The Emberline Reading Oasis serves readers of all ages, including children under 13. We comply fully with the Children's Online Privacy Protection Act (COPPA). We do not knowingly collect personal information from children under 13 without verifiable parental consent. If you are a parent or guardian and believe your child has provided us personal information without your consent, please contact us immediately at [email protected] and we will delete that information within 72 hours.
Emberline Holdings Company LLC ("Emberline," "we," "us," or "our") is a Wyoming Close Limited Liability Company. We operate the Emberline Reading Oasis, TMC Prep, IMAT Prep, Vent House, and related digital properties accessible at emberlinegroup.org, books.emberlinegroup.org, tmcprep.emberlineworld.com, and associated subdomains (collectively, the "Services").
This Privacy Policy explains what information we collect, how we use it, who we share it with, and what rights you have regarding your personal data.
Our principal place of business is in San Antonio, Texas. You may contact our Privacy Officer at [email protected].
| Category | Examples | Purpose |
|---|---|---|
| Account Information | Name, email address, password (hashed) | Account creation and authentication |
| Profile Information | Display name, bio, location (optional), avatar (optional) | Community features and personalization |
| Reading Activity | Books read, progress, notes, shelf content | Personalized reading experience |
| User-Generated Content | Gallery submissions, competition entries, discussion posts | Community features |
| Book Submissions | Manuscript files, cover art, author details | Editorial review process |
| Communications | Support emails, feedback forms | Customer support |
| Payment Information | Processed by Stripe — we do not store card numbers | Subscription and purchase processing |
| Category | Examples | Purpose |
|---|---|---|
| Log Data | IP address, browser type, pages visited, timestamps | Security, debugging, analytics |
| Device Information | Device type, operating system, screen resolution | Service optimization |
| Cookies | Session tokens, preference cookies | Authentication and preferences (see Section 13) |
The Emberline Reading Oasis is designed for readers of all ages, including young children. We take children's privacy with the highest seriousness and comply fully with the Children's Online Privacy Protection Act (COPPA), 15 U.S.C. §§ 6501–6506, and the FTC's COPPA Rule, 16 C.F.R. Part 312.
During account registration, we ask whether the account is for a child under 13. If yes, we require a parent or legal guardian email address to provide verifiable parental consent before we activate the child account or collect any personal information from the child.
With verifiable parental consent, we collect only: (a) a display name chosen by the parent, and (b) reading progress data necessary to provide the reading service. We do not collect email addresses directly from children under 13.
To exercise any of these rights, contact us at [email protected] or [email protected]. We will respond within 72 hours.
We do not serve behavioral advertising to users under 13 under any circumstances. We do not share children's data with any advertising networks.
If you are a school, educational institution, or app operator providing Emberline services to children, you may serve as an agent providing parental consent on behalf of parents for school use only. Contact us at [email protected] to establish this relationship.
We use the information we collect for the following purposes:
Anthropic's Claude AI: We use Claude (Anthropic, PBC) to power personalization features (welcome messages, book recommendations). Text you provide may be processed by Anthropic's API. Anthropic's privacy policy governs their processing. We do not send children's personal data to Claude's API — only genre preferences and reading level.
We share personal information only in these limited circumstances:
We never sell personal information. We never share personal information with advertisers for targeting purposes. These are hard commitments, not policies that vary by jurisdiction.
We retain your personal information for as long as your account is active, or as needed to provide you the Services. Specifically:
| Data Type | Retention Period |
|---|---|
| Account and profile data | Until account deletion, then 30 days before permanent deletion |
| Reading progress and notes | Until account deletion |
| Children's data | Until parent requests deletion or child turns 13, whichever comes first |
| Payment records | 7 years (tax and legal compliance) |
| Book submission records | 3 years after submission decision |
| Support communications | 2 years |
| Security and access logs | 90 days |
To request deletion of your account and all associated data, email [email protected]. We will complete deletion within 30 days.
