Skip to main content
We're building something special. Some features are still in progress — join the list

Legal

Privacy Policy

Effective Date: May 24, 2026 · Red Riot, Inc.

At montessori.fyi, operated by Red Riot, Inc. ("we," "us," or "our"), we are committed to protecting your privacy while providing high-quality Montessori education resources for parents and educators. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with our membership platform.

Please read this policy carefully. By accessing or using our site, you agree to the practices described here. If you do not agree, please do not use our services.

1. Information We Collect

We collect information in several ways:

Information You Provide

  • ·Account Information: When you create an account (Free, Parent, Educator, or Professional tier), we collect your name, email address, and password (hashed). We use Supabase Auth for registration and login (email/password, Google, Apple).
  • ·Profile and Child Data: For paid tiers, you may provide details about your children (age, interests, developmental notes) to personalize recommendations and AI-generated lesson plans.
  • ·Communications: When you contact us, subscribe to our newsletter, or provide feedback, we collect that correspondence.
  • ·Payment Information: We do not store credit card details. Payments are processed securely by Stripe. We receive confirmation of subscription status.

Automatically Collected Information

  • ·Usage Data: We collect anonymous, privacy-first analytics on page views, lesson interactions, and feature usage (no third-party trackers like Google Analytics).
  • ·Technical Data: IP address (anonymized), browser type, device information, and cookies for session management.
  • ·AI Interaction Data: Prompts and outputs from our RAG chatbot and lesson plan generator are processed to improve the service but are not stored long-term with personal identifiers.

Cookies and Similar Technologies

We use essential cookies for authentication (Supabase session management) and to remember your preferences. We do not use advertising or cross-site tracking cookies.

2. How We Use Your Information

We use the information we collect to:

  • ·Provide, maintain, and improve our Montessori content library, AI planner, and membership features.
  • ·Personalize lesson recommendations based on your child's age and interests (with your consent).
  • ·Process subscription payments via Stripe and manage tier access.
  • ·Send transactional emails (via Resend) such as password resets, subscription confirmations, and service updates.
  • ·Analyze usage trends with privacy-first tools to improve the platform.
  • ·Comply with legal obligations and protect our rights.

For AI features (RAG chatbot, lesson plan generator), user prompts are used only to generate responses and are not used to train external models or shared with third parties beyond necessary infrastructure providers.

3. How We Share Your Information

We do not sell your personal information. We may share data in limited circumstances:

  • ·Service Providers: With trusted vendors under strict contracts — Supabase (auth and database), Stripe (payments), Resend (email). These providers are bound by data processing agreements.
  • ·Legal Requirements: If required by law, subpoena, or government request.
  • ·Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred.
  • ·With Your Consent: For any other purpose with your explicit permission.

We do not share child-related information with third parties except as strictly necessary for the service.

4. Data Retention

  • ·Account data is retained as long as your account is active.
  • ·Usage and AI interaction logs are retained for 12 months for analytics and improvement, then anonymized or deleted.
  • ·Payment records are kept for 7 years for accounting and tax purposes (handled by Stripe).
  • ·You can request deletion of your account and associated data at any time (subject to legal retention requirements).

5. Your Rights and Choices

Depending on your location, you may have rights under laws such as GDPR, CCPA, or COPPA:

  • ·Access, correct, or delete your personal information.
  • ·Opt out of certain data processing (e.g., marketing emails — all our emails include an unsubscribe link).
  • ·For child data: Parents/guardians have additional rights under COPPA. We do not knowingly collect data from children under 13 without verifiable parental consent. If you believe we have, contact us immediately to delete it.

To exercise these rights, email privacy@montessori.fyi. We respond within 30 days.

6. Security

We implement reasonable administrative, technical, and physical safeguards, including encryption in transit (TLS), secure hashing for passwords (via Supabase), and strict access controls. However, no system is 100% secure. We cannot guarantee absolute security.

7. Children's Privacy (COPPA)

montessori.fyi is intended for parents and educators. Some content relates to young children (ages 3–6). We do not knowingly collect personal information from children under 13. If a parent provides child profile information (age, interests — no names or identifiable data required), it is used solely for personalization within the platform and is protected under this policy. We comply with COPPA requirements.

8. International Transfers

Your data may be processed in the United States (Supabase us-east-1, Stripe, Resend). We use standard contractual clauses and appropriate safeguards for transfers from the EEA, UK, or other regions.

9. Changes to This Privacy Policy

We may update this policy. We will notify you of material changes by posting the new policy on this page and updating the effective date. Continued use after changes constitutes acceptance.

10. Contact Us

For questions about this Privacy Policy, contact:

Red Riot, Inc.

Attn: Privacy Officer

privacy@montessori.fyi

Last Updated: May 24, 2026