STOMP Enterprises (“The Provider”) operates the www.stomp.world website and the STOMP App mobile application. Our mission is to give teachers, school leaders, parents, and students the means to deter, report, and document bullying behavior.
The only third-party service providers we use in our apps are to support our internal operations and we do not collect anything that is personally identifiable in our apps for children, except for those items in fulfilling the services of the App. We use the personal information we collect from students (or about students from teachers) to provide and improve the Service, for educational purposes, security, and safety purposes, or as required by law. We will not require children to provide more personal information than is reasonably necessary in order to participate in the Service.
Student Account and Outside School Child Account Creation Currently Student Accounts are created in the following ways:
(1) by the student’s parent; (2) by the student’s teacher; or (3) by the student themselves if the teacher elects to provide the student with a unique code. A parent may also set up an Outside School Child Account. (1) By the parent: When a parent sets up a Student Account for their child, they will first need a parent account. In order to set up a parent account and be connected to their child’s school, parents must first receive the unique parent code provided to their child by their child’s teacher or sent through an email/SMS invitation directly from the teacher containing the unique parent code or choose their child’s teacher from the list shown from within the App or Website (the request to join must still be approved by the teacher and/or school). Parents can also set up their account without this unique access code, but will not be connected to their child’s school. In accordance with COPPA, we may ask the parent to provide the date of birth or age of their child, and if the child is under 13, we will also then seek to obtain verifiable parental consent in order to proceed with creating their child’s account. If a parent is connected to their child’s school, we don’t ask the child’s parent for any additional information regarding their child during the Student Account creation, but link the account to the name and information provided by the child’s teacher/school. If the parent is not connected to their child’s school, the parent may provide their child’s first and last name (at the option of the parent) and can create the Outside School Child Account. Once we have obtained parental consent, the child’s account will be set up and a QR code will be accessible on the parent’s device to allow the child to log in to their Student Account or Outside
School Child Account. Although not required under COPPA, we may choose to impose parental consent requirements on students and Outside School Child 13 and above at our discretion. (2) By the student’s teacher/school: If a student’s school or teacher elects to utilize Student Accounts in school or otherwise sets up a student’s account, the school will be responsible for obtaining any necessary parental consent under COPPA (including if they choose to act as the agent of the parent and consent on the parent’s behalf – commonly referred to as “school consent” under COPPA) to create the Student Account on behalf of the student and let students access their accounts. The teacher will provide the student’s name to set up the account. After doing so, if the teacher is creating the Student’s Account, the teacher will be able to share a QR code unique to each student. Students can scan the QR code and either enter their account directly and log in and start using their student account. Please note that if you, as a parent, provide an email to the school when the school is obtaining parental consent, we may send an email out to you asking you to verify your child’s account, but you will not receive any other emails unless you have opted into email marketing or have separately created an account on our Service. For more information on school consent, please see the FTC’s COPPA FAQs. (3) By the student: Alternatively, a teacher/school may choose to allow students to set up their own Student Account using the unique code provided by the teacher/school. When students set up their own Account, we ask students to provide a unique username (we advise students not to use their real names), a password, and the unique code they have been given by their teacher/school. Consistent with the requirements of COPPA, we also ask for the child’s age, and a parent or guardian email address from the child so we can seek verifiable parental consent or provide parental notice (as applicable). We will not use parent emails provided this way to market our Service to the parent unless the parent has opted in to email marketing or has separately created an account on our Service. We don’t ask students to enter any other personal information when setting up an account.
Kids Privacy Assured by PRIVO: COPPA Safe Harbor Certification We will not retain student personal information for any longer than is necessary for educational purposes and legal obligations, or to provide the Service for which we receive or collect the student personal information. Additionally, we protect students with our industry-leading 3-Tier Student Data Protection Policy: (1) we collect only minimal information from students necessary to register for the Service, (2) we delete a User’s Accounts if they’re inactive for more than twelve months or terminate subscription service. Note, however, some content within a User’s Account will be kept after deletion of the account for school legal compliance reasons (e.g., maintenance of “education records” under the Family Educational Rights and Privacy Act (FERPA) under state student privacy laws) and will not be deleted until we receive direction. We store non-child user personal information, including content uploaded by Users, for as long as it is necessary to provide products and Service to you and others. STOMP Enterprises is a member of the PRIVO Kids Privacy Assured COPPA Safe Harbor Certification Program (“the Program”). The Program certification applies to the digital properties listed on the validation page that is viewable by clicking on the PRIVO Seal. PRIVO is an independent, third-party organization committed to safeguarding children’s personal information collected online. The PRIVO COPPA certification Seal posted on this page indicates
STOMP Enterprises, has established COPPA compliant privacy practices and has agreed to submit to PRIVO’s oversight and consumer dispute resolution process. If you have questions or concerns about our privacy practices, please contact us email@example.com or firstname.lastname@example.org. If you have further concerns after you have contacted us, you can contact PRIVO directly at email@example.com.
