Privacy Policy

Overview

This Privacy Policy explains what data Ereading.AI collects, how we use it, and how we protect it. This policy applies to our website and to integrations with Google Classroom and other LMS platforms.

Last updated: January 12, 2025

Data We Collect

Google Classroom and LMS Data

• Course information (course IDs, names)
• Roster data (student names, email addresses, LMS user IDs)
• Assignment and submission identifiers
• Scores for grade passback

Activity Data

• Activity selections, responses, and scores
• Timing and completion metadata
• Assignment configuration settings (difficulty, adaptive mode, question count)

Teacher-Provided Contact Data

• Teacher email addresses used for stateless, LMS-less assignment delivery

How We Use Data

• Create and launch assignments
• Display activities and record student progress
• Return grades to connected LMS gradebooks
• Generate PDFs and reports for teachers
• Provide analytics for teachers and schools

How We Store Data

• OAuth tokens and private keys are encrypted at rest (AES-256-GCM)
• LMS context handles are short-lived
• Retention varies by tier:

• Free (anonymous): summary data retained up to 24 hours
• Class code: summary data retained up to 30 days
• Teacher subscription: class aggregates retained up to 1 year after subscription ends
• Student license: full details retained up to 1 year after license ends

Advertising and Data Sales

• We do not sell student or teacher data
• We do not use student data for advertising targeting
• Ads (if shown) are not personalized using student information

FERPA and COPPA

Ereading.AI is built for educational use. We collect and use student data only for providing educational services. We do not use student data for marketing and we do not sell student data. We work with schools and educators to support compliance with FERPA and COPPA requirements.

Data Deletion Requests

Teachers, school administrators, and parents can request data deletion by contacting us at [email protected]. We will verify the request and remove data consistent with our retention rules and legal obligations.

Security

We use industry-standard safeguards to protect data, including encryption of sensitive credentials and access controls. No method of transmission is 100 percent secure, but we take protection seriously.

Changes to This Policy

We may update this policy as the product evolves. If changes are significant, we will update this page and revise the date above.