1.

Information We Collect

Manifest Education collects various types of information to provide and improve our educational services. The types of data we collect include:

Authentication Data: Your name (which may be a pseudonym), verified email address, and password. We use strong encryption and hashing techniques to protect your credentials.
User-Generated Content: Content you create using our platform—such as digital math activities, visualizations, quiz-like assignments, images, videos, and documents. This content is stored solely to deliver our educational services.
Third-Party Data: Information received from integrations with K–12 LMS platforms (e.g., Google Classroom, Schoology, Canvas) necessary for synchronizing class rosters and assignment data.
Payment Information: For paid subscription plans, minimal billing details (such as your billing name and the last four digits of your card) are provided via Stripe. We do not store sensitive payment data on our servers.
Usage Data: Information about how you interact with our services (such as device type, browser details, and usage patterns) to help us improve our service and maintain security.

2.

How We Use Your Information

We use the information we collect for purposes including, but not limited to:

Providing, maintaining, and enhancing our educational services.
Authenticating users and managing account access.
Facilitating communication, such as sending account updates and important announcements.
Integrating with third-party services, including LMS platforms and payment processors.
Analyzing usage to optimize performance and user experience.
Complying with legal obligations and enforcing our policies.

3.

Data Sharing and Third-Party Disclosures

We do not sell your personal data. We share your information only in limited circumstances:

Third-Party Service Providers: We share data with trusted partners (such as Stripe for payment processing and LMS platforms for educational integrations) solely for service provision. These providers are contractually obligated to protect your data.
Legal Requirements: We may disclose your information if required by law, regulation, or legal process.
Business Transfers: In connection with mergers, acquisitions, or sales of assets, your data may be transferred, subject to appropriate privacy safeguards.

4.

Compliance with Applicable Laws

Manifest Education adheres to all applicable federal, state, and international data protection laws. These include:

COPPA: We obtain verifiable parental consent before collecting data from children under 13.
FERPA: For educational records, we act as a “school official” under FERPA and only process such data in accordance with FERPA guidelines.
GDPR: For users in the European Union, we ensure a lawful basis for data processing and respect data minimization, transparency, and user rights under the General Data Protection Regulation.
CCPA/CPRA: For California residents, we provide rights to know, delete, and opt out of the sale of personal information.

5.

Children's Privacy and Parental Controls

Our services are designed for educational purposes and may be used by students of varying ages. For children under 13:

We obtain verifiable parental consent before collecting personal data.
We do not knowingly collect personal data from children without such consent.
Parents have the right to review, correct, or request deletion of their child's data.

For older minors and college students, data is processed according to applicable laws. Schools and educators are responsible for ensuring compliance when facilitating use by students.

6.

Data Retention and Deletion

We retain your personal data only as long as necessary to provide our services or as required by law. When you delete your account or request deletion of your data, we will remove or anonymize your personal data within a reasonable timeframe.

Some data (e.g., transaction records) may be retained for longer periods for legal compliance or audit purposes. You may request corrections or deletions of your personal information, subject to applicable legal exceptions.

7.

Security Measures

We take the security of your data seriously. Our measures include:

Encryption of sensitive data in transit and at rest.
Strict access controls and robust authentication procedures.
Regular security audits and system updates.
Ensuring our third-party partners adhere to industry-standard security practices.

While we strive to protect your data, no system is completely secure. In the event of a data breach, we will act in accordance with applicable law to notify affected users.

8.

Your Rights and Choices

Depending on your location and applicable laws, you have certain rights regarding your personal data, including:

The right to access your personal data.
The right to correct any inaccuracies.
The right to request deletion of your data (subject to legal exceptions).
The right to restrict or object to certain processing activities.
For EU users: the right to data portability.

To exercise these rights, please contact us using the details provided in Section 11.

9.

International Data Transfers

Your personal data may be transferred to and maintained on servers located outside of your country. We ensure that such transfers are conducted with appropriate safeguards, such as standard contractual clauses or other mechanisms compliant with applicable laws.

10.

Changes to This Privacy Policy

Manifest Education reserves the right to modify this Privacy Policy at any time. We will post any changes on this page with an updated effective date. Your continued use of our services after changes are made constitutes acceptance of the revised Privacy Policy.

11.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Manifest Education
Email: harry@manifest.education