MaiaLearning Privacy Policy

Your privacy is most important to us. At MaiaLearning, Inc., we are adamant about protecting the privacy of our users and subscribers. This Privacy Policy is designed to help you understand how MaiaLearning, Inc. collects and uses the personal information you decide to share, and help you make informed decisions when using MaiaLearning™ (located at www.MaiaLearning.com), and its directly associated domains (collectively, "MaiaLearning" or "Website"). By using or accessing MaiaLearning, you are accepting the practices described in this Privacy Policy.

Information We Collect
‍
‍Registration
‍In order to become a user, you must first create an account on our Website. To create an account you are required to provide the following information: your name, an email address and a password.

‍Information from Users
‍MaiaLearning™ collects registration, student profile, and assessment information from our users. When you use MaiaLearning™, you may enter contact information for students, parents, teachers, and advisors. The contact information includes name, phone number, mailing address, and email address. You may also enter students’ grades, test scores, extracurricular activities, essays for college applications, and students’ college wish lists. In addition, MaiaLearning™ may collect information to help assess students’ learning styles and career preferences. Access and control over most personal information on MaiaLearning™ is readily available through the profile editing tools. You may add a phone number to opt in to SMS messaging at any time.

‍Automatically Collected Information (Log Data)
‍When you visit MaiaLearning.com, we collect your browser type, language, the date and time, and your IP address. This information is gathered for all MaiaLearning™ users. In addition, we store certain information from your browser using "cookies." A cookie is a piece of data stored on your computer that is sent to our servers with each request. We use cookies only to decide which version of our user interface you are using so we can present you with an appropriate view defined by our subscriber. These cookies terminate once you close the browser and contain no user specific information. You can remove or block this cookie using the settings in your browser if you want to disable this feature.

In addition, we may use third party services such as Google Analytics that collect, monitor and analyze this automatically collected information. This information is used only for internal MaiaLearning™ purposes to help us understand the usage of the applications and websites we provide. You may exercise choices regarding the use of cookies from Google Analytics by going to https://tools.google.com/dlpage/gaoptout and downloading the Google Analytics Opt-out Browser Add-on.

How We Use Information Collected by MaiaLearning™ and Whom we May Disclose Such Information To
- MaiaLearning™ collects registration, student profile, and assessment information from our users. We will not sell this information to others, and will not share information without your consent except as described in this policy.
- MaiaLearning, Inc. may disclose your personal information in cases where we believe that such disclosure is reasonably necessary to i) meet the requirements of an applicable and enforceable law, regulation, or government request, ii) address fraud, security, or technical issues, or iii) enforce applicable Terms of Use.
- MaiaLearning, Inc. may disclose your personal information to third-party service providers and vendors acting on our behalf, such as companies that provide us assessments, practice tests, technical support, data hosting, and other services, as necessary in the normal course of business.
- MaiaLearning, Inc. may disclose your personal information to third-party service providers and vendors acting on your behalf, such as college application systems (for example, The Common Application) and college document transfer systems. Your personal information is only transmitted to those third-parties upon your request or that of the organization that purchases services from MaiaLearning^TM (Subscriber).
- MaiaLearning, Inc. may disclose your personal information in the event we sell or transfer all or a portion of our business or assets to a third party, such as in connection with a merger or in the event of a bankruptcy reorganization or liquidation.
- For users who access MaiaLearning™ products provided to them by schools, government agencies, independent counselors, companies, or any other organization that purchases services from MaiaLearning™ (Subscriber) whether or not the user pays for the MaiaLearning™ services directly, MaiaLearning, Inc. will share user information with authorized personnel at those organizations who we consider site practitioners (example: teachers, counselors, supervisors, etc.). Since those organizations are responsible for assigning access to user information, it becomes the responsibility of the user to determine who in the said organizations has access to their information.
- Many users of MaiaLearning™ products are underage minors. MaiaLearning™ will provide access to these users’ information as described in the above paragraph. MaiaLearning™ will also share underage minor users’ information with their parents or guardians.

MaiaLearning, Inc. may use your user profