Dorlio logo Dorlio
← Back to home

Privacy Policy

For the Dorlio mobile app. Last updated: 30 June 2026.

Dorlio ("Dorlio", "we", "us") is operated by MIHAINTELLIGENCE SRL. This policy explains what information the Dorlio app collects, how we use it, who we share it with, and the choices and rights you have. Dorlio generates personalized, illustrated bedtime stories for children using AI. Dorlio is intended to be set up and operated by a parent or guardian.

1. Information we collect

CategoryWhatWhy
Account Your email address, provided through Sign in with Apple or Google Sign-In. We never receive your Apple/Google password. To create and secure your account and sync your library across devices.
Child profile A child's first name, age, and a chosen avatar emoji — entered by you, the parent/guardian. To personalize stories (use the child's name, age-appropriate vocabulary).
Story content The themes, optional "lessons", and the generated story text and illustrations you create. To generate, display, and save your stories.
Subscription Your subscription status and a non-identifying purchase token, via RevenueCat. Payment card details are handled by Apple/Google — we never see or store them. To unlock premium features and restore purchases.
Diagnostics Basic, non-advertising app event and error information. To keep the app working and improve reliability.

We do not collect precise location, contacts, photos, or a child's contact information. We do not use third-party advertising, ad identifiers (IDFA/GAID), or cross-app tracking. We do not sell your personal information.

2. How stories are generated (AI processing)

To create a story we send the child's first name, the chosen theme, and the optional lesson to our AI providers, who process it only to return content to you:

  • Anthropic (Claude) — generates the story text and screens inputs for safety.
  • Replicate (Flux) — generates the illustrations from server-created scene descriptions.

These providers act as our processors and do not use your inputs to serve you ads. Generated images are stored in private cloud storage and shown to you through short-lived, signed links.

3. Service providers

We share data only with vendors that help us run Dorlio, under contract:

  • Supabase — account authentication, database, and file storage.
  • Anthropic and Replicate — AI text and image generation (see §2).
  • RevenueCat and Apple/Google — subscription management and billing.

4. Children's privacy

Dorlio is designed to be operated by parents and guardians, and account creation and purchases are intended for adults. Any information about a child (a first name and age) is provided by you and is used only to personalize stories. We do not knowingly collect personal information directly from children, and we do not require a child to provide any information to use the app. You can review or delete a child's profile, or your entire account, at any time (see §7). If you believe a child has provided us information without your involvement, contact us and we will delete it.

5. How we use information

  • To provide the core service — generating, displaying, and saving stories.
  • To manage your subscription and restore purchases.
  • To keep streaks and send the local bedtime reminders you enable (see §6).
  • To secure the service, prevent abuse, and fix problems.
  • To comply with law.

We do not use your information for advertising or to build advertising profiles.

6. Notifications

Bedtime and "we miss you" reminders are local notifications scheduled on your device — we don't send them from a server and they don't transmit data. You can turn them off in the app's settings or your device settings at any time.

7. Your choices & rights

  • Delete your account & data: in the app, go to Profile → Delete account. This permanently deletes your account, child profiles, saved stories, and images.
  • Access, correct, export: contact us to request a copy of your data or to correct it.
  • GDPR (EEA/UK): you have rights to access, rectify, erase, restrict, port, and object. Our legal bases are performing our contract with you and our legitimate interest in running a safe, reliable service.
  • CCPA (California): you have rights to know, delete, and correct. We do not sell or "share" personal information for cross-context behavioral advertising.

8. Data retention

We keep your information while your account is active. When you delete your account, your personal data is removed promptly from our live systems; routine backups are purged on a rolling schedule. Guest stories created without an account are not saved.

9. Security

Data is encrypted in transit (HTTPS/TLS). Stored images and avatars are kept in private storage scoped to your account, and database access is restricted per-user. No method of transmission or storage is 100% secure, but we work to protect your information.

10. International transfers

Our providers may process data in the United States and other countries. Where required, we rely on appropriate safeguards (such as Standard Contractual Clauses) for international transfers.

11. Changes

We may update this policy. We'll change the "Last updated" date above and, for material changes, provide a more prominent notice.

12. Contact

Questions or requests: contact@mihaintelligence.com.
MIHAINTELLIGENCE SRL, Focsani, Romania — CUI 51480000, Trade Register No. J2025019742006.

Terms of Use →