We implement industry-standard security measures to protect your personal information:
No method of transmission over the internet or method of electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee its absolute security. In the event of a data breach affecting your rights, we will notify you within 72 hours of discovery, as required by applicable law.
Regardless of where you live, you have the following rights with respect to your personal information:
To exercise any of these rights, email [email protected]. We will respond within 30 days. We do not charge a fee and will not discriminate against you for exercising your rights.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA):
To submit a CCPA request: email [email protected] with "CCPA Request" in the subject line. We will respond within 45 days. We may request verification of your identity before processing the request.
Authorized Agent: You may designate an authorized agent to make requests on your behalf. The agent must provide written authorization signed by you.
Categories of Personal Information Collected (past 12 months): Identifiers (name, email); Internet activity (page views, session data); Commercial information (purchase history); Inferences drawn from the above (reading preferences). We have not sold any personal information in the preceding 12 months.
If you are a Texas resident, you have rights under the Texas Data Privacy and Security Act (TDPSA), effective July 1, 2024:
To submit a TDPSA request: email [email protected] with "TDPSA Request" in the subject line.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, your personal data is processed in accordance with the General Data Protection Regulation (GDPR).
Your data may be transferred to and processed in the United States. We rely on Standard Contractual Clauses (SCCs) approved by the European Commission for such transfers where required.
You have the rights of access, rectification, erasure, restriction of processing, data portability, and objection. You also have the right to lodge a complaint with your local supervisory authority.
Our GDPR contact: [email protected]
Emberline does not serve advertising within its products. Emberline's platforms are ad-free by design and as a matter of brand commitment.
We maintain accounts on TikTok, Instagram, Pinterest, and other platforms to promote our products and share content. When you interact with our social media content:
When we run paid advertising on social media, we comply with FTC Endorsement Guidelines (16 C.F.R. Part 255). All paid promotions include clear disclosures. We do not pay influencers or third parties to endorse our products without clear disclosure of that relationship.
We do not use behavioral advertising targeting toward children under 13 on any platform. On TikTok, we comply with TikTok's policies prohibiting behavioral advertising to users under 16. On Instagram/Meta, we comply with Meta's policies restricting advertising to minors.
We do not currently use website-based retargeting pixels that track users across third-party sites. If we implement this in the future, this policy will be updated and you will be given the opportunity to opt out via our cookie consent tool.
We use cookies and similar technologies to operate our Services. You may manage your cookie preferences via our cookie consent banner.
| Cookie Type | Purpose | Can Opt Out |
|---|---|---|
| Strictly Necessary | Authentication session tokens, security (CSRF protection), remembering consent preferences | No — required for the service to function |
| Functional | Remembering your preferences (theme, reading position) | Yes |
| Analytics | Aggregate usage statistics to improve the Services (anonymized) | Yes |
| Marketing | Not used within the platform. Social media platforms may set cookies if you visit our social pages. | Yes — via each platform's settings |
Supabase sets session authentication cookies that are strictly necessary. These cannot be disabled without preventing login.
We use the following third-party service providers to operate our Services. Each has agreed to process your data only on our behalf and in accordance with our instructions:
| Provider | Service | Data Shared | Privacy Policy |
|---|---|---|---|
| Supabase | Database, authentication, file storage | Account data, content | supabase.com/privacy |
| Stripe | Payment processing | Payment card data (PCI DSS compliant) | stripe.com/privacy |
| Resend | Transactional email delivery | Email address, email content | resend.com/privacy |
| Anthropic | AI personalization features | Reading preferences, genre choices (not PII for children) | anthropic.com/privacy |
| ElevenLabs | Audiobook voice synthesis | Book text content only | elevenlabs.io/privacy |
| Cloudflare | DNS, CDN, DDoS protection | IP addresses, page requests | cloudflare.com/privacy |
We may update this Privacy Policy from time to time. When we make material changes:
Prior versions of this policy are archived and available upon request.
For privacy questions, requests, or concerns, contact our Privacy Officer: