Follow us

🎄 Our Christmas Sale Is Live Now! 🎅

Contact us

Privacy policy

Last updated: 25 November 2025

This Privacy Policy describes how SN COMMERCE LLC (“TheKiddoSpace”, “we”, “us” or “our”) collects, uses, discloses and otherwise processes personal data when you use our websites and mobile applications, including thekiddospacestore.com and any other TheKiddoSpace sites or apps that link to this Privacy Policy (the “Platform”).

We process personal data in accordance with applicable data protection laws, including:

  • the EU General Data Protection Regulation (EU GDPR);
  • the UK General Data Protection Regulation and the Data Protection Act 2018 (UK GDPR);
  • applicable United States federal and state privacy laws (for example, the California Consumer Privacy Act (as amended by the CPRA) and similar state laws);
  • the Mexican Federal Law on Protection of Personal Data Held by Private Parties and its implementing regulations, where we process personal data of individuals in Mexico;
  • the Personal Data (Privacy) Ordinance (Cap. 486) of Hong Kong (“PDPO”);
  • the Protection of Personal Information Act, 2013 (“POPIA”) in South Africa; and
  • any other local privacy and data protection laws that apply to our activities.

By using our Platform or otherwise providing personal data to us, you acknowledge that you have read this Privacy Policy. If anything is unclear, please contact us using the details in the “Contact us” section below.

1. Who is the controller and how can you contact us?

The controller of your personal data (that is, the company that decides how and why your data is processed) is:

SN COMMERCE LLC
611 South DuPont Highway, Suite 102
Dover, DE 19901
United States

Email (general/privacy queries): info@thekiddospace.com
Email (privacy rights / opt-out requests): dataprotection@thekiddospace.com

Data Protection Officer (DPO)
We have appointed a Data Protection Officer to help oversee compliance with data protection laws. You can contact our DPO at: dataprotection@thekiddospace.com (please use “DPO” in the subject line).

2. What personal data we collect and from which sources

We collect personal data about you in several ways:

  • Directly from you, when you use the Platform or communicate with us;
  • Automatically, when you interact with the Platform (e.g. via cookies and similar technologies); and
  • From third parties, such as payment providers, logistics partners, marketing and advertising partners and social media platforms.

We have collected the following categories of personal data in the last 12 months and continue to collect them:

2.1 Information you provide directly

This includes, for example, when you browse, place an order, create an account, contact customer support, subscribe to marketing or enter a promotion.

Typical examples:

  • Customer records and identifiers: name, email address, phone number, billing and delivery address, account login details, government identification number, to the extent required to complete purchases in your jurisdiction.
  • Order and payment information: items purchased, purchase amount, date and time of purchase, payment method and related details (most payment card data is handled directly by our payment processors).
  • Customer service information: messages to customer support, complaints, claims, returns, refunds, survey responses.
  • Marketing preferences: your consents, opt-ins and opt-outs, your communication preferences (email, SMS, etc.).
  • Content you provide: reviews, feedback, and any other information you choose to share with us (for example, the text you ask to be printed on a personalised product, such as a child’s name).

2.2 Information we collect automatically

When you visit or use our Platform, we automatically collect certain information, including through cookies and similar technologies (see “Cookies and tracking technologies” below).

Examples:

  • Device and technical data: IP address, browser type and version, operating system, language settings, device type, device identifiers.
  • Usage and browsing data: pages you visit, products you view, time and date of visits, referring URLs, clickstream data, interactions with the Platform.
  • Approximate location data: derived from your IP address (e.g. country or region).

2.3 Information we receive from third parties

We may receive personal data about you from:

  • Payment and financial service providers, to process payments and prevent fraud;
  • Logistics and delivery partners, to deliver your orders;
  • Advertising and measurement partners, such as Meta, Google, AppLovin and similar partners, who help us deliver and measure our advertising campaigns;
  • Analytics providers, who help us understand how the Platform is used;
  • Social networks, if you interact with us through social media platforms; and
  • Other service providers, such as IT and cloud hosting providers.

2.4 Personalized products and children’s information

  • If you order a personalized product, you may provide custom text or other details (for example, a child’s first name or nickname). We use this personalization information only to create your product, fulfill your order, and provide customer support (including returns, replacements, and warranty support).
  • Our store and services are intended for adults. We do not knowingly collect personal information directly from children. If you provide information about a child (for example, to personalize a product), you confirm you have the authority to provide it (for example, as a parent or guardian) and that it is provided for the purpose of creating and delivering the product.

We may also generate inferences from the information above (for example, about your interests or preferences) to help us understand what products might be most relevant for you.

3. Why we use your personal data and our legal bases

We process your personal data only to the extent necessary to operate the Platform, fulfil your orders, comply with our legal obligations and run and improve our business.

Under EU/UK law, we must have a legal basis for each processing activity. The main legal bases we rely on are:

  • Performance of a contract with you (or steps taken at your request before entering into a contract);
  • Legitimate interests pursued by us or a third party, provided your interests and fundamental rights do not override those interests;
  • Consent, where required (for example for certain marketing communications and cookies); and
  • Compliance with legal obligations.

We use your personal data for the following purposes:

3.1 Provide and operate the Platform (contract; legitimate interests)

  • To allow you to browse and use the Platform.
  • To enable you to create and manage your account.
  • To process your orders and payments, manage deliveries, returns, claims and refunds.
  • To communicate with you about your orders, deliveries, account and any customer-support issues.

3.2 Security and fraud prevention (legitimate interests; legal obligations)

  • To verify your identity and your capacity to enter into a contract.
  • To prevent and detect fraud, abuse, unauthorised transactions and other illegal activities.
  • To protect the security of our IT systems, networks and the Platform (including by using logs, cookies and device information).

3.3 Marketing and advertising (legitimate interests; consent)

  • To send you marketing communications about our products and services (for example by email or SMS), where permitted by law.
  • In some cases, we may contact you for marketing without your prior consent where this is allowed by law (for example, the “soft opt-in” for existing customers). You can opt out at any time.
  • In other cases, we will ask for your consent before sending marketing or using non-essential cookies and similar technologies.
  • To personalise our communications and the Platform, and show you offers and content that we believe may be of interest to you.
  • To run promotions, surveys and similar campaigns.

3.4 Analytics and service improvement (legitimate interests; consent where required)

  • To analyse how the Platform is used and to understand trends, preferences and usage patterns.
  • To compile statistics, improve our products and services and develop new features.

3.5 Compliance with laws and legal claims (legal obligations; legitimate interests)

  • To comply with tax, accounting, consumer protection and other legal obligations.
  • To retain records needed for audits and regulatory purposes.
  • To establish, exercise or defend legal claims (for example, in the event of disputes or litigation).

Where we rely on legitimate interests, we balance those interests against your rights and freedoms and only proceed where we believe our interests are not overridden by your interests or fundamental rights.

You may object to processing based on legitimate interests at any time – see “Your rights” below.

4. How we share your personal data

We share your personal data only as described in this Privacy Policy and only with recipients who have a legitimate need to receive it.

4.1 Group companies and service providers

We share personal data within SN COMMERCE LLC where necessary to fulfil the purposes described in this Privacy Policy. We also share data with service providers who perform tasks on our behalf, such as:

  • order fulfilment and warehousing;
  • payment processing;
  • logistics and delivery;
  • customer support;
  • IT and cloud hosting services;
  • email and SMS platforms; and
  • fraud detection and security providers.

These providers are contractually required to process your personal data only on our instructions and in compliance with applicable data protection laws.

We may also share personal data with independent third parties such as:

  • electronic communications providers;
  • banks and payment networks;
  • postal services and courier companies;
  • professional advisers (lawyers, accountants, auditors); and
  • public authorities or courts, where required by law.

Many of these recipients have an independent right or obligation to process your personal data in their own right.

4.2 Advertising and measurement partners (including AppLovin)

We work with third-party advertising and measurement partners to:

  • show you relevant marketing on third-party apps and websites; and
  • understand how effective our advertising campaigns are.

These partners include Meta, Google, AppLovin and similar companies. In connection with these activities, we may share information such as:

  • cookie and device identifiers;
  • hashed contact information (for example, hashed email addresses);
  • information about the products you viewed or purchased on our Platform; and
  • technical information about your device and browser (for example, IP address, operating system and browser type).

These partners use this information, together with information they already hold, to deliver, measure and improve advertising and for related purposes described in their own privacy notices.

We do not use personalization details (such as a child’s name you ask us to print) for targeted advertising, profiling a child, or building advertising audiences, and we do not share that personalization information with advertising partners for advertising purposes.

Where required by law (for example, in the EU/UK for non-essential cookies), we rely on your consent for the use of cookies and similar technologies for advertising and measurement (e.g. through the cookie banner or settings on our Platform). In other situations, we rely on our legitimate interests in promoting our business and understanding the effectiveness of our marketing, provided that those interests are not overridden by your rights and interests.

In some jurisdictions (for example certain U.S. states), this type of sharing may be considered a “sale” or “sharing” of personal information or “targeted advertising”. Where this applies, you have the right to opt out of such activities – see “Your privacy choices and opt-out rights” below.

For more information about AppLovin’s collection and use of your information, visit:
https://legal.applovin.com/privacy

4.3 Disclosures for legal, safety and business purposes

We may share your personal data:

  • as required by any applicable law, regulation or legal process (including in response to lawful requests by public authorities);
  • to investigate or remedy actual or suspected violations of our policies or illegal activities;
  • to protect our rights, property and safety, or that of others; or
  • in connection with a business transaction, such as a merger, acquisition, reorganisation or sale of assets. In such cases, we will ask the transferee to honour the commitments we have made in this Privacy Policy.

4.4 “Sale” or “sharing” of personal information (US laws)

We do not sell your personal information for money. However, as described above, we do share certain identifiers and usage data with advertising and measurement partners, which may be considered a “sale” or “sharing” under some US state privacy laws.

In the past 12 months, we have “sold” or “shared” (in this broad legal sense) the following categories of information for marketing and advertising purposes:

  • Persistent identifiers (for example, device IDs, IP addresses, cookie IDs, hashed email addresses, account IDs, information about your browser and operating system); and
  • User activity data (for example, information generated through your activities on the Platform, such as pages you visit and products you view).

You can opt out of this by using the methods described in “Your privacy choices and opt-out rights” below.

5. Cookies and tracking technologies

We use cookies, web beacons and similar technologies (“cookies”) on our Platform.

Cookies help us:

  • store your preferences and settings;
  • enable you to sign in and use key features (for example, your shopping cart);
  • understand how our Platform is used;
  • provide interest-based advertising; and
  • prevent fraud and improve security.

The types of cookies we may use include:

  • Required (essential) cookies – necessary to operate the Platform and provide core features (for example, keeping you logged in, saving your cart, managing payment pages).
  • Analytics cookies – to understand how users interact with the Platform and to improve our services.
  • Advertising and social media cookies – to show you relevant ads and content based on your browsing behaviour and, in some cases, your social media profile.

Some cookies are set by us (“first-party cookies”) and some are set by third parties (for example, analytics providers and advertising networks).

You can manage your cookie preferences through:

  • our cookie banner and the “Your cookie settings” page on the Platform; and
  • your browser or device settings (for example, blocking or deleting cookies).

If you disable or reject cookies, parts of the Platform may not function properly or may be unavailable. We may still use information collected by cookies before you changed your settings, but we will not place new non-essential cookies after you have withdrawn consent or opted out.

Where required by law (for example in the EU/UK), we obtain your consent before placing non-essential cookies (such as advertising or analytics cookies).

6. International data transfers

We are based in the United States, and many of our service providers and partners are located in the US and other countries outside the European Economic Area (EEA), the UK and Switzerland (for example, in China).

This means that when you use our Platform, your personal data may be transferred to and processed in countries that may not provide the same level of data protection as your home country.

If you are in Canada, this means your personal information may be transferred to and stored in countries outside Canada (including the United States and China), and while we use contractual and other safeguards, it may be accessible to foreign courts, law-enforcement or regulatory authorities in those countries in accordance with their laws.

Where we transfer personal data from the EEA, UK or Switzerland to a country that is not subject to an adequacy decision, we use appropriate safeguards, such as:

  • the Standard Contractual Clauses adopted by the European Commission (and, where applicable, the UK Addendum); and/or
  • other contractual and organisational measures required by applicable law.

We undertake that any transfers to our non-EU partners (including those in China) will be governed by contractual safeguards consistent with the EU and UK GDPR.

You can contact us if you would like more information about the safeguards we use for international transfers.

7. How long we keep your personal data

7.1 General retention principles

We keep your personal data only for as long as necessary for the purposes for which it was collected, including to:

  • provide the Platform and our services;
  • comply with legal, accounting and reporting obligations; and
  • resolve disputes and enforce our agreements.

In general:

  • Data related to your orders and account is kept for the duration of your relationship with us and for a period afterwards where required by law or where we have a legitimate interest (for example, for tax and accounting purposes, or to handle potential claims).
  • Certain data (for example, payment records and invoices) may need to be kept for longer periods to comply with tax, accounting and consumer protection laws.
  • In some cases, we may store data for up to ten years from the start of the relevant statutory limitation period, where needed to defend legal claims.

We may retain anonymised or aggregated data that does not identify you for longer periods.

When we receive data from our advertising and measurement partners, or share data with them (including AppLovin), we apply appropriate technical and organisational measures to protect such data. We only use data obtained from these partners, or provided to them by us, for the purposes described in this Privacy Policy and in accordance with our agreements with those partners and with applicable laws.

7.2 Retention (including personalization details)

We keep personal information only as long as needed for the purposes described in this policy. Personalization details (such as a name you request on a product) are kept only as long as needed to make the product and to handle customer service, returns, replacements, and warranty support. After that, we delete or de-identify personalization details unless we must keep certain information for legal, tax/accounting, fraud prevention, or dispute resolution purposes. Order, payment, and shipping records may be kept longer where required or permitted by law.

8. Your rights

Your rights depend on where you live. We will always respect the rights that apply in your jurisdiction.

8.1 Rights under EU/UK/Swiss data protection law

If you are in the EU/EEA, the UK or Switzerland, you have the following rights (subject to certain conditions and exemptions):

  • Right of access – to obtain confirmation whether we process your personal data and to receive a copy of your data.
  • Right to rectification – to have inaccurate or incomplete personal data corrected.
  • Right to erasure – to ask us to delete your personal data in certain circumstances (for example, where it is no longer needed for the purposes for which it was collected).
  • Right to restriction of processing – to ask us to restrict the processing of your data in certain cases.
  • Right to data portability – to receive your personal data in a structured, commonly used and machine-readable format, and to have it transmitted to another controller where technically feasible.
  • Right to object – to object at any time to processing based on our legitimate interests (including profiling), and to direct marketing.
  • Right to withdraw consent – where we process your data based on consent, you can withdraw that consent at any time (this will not affect the lawfulness of processing carried out before withdrawal).

You also have the right to lodge a complaint with a supervisory authority, in particular in the EU/EEA, UK or Switzerland country where you live or work, or where you consider that your rights have been infringed.

8.2 Rights under certain US state laws

If you are a resident of California or another US state with a comprehensive privacy law, you may have additional rights, which can include:

  • Right to know – to request information about the categories and specific pieces of personal information we have collected, used, disclosed, sold or shared about you.
  • Right to delete – to request deletion of personal information we hold about you, subject to certain exceptions.
  • Right to correct – to request correction of inaccurate personal information.
  • Right to data portability – to receive your information in a portable format.
  • Right to opt out of sale or sharing – to direct us not to sell or share your personal information for cross-context behavioural or targeted advertising.
  • Right to opt out of targeted advertising – where applicable.
  • Right to limit the use and disclosure of sensitive personal information – where applicable (we do not use sensitive personal information in ways that require this right).
  • Right not to be discriminated against for exercising your rights.
  • Right to appeal – if we deny your request, you may have the right to ask us to reconsider.

Our sharing of personal information with advertising partners such as Meta, Google and AppLovin for advertising and measurement may constitute a “sale” or “sharing” of personal information under some of these laws. You can opt out by using the options in “Your privacy choices and opt-out rights” below.

8.3 Rights under Mexican data protection law

If you are located in Mexico, you have the rights recognised in the Mexican Federal Law on Protection of Personal Data Held by Private Parties, including:

  • the right of access, to know whether we hold personal data about you and to obtain a copy of that data;
  • the right of rectification, to request correction of inaccurate or incomplete data;
  • the right of cancellation, to request that we delete your personal data in certain cases (for example, where it is no longer necessary for the purposes described in this Privacy Policy);
  • the right of opposition, to object to the processing of your data for legitimate reasons;
  • the right to revoke your consent, where we process your data on the basis of consent; and
  • the right to limit the use or disclosure of your data, for example to opt out of certain marketing communications or sharing with third parties.

You can exercise these rights by contacting us at dataprotection@thekiddospace.com and stating that your request relates to your rights under Mexican data protection law. We may ask for information needed to identify you and, where applicable, to confirm your relationship with us (for example, your order number or the email address used for your account or purchase).

If you are not satisfied with our response, you also have the right to lodge a complaint with the Mexican data-protection authority, the Instituto Nacional de Transparencia, Acceso a la InformaciĂłn y ProtecciĂłn de Datos Personales (INAI).

8.4 Rights under Argentinian data protection law

If Argentinian data protection law applies to you, this includes your rights to access the personal data we hold about you and to request its rectification, updating or suppression (deletion), as well as to withdraw your consent where we rely on consent, in accordance with Law 25.326. You can exercise these rights by contacting us using the details in the “Contact us” section, and we will respond within the time limits set by Argentinian law.

8.5 Rights under Panamanian and Uruguayan data protection law

If you are in Panama or Uruguay, you have the following rights (subject to certain conditions and exemptions):

  • Right of access – to obtain confirmation whether we process your personal data and to receive a copy of your data.
  • Right to rectification – to have inaccurate or incomplete personal data corrected.
  • Right to erasure – to ask us to delete your personal data in certain circumstances (for example, where it is no longer needed for the purposes for which it was collected).
  • Right to restriction of processing – to ask us to restrict the processing of your data in certain cases.
  • Right to data portability – to receive your personal data in a structured, commonly used and machine-readable format, and to have it transmitted to another controller where technically feasible.
  • Right to object – to object at any time to processing based on our legitimate interests (including profiling), and to direct marketing.
  • Right to withdraw consent – where we process your data based on consent, you can withdraw that consent at any time (this will not affect the lawfulness of processing carried out before withdrawal).

You also have the right to lodge a complaint with a supervisory authority, in particular in the country or territory where you live or work, or where you consider that your rights have been infringed.

8.6 Rights under Hong Kong data protection law

If the Hong Kong PDPO applies, you have the right to request access to personal data we hold about you and to request correction of any personal data that is inaccurate. Requests should be made in writing to dataprotection@thekiddospace.com or to the postal address in this Privacy Policy, marked “Data Access / Correction Request“.

8.7 How to exercise your rights

To exercise any of your rights, or to submit a privacy-related request, you can contact us at:

Email: dataprotection@thekiddospace.com or info@thekiddospace.com

We may need to verify your identity and (for US requests) your state of residence before processing your request. The verification steps may differ depending on the sensitivity of the data and whether you have an account with us.

You can also designate an authorised agent to submit requests on your behalf (where permitted by law). We may require written proof of the agent’s authority and may still ask you to confirm your identity directly.

If we refuse your request (for example, because an exemption applies), we will explain why. If you disagree with our decision, you may request an appeal by contacting us with the subject line “Data Rights Appeal”. If you are still not satisfied, you may be able to contact your local data protection authority or your state Attorney General to lodge a complaint.

We will not discriminate against you for exercising any of your privacy rights.

9. Your privacy choices and opt-out rights

You have several choices about how we and our partners use your data, especially for marketing and advertising.

Cookies and interest-based advertising

  • You can manage your preferences for non-essential cookies (including advertising and analytics cookies) via the cookie banner / settings on our Platform and through your browser or device settings.
  • If you disable advertising cookies or withdraw your consent, we will stop using those cookies, including those used with partners such as AppLovin, for interest-based advertising on that browser or device.

Opt-out of sale/sharing or targeted advertising (US residents)

Where applicable, you can opt out of the “sale” or “sharing” of your personal information or targeted advertising by:

  • adjusting your cookie preferences as described above;
  • contacting us at dataprotection@thekiddospace.com or info@thekiddospace.com and stating that you wish to opt out of sale/sharing or targeted advertising; or
  • using a browser or device-level signal such as Global Privacy Control (GPC) or a similar preference signal, where supported.

When we receive an applicable opt-out request or valid signal, we will stop using personal data associated with that browser or device for these advertising purposes via Meta, Google, AppLovin and our other advertising partners, to the extent required by law.

Direct marketing

  • You can unsubscribe from our marketing emails at any time by clicking the “unsubscribe” link in the email.
  • For SMS, you can opt out by replying STOP, END, CANCEL, UNSUBSCRIBE or QUIT to any mobile message from us.
  • We honour any withdrawal of consent you have previously given for marketing or analytics cookies or direct marketing communications, and we record your preferences so that we can respect them in the future.

Do Not Track (DNT) and similar signals

There is currently no universal standard for responding to “Do Not Track” (DNT) signals. We cannot promise to respond to all such signals, but we do recognise and respond to privacy signals (such as GPC) where required by applicable laws, and treat them as an opt-out from sale/sharing or interest-based advertising for that browser or device, to the extent required by law.

10. Children’s privacy

Our Platform and services are intended for adults such as parents and caregivers, and are not directed to children.

We do not knowingly allow children to create accounts or place orders. In some cases, adults may provide limited information about a child (for example, a child’s name to be printed on a personalised product) as part of completing a purchase. We use this information only to fulfil the order and do not use it to market directly to the child.

We do not knowingly collect personal data directly from children. If you believe that a child has provided personal data to us without appropriate consent, please contact us and we will use reasonable efforts to locate and delete that information.

We also do not use AppLovin’s services, or any similar advertising services, in connection with children’s data in a way that would violate applicable child-privacy laws.

11. Data security

We have implemented appropriate technical, administrative and physical safeguards designed to protect your personal data against accidental or unlawful loss, unauthorised access, use, alteration or disclosure.

For example:

  • we use secure servers and access controls;
  • we limit access to personal data to employees and service providers who need it for their work and who are bound by confidentiality obligations; and
  • we review our security measures regularly.

However, no method of transmission or storage is completely secure. We cannot guarantee the absolute security of your data. Any transmission of personal data is at your own risk.

Where you have created an account, you are responsible for keeping your password and account details confidential. Please do not share your password with anyone.

12. SMS marketing service

If you sign up to receive SMS messages from us, we will use your information to send you:

  • order-related notifications (including abandoned-cart reminders);
  • text marketing offers; and
  • transactional texts (for example, review requests).

Our Platform uses cookies and similar technologies to track when you have added items to your cart or abandoned your checkout, so that we can send relevant reminder messages via SMS where permitted.

You can opt out of SMS marketing at any time by replying STOP, END, CANCEL, UNSUBSCRIBE or QUIT to any message from us.

We may share your data, including your SMS opt-in or opt-out status, with third parties that help us provide our messaging services (such as platform providers and phone companies), solely for that purpose.

13. Links to other websites

The Platform may contain links to third-party websites or services that are not controlled by us. This Privacy Policy does not apply to those websites.

We are not responsible for the content, privacy or security practices of any third parties, including websites that may be linked to or from the Platform. We encourage you to read the privacy policies of any third-party sites you visit before providing them with your personal data.

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements or other factors.

When we do, we will:

  • post the updated Privacy Policy on the Platform; and
  • update the “Last updated” date at the top.

If we make material changes, we may also notify you by email or by displaying a prominent notice on the Platform, where appropriate.

We encourage you to review this Privacy Policy periodically to stay informed about how we process your personal data.

15. Contact us

If you have any questions, comments or concerns about this Privacy Policy or our handling of your personal data, or if you would like to exercise your privacy rights, you can contact us at:

Email (privacy / rights requests)
dataprotection@thekiddospace.com

Email (general inquiries)
info@thekiddospace.com

Postal address:
SN COMMERCE LLC
611 South DuPont Highway, Suite 102
Dover, DE 19901
United States

90-day trial

Try us out for 90 days. Not in love? Full refund

Secure payments

We use trusted payment providers and standard encryption to help keep your information protected.

Customer service

From Monday to Saturday from 8am to 5pm