 30 days.

Turning off cloud reporting, or declining consent, does not stop the core app from working on the device — the lock and read-aloud features run on the device and do not require reporting.


8. Children's privacy (COPPA and GDPR-K)

Clayviss stores a child's reading-activity data at the direction of the parent, and we comply with COPPA in full:

  • We obtain verifiable parental consent before collecting a child's information, using a COPPA-approved method (Section 1).
  • We obtain separate, explicit consent before enabling any feature that sends passage text to a third-party AI service (the optional comprehension test), and we do not disclose a child's personal information to third parties for purposes that are not integral to the service.
  • We practice data minimization — we collect only what a feature needs, and never a child's name, birthdate, photos, contacts, precise location, biometric identifiers, or government identifiers.
  • We give parents the right to review and delete their child's information and to revoke consent (Section 7).
  • We maintain a written information security program (Section 5) and a written data-retention and deletion policy (Section 6).

For families in the EU/UK, we rely on parental consent (and, for information that may reveal religious belief, explicit consent) as the legal basis for processing a child's information, and we honor the additional rights the GDPR provides.

If you believe we have collected information from a child without proper parental consent, contact us using Section 12 and we will delete it.


8A. Sensitive information and religious data

Clayviss presents prayers and passages from multiple faith traditions. The passages a child reads, and the reading modes a parent selects, may reveal or suggest a family's religious beliefs. Information that reveals religious belief is treated as sensitive personal information under U.S. state privacy laws and as a special category of data under the GDPR.

We handle this information with heightened care:

  • We use it only to provide the service the parent asked for (showing reading activity, generating the optional quiz, and running the donation feature). We never use it to build profiles, to advertise, or for any purpose unrelated to the service.
  • We do not disclose it to any third party for that party's own purposes, and we do not sell or "share" it.
  • We minimize it — we store which passage was read to run the service, not any interpretation of your family's beliefs.
  • For families in the EU/UK, we rely on the parent's explicit consent as the legal basis for processing information that may reveal religious belief, and you may withdraw that consent at any time (Section 7).

9. Where we operate and where data is processed

Clayviss is offered to families in the United States. We operate from the United States, and information is processed and stored in the United States.

If we later make Clayviss available outside the United States, we will update this policy to identify the safeguards we use for transferring information across borders, and you may contact us using Section 12 for details.


10. Your U.S. state privacy rights

Depending on where you live, U.S. state privacy laws may give you rights to access, correct, delete, or obtain a copy of personal information, and to opt out of the sale of personal information or targeted advertising. Clayviss does not sell personal information, does not "share" it for cross-context behavioral advertising, and does not use it for targeted advertising. For a child's information, a parent may exercise these rights on the child's behalf using Section 7. We do not discriminate against you for exercising any privacy right.


11. Changes to this policy

If we change this policy, we will update the "Last updated" date above. For any material change to how we handle a child's information, we will present this policy again in the app and ask the parent to agree before the change applies.


12. Contact us

Bellalu Management LLC
32 N Gould St, Sheridan, WY 82801
Telephone: (888) 598-8484
Email: hello@clayviss.com

We are the operator responsible for handling questions about this policy and about your child's information. We respond to privacy requests as promptly as we can.

C·L·A·Y·V·I·S·S
Scripture unlocks the screen.
hello@clayviss.com
© 2026 BellaLu Management LLC. Clayviss is a faith-based parental screen-time app for iOS.