Privacy Policy.

1. Scope

• This policy applies to the Services, including our websites, dashboards, and mobile applications.
• It does not apply to third-party websites, apps, or services that may be linked or integrated with the Services; those third parties have their own privacy practices.

2. Data We Collect

We collect data in a few main categories (some may be provided by your Institution):

• Account & profile data: name, email, phone number, username/user ID, role (student/parent/teacher/admin), institution/class identifiers.
• Education data: course enrollments, attendance, assignments, submissions, grades/marks, feedback, assessment attempts, certificates (if applicable).
• Content you provide: uploaded files (e.g., documents/images), messages, comments, support requests, and any other User Content.
• Usage data: pages/screens viewed, features used, timestamps, clicks, device and app events, and diagnostic logs.
• Device & technical data: IP address, device type, OS version, app version, browser type, language, approximate location (derived from IP), and identifiers necessary for app functionality.
• Payment data (if applicable): subscription status, plan, transaction identifiers, and billing metadata. Card/payment details are typically handled by payment processors or app stores and are not stored by us.

3. How We Use Data

• To provide and operate the Services (authentication, role-based access, course delivery, assessments, progress tracking, and reporting).
• To communicate with you (service messages, security alerts, account notices, and support responses).
• To improve performance, troubleshoot issues, and develop new features.
• To maintain safety, prevent abuse, enforce our Terms, and comply with legal obligations.
• To process payments and manage subscriptions (where applicable).

4. Legal Bases (where applicable)

Depending on your jurisdiction, our processing may rely on one or more legal bases such as: performance of a contract (providing the Services), legitimate interests (security and product improvement), compliance with legal obligations, and consent (where required, such as certain marketing communications).

5. Sharing & Disclosure

We do not sell personal data. We may share data in the following circumstances:

• With your Institution: authorized staff may access student and parent data needed for academic administration and support.
• With service providers: hosting, storage, email/SMS, analytics, payment processing, customer support tools, and security monitoring—only as needed to provide the Services.
• For legal reasons: to comply with law, enforce our Terms, protect rights and safety, or respond to lawful requests.
• Business changes: in connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to appropriate safeguards.

6. Children & Student Data

• Many users may be students under the age of majority. Student accounts are typically created and managed by an Institution and/or a parent/guardian.
• We process student data to provide educational functionality (courses, attendance, assignments, assessments, and reporting).
• If you are a parent/guardian and believe your child’s data has been provided without appropriate authorization, contact us using the details below.

7. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal data against unauthorized access, loss, misuse, and alteration. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

8. Data Retention

• We retain personal data for as long as necessary to provide the Services and for legitimate business purposes (e.g., security, dispute resolution, and compliance).
• Retention periods may vary by Institution and by data type (e.g., academic records vs. logs).
• When data is no longer needed, we take steps to delete or de-identify it, subject to applicable law and contractual requirements.

9. Your Rights & Choices

Depending on your location, you may have rights to access, correct, delete, or object to certain processing of your personal data. You may also have the right to withdraw consent where processing is based on consent.

• Account updates: you (or your Institution) may be able to update profile details within the Services.
• Access/correction/deletion requests: contact us using the details below. If an Institution controls the data, we may direct you to the Institution.
• Communications: you can opt out of non-essential communications where offered (service/transactional messages may still be sent).

10. Cookies & Analytics

We may use cookies and similar technologies to operate the Services, remember preferences, and understand usage. You can control cookies through your browser settings. Some features may not function properly if cookies are disabled.

• Essential: required for authentication, security, and core functionality.
• Performance/analytics: helps us understand how the Services are used and improve reliability and user experience.

11. International Transfers

Your data may be processed in countries other than where you live, including where our service providers operate. Where required, we use appropriate safeguards to protect personal data when transferred internationally.

12. Changes to this Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date above. If changes are material, we may provide additional notice as appropriate.

13. Contact

For privacy questions or requests, contact us at privacy@ascendlearn.org or support@ascendlearn.org.