REALIGN Learning™ Georgia Home Edition (“the Service”) is built with parent ownership of student data as the default. This policy summarizes what we collect, how it is used, and how it is protected.
What we collect
- Parent account: name, email (verified), password hash.
- Subscription: plan, status, period dates (via Stripe — payment card data never reaches us).
- Student profile: first/last/preferred name, grade level, date of birth (optional), an auto-generated RLS student ID, and a parent-set username + hashed password.
- Coursework: lesson plans, assignments, submissions, AI grades, mastery rollups.
- Activity: real-time session pings (start/last-ping/duration) for the parent monitor.
- Logs: login attempts, admin actions, secure-test events (FERPA-conscious audit).
What we do NOT do
- We do not sell student data.
- We do not share student data cross-family.
- We do not publish student profiles or work samples.
- We do not target advertising to minors.
- We do not use student data to train third-party AI models.
AI providers
The Service uses Anthropic Claude models for lesson-plan authoring, grading, and tutoring. Submissions sent to the model are de-identified at the prompt level (no email, RLS ID, or DoB is included). Anthropic does not use REALIGN customer data to train models per their commercial terms.
Storage & security
- Passwords hashed with Argon2id.
- Sessions encrypted with iron-session, 1-hour idle timeout.
- Admin access gated by TOTP MFA.
- Database is managed Postgres (Neon) with TLS in transit and encryption at rest.
- Lockout after repeated failed logins.
Your rights
You may export or delete your family's data at any time from your Account page. Email privacy@therealigngroup.com for help.
Contact
The REALIGN Group™ · privacy@therealigngroup.com
This page is a starting template. Have it reviewed by counsel before commercial launch.