For Students, Guardians and Schools
Last Updated October 5, 2023
MaiaLearning, Inc. (“MaiaLearning”, “we”, “our”, or “us”) provides a college and career readiness platform and associated tool for students, guardians and schools (the “Service”). The Service is provided through schools, Independent Education Counselors, or other institutions (“Schools”, "Subscribers") as a way to connect students with the support they need in the career planning and college application process.
The Service is subject to the Family Educational Rights and Privacy Act (FERPA) and the Children’s Online Privacy Protection Act (COPPA). MaiaLearning is a “school official” under FERPA and receives student information pursuant to agreements with Schools. Schools and/or guardians consent to our collection, use, and disclosure of students’ information as described in this policy as required by COPPA. MaiaLearning does not sell, license, or rent any student’s personal information, it does not engage in, inform, influence or enable advertising to students, and does not use students’ personal information other than to provide the Service or comply with legal obligations as described below.
Student information. With Schools and/or guardians consent, we collect student information as needed to provide the Service from both Schools and students. From Schools, we collect a student ID, names, usernames/passwords, email addresses, phone numbers, physical addresses, grade level, grades, and demographic information like gender, date of birth, ethnicity, citizenship, income level, living situation, and English Language Learner status. From students, we collect names, usernames/passwords, email addresses, phone numbers, information contained in their assignment responses, experiences, essays, assessment responses, survey responses, and any other data entered directly into the Service.
School user information. MaiaLearning may collect teachers, staff members and other authorized users’ personal information such as name and email address to create and differentiate such user accounts.
Guardians’ information. We may collect names, emails, phone numbers, addresses, survey responses from guardians.
Automatically generated information. We gather certain information automatically when Educational Users use the Service, such as IP address, browser type, information about how, how often and when a user engages with a page or feature of the Service. MaiaLearning may gather this information using cookies (small data files on a computer’s browser), web beacons (invisible electronic images embedded on web pages) and similar technologies. In some cases, third parties may deliver cookies to the user’s browser on MaiaLearning’s behalf. For example, MaiaLearning uses Google Analytics to help measure the performance of the Service.
MaiaLearning does not use or sell automatically generated information to market or advertise to students.
MaiaLearning may use personal information for:
Providing the Service. We use students’ information to facilitate delivery of the Service and to operate, maintain, and secure the Service.
Creating aggregated/anonymized information. We may aggregate or anonymize the personal information we collect such that the resulting information (“Resulting Information”) cannot reasonably be linked to an individual or School. We may use the Resulting Information for our legitimate business purposes, such as creating reports about educational users' experiences and issues (for example, we may tell a School that 40% of its students received scholarships) or sharing anonymized data in marketing materials and investor communications.
Improving the Service. We use students’ information and automatically generated information to assess the effectiveness of our Service and to improve our Service.
Research and development. We may use Resulting Information for educational research and development purposes.
Providing customer support for Schools. We use personal information in the course of providing customer support.
Legal compliance. We use personal information to comply with applicable laws and lawful requests, protect the rights and safety of MaiLearning, students, and others, and to protect students and the Service from unauthorized, fraudulent, or illegal activity.
We will not use students’ information for marketing or other commercial purposes.
MaiaLearning shares personal information as follows:
With service providers. MaiaLearning may disclose information to third parties as necessary for them to help us provide the Service, including hosting, assessment, evaluation, and analytics services.
With professional advisors. MaiaLearning may disclose information to professional advisors like lawyers, accountants and auditors where doing so is necessary to facilitate the services those advisors provide to us.
As required by law or to ensure safety. MaiaLearning may be required to disclose or grant access to personal information to law enforcement, government authorities, and other parties in order to comply with law enforcement requests and legal processes. In particular, we may be a mandatory reporter in certain circumstances. This may require us to disclose personal information to authorities if we fear that a student is at risk of harming themselves or others. We may also share personal information to protect students’, our, or others’ rights, property, or safety. MaiaLearning may also report any law enforcement and other incident reports made by MaiaLearning to Schools.
In a business transition. In the event MaiaLearning goes through a business transition, such as a merger, acquisition, asset sale, bankruptcy, restructuring, or other corporate change, personal information maintained by MaiaLearning may be disclosed or transferred to the other company and other parties assisting with the transaction.
COPPA permits guardians to request access to or deletion of children’s information and to instruct companies to stop collecting or using children’s information. Since MaiaLearning provides the Service to students on behalf of Schools, guardians should contact Schools with such requests. MaiaLearning will forward any requests it receives to the appropriate School, unless MaiaLearning’s contract with the School or applicable law requires otherwise.
MaiaLearning treats personal information received from Schools as confidential. MaiaLearning implements administrative, technical, and physical security procedures reasonably designed to protect the personal information stored on its servers, which are located in the United States. Even with these safeguards, however, we cannot guarantee the security of personal information.
MaiaLearning complies with the Data Privacy Framework Principles for all onward transfers of personal data from the EU, UK or Switzerland, including the onward transfer liability provisions.In compliance with the Principles, MaiaLearning commits to resolve complaints about our collection or use of your personal information. EU, UK or Swiss individuals with inquiries or complaints regarding our Data Privacy Framework policy should first contact MaiaLearning at: email@example.com. We will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of your EU Personal Data, UK Personal Data or Swiss Personal Data within 45 days of receiving your complaint.
MaiaLearning's independent recourse mechanism for Data Privacy Framework complaints for use by EU, Swiss and UK individuals is JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit https://www.jamsadr.com/eu-us-data-privacy-framework for more information or to file a complaint. The services of JAMS are provided at no cost to you.
If your complaint is not resolved after following the recourse mechanisms described above, you may have the ability to invoke binding arbitration. Additional information is available at https://go.adr.org/dpfeufiling.html for EU/EEA and UK (and Gibraltar) individuals and at https://go.adr.org/DPF_Swiss_AnnexI_Filing.html for Swiss individuals.
Osano has been appointed as MaiaLearning's representative in the European Union for data protection matters, pursuant to Article 27 of the General Data Protection Regulation of the European Union. In addition to the Data Subject Access Request form and firstname.lastname@example.org, Osano can be contacted, only on matters related to the processing of personal data, via the mailing address below.
Osano EU Representative can be contacted at:
Osano International Compliance Services Limited
25/28 North Wall Quay
Dublin 1, D01 H104
Osano UK Representative can be contacted at:
Osano UK Compliance LTD
42-46 Fountain Street