Privacy Policy

1. Overview

Misa Solutions ("we," "our," or "us") is committed to protecting your privacy and maintaining the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered Socratic learning platform.

This policy applies to all users of our platform, including educators, students, administrators, and parents. We are particularly committed to protecting student privacy and comply with applicable educational privacy laws including FERPA and COPPA.

Key Privacy Principles:

• We never sell student data or personal information
• We use data only to provide and improve our educational services
• We implement industry-standard security measures
• We provide transparency and control over your data

2. Information We Collect

Account Information

When you create an account, we collect:

Name and email address
School or organization affiliation
Role (educator, student, administrator)
Password (encrypted and hashed)
Profile preferences and settings

Educational Content

To provide our educational services, we collect:

Questions created by educators
Student responses and interactions
AI-generated content and suggestions
Progress and performance data
Usage patterns and engagement metrics

Technical Information

We automatically collect certain technical information:

Device information (browser, operating system)
IP address and location data (anonymized)
Usage logs and analytics data
Cookies and similar tracking technologies

3. How We Use Information

Educational Services

Provide AI-powered Socratic dialogue experiences
Generate personalized learning recommendations
Track student progress and engagement
Enable educator analytics and reporting
Facilitate communication between educators and students

Platform Improvement

Improve AI algorithms and learning outcomes
Enhance user experience and interface design
Develop new features and capabilities
Conduct research on educational effectiveness

Administrative Purposes

Account management and customer support
Security monitoring and fraud prevention
Legal compliance and regulatory requirements
Billing and subscription management

4. Information Sharing

We do not sell, rent, or trade personal information to third parties for commercial purposes.

Limited Sharing Scenarios

We may share information only in these specific circumstances:

Within Your Educational Institution: Progress data shared with authorized educators and administrators
Service Providers: Trusted third-party services that help us operate our platform (with strict data protection agreements)
Legal Requirements: When required by law, court order, or to protect safety and security
Business Transfers: In the event of a merger or acquisition (with notice and opt-out options)
With Consent: When you explicitly authorize sharing with specific third parties

Authorized Educational Access

Within your educational institution, authorized personnel may access student data for legitimate educational purposes, including teachers, administrators, and support staff directly involved in the student's education.

5. Student Privacy (FERPA/COPPA Compliance)

FERPA Compliance

We comply with the Family Educational Rights and Privacy Act (FERPA) by:

Treating student data as educational records under FERPA
Using data only for authorized educational purposes
Maintaining strict access controls and security measures
Providing parents and eligible students with access and correction rights

COPPA Compliance

For students under 13, we comply with COPPA by:

Collecting minimal information necessary for educational services
Obtaining school consent for data collection (school acts as parent agent)
Never using student data for advertising or commercial purposes
Providing parents with access and deletion rights

Student Data Protection Commitment

• Student data is never used for advertising
• No behavioral targeting or profiling for commercial purposes
• Strict access controls limit who can view student information
• Regular security audits and compliance reviews

6. Data Security

We implement industry-standard security measures to protect your information:

Technical Safeguards

SSL/TLS encryption for data in transit
AES-256 encryption for data at rest
Regular security updates and patches
Secure cloud infrastructure (SOC 2 compliant)
Multi-factor authentication options

Administrative Safeguards

Role-based access controls
Regular employee training on data privacy
Background checks for personnel
Incident response procedures
Third-party security audits

Security Incident Response: In the unlikely event of a security incident, we will promptly notify affected users and take immediate steps to contain and resolve the issue.

7. Data Retention

We retain personal information only as long as necessary to provide our services and comply with legal obligations:

Active Account Data

Retained while your account is active and for legitimate educational purposes

Student Records

Deleted within 30 days of account closure unless required for legal compliance

Analytics Data

Anonymized and aggregated data may be retained for research and platform improvement

Legal Hold

Data may be retained longer when required by law or legal proceedings

8. Your Rights

You have the following rights regarding your personal information:

Access Rights

Request access to your personal data and information about how it's processed

Correction Rights

Request correction of inaccurate or incomplete personal information

Deletion Rights

Request deletion of your personal data (subject to legal requirements)

Portability Rights

Request export of your data in a commonly used format

Restriction Rights

Request limitation of processing under certain circumstances

Objection Rights

Object to processing based on legitimate interests

Exercising Your Rights: To exercise any of these rights, please contact us at . We will respond to your request within 30 days.

9. Cookies & Analytics

Cookie Usage

We use cookies and similar technologies to enhance your experience:

Essential Cookies

Required for platform functionality and security

Performance Cookies

Help us improve platform performance and user experience

Preference Cookies

Remember your settings and preferences

Analytics

We use analytics tools to understand platform usage and improve our services. All analytics data is anonymized and aggregated. You can opt out of analytics tracking through your account settings.

10. International Users

Misa Solutions is based in the United States. If you are accessing our services from outside the US, please be aware that your information may be transferred to, stored, and processed in the United States.

We comply with applicable international privacy laws, including GDPR for European users. We use appropriate safeguards for international data transfers, including standard contractual clauses approved by relevant authorities.

EU Representative: For GDPR-related inquiries, you may contact our EU representative at

11. Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

Notify you via email and/or platform notification
Update the "Last Updated" date at the top of this policy
Provide at least 30 days' notice for material changes
Obtain consent where required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

Privacy Officer

Email:

Address: Misa Solutions, Inc.
Currently Looking for a Public Office
Fulshear, TX 77441
United States

General Support