What Student Information is Shown Publicly? No student’s account, or Outside School Child User’s account (“Outside School Child Account”), profile, or portfolio is made available or visible to the public through the Bulling Buddy App. Only the student, the student’s parents, and the student’s teachers or school leaders can see the student’s (or Outside School Child User’s) profile and portfolio. No child can upload content (such as a response to an activity, photo, video, drawing, journal entry, or document) to the Service on Portfolios except through their account. This can’t happen for children without either
(1) the parent providing parental consent directly to Us or
(2) the child’s teacher representing to Us that they have obtained any necessary parental consent, including acting as the agent of the parent if their school policy allows. Parents obligations and false claims
Any and all information collected including name, image, likeness and video recordings of any person alleged to be engaged in bullying behavior, or any non-user, shall not be used for illegal and improper purposes other than to report true bullying behavior to the respective authorities. Parents, teachers and school officials are not share data received and/or recorded onto any social media site including Twitter, Instagram, Class Dojo, SnapChat, and Facebook, or transferring in any medium including airdrop to another parents phone or electronic device is prohibited. Any uploading or sharing of any data content to any social media site or to another electronic device for purposes of sharing, publication and public viewing shall subject such persons to third party claims of slander, defamation, invasion of privacy, trademark or copyright infringement or other claims. At all times, persons using User’s service shall indemnify STOMP Enterprises , its owners, representatives, and agents from any claim for the uploading or sharing of recorded data outside the provisions of Terms of Service for the App.
General Privacy What Kind of Information is Collected? There are two types of data that may be collected. The first one is called personal data. This is personally identifiable information that identifies a user as an individual. The Provider may collect personal data that parents voluntarily provide on the website. The second type is non personal data which doesn’t directly identify an individual or which may have been personal information but has had the personally identifiable information removed. The Provider may collect non personal information about the use of the website and apps to help us improve our services.
More About Personal Data We collect personal data when a parent makes a purchase through our online store, subscribes to a newsletter or alert, submits content to a forum or blog, or requests technical support. This data may include a name (screen or nickname), gender, birth date, email address, school address mailing or shipping address, telephone number, and payment information. This information may be used to provide services and the sites to you, to process and fulfill your orders, to contact parents about their orders and new services and features and to send push notifications if consent to receive them has been given. If you contact us for help we will only use your email address to reply to your question. Please note that if a parent posts personal information about themselves in a community forum or blog in the parent section, in addition to being collected, this data is made public for others to see. The parent is responsible for the disclosure of any such data in those forums.
A Word About What We Might Disclose As you can see, we collect the necessary personal data, and some nonpersonal data for internal use only or in conjunction with third parties to help us operate, analyze, and improve our sites and services. In addition, we may disclose your personal or nonpersonal information to additional parties if we believe we are required to by law, by a judicial proceeding, to protect Our rights and properties, or to investigate fraud, intellectual property infringement, and any other conduct that might be illegal or expose Us or a user of its services to legal liability. In addition, we may disclose information collected from a parent in the event of a change or proposed change in the ownership of the company; for example, a sale, a merger, or bankruptcy. We are not responsible for what parents say and share with other personals.
Links We may include links to third parties from our website or services. We are not responsible for these companies and including a link to them doesn’t mean that We endorses them. So be sure to check their privacy policies if you decide to visit them. And remember, your use of Our App and services may also be subject to the terms and conditions and privacy policies of other services that we do not control such as mobile application stores, mobile software platforms, or payment processors.
Security We use generally accepted security measures and safeguards in an attempt to keep the data it collects secure and requires that the third parties it works with agree to do the same. The measures and safeguards include limiting access to the data to those persons who need it to complete their work for Us, using a fire-wall protected environment, and storing personal information in secure operating environments. That said, We cannot and do not guarantee and do not accept liability for unintentional disclosure.
Data Retention User data is retained as long as it is necessary to provide the service. Data is deleted from our records when it is no longer needed within a reasonable timeframe. We keep your content for as long as necessary in providing its services. If you want to opt out of services, or review or delete your information, please contact us at firstname.lastname@example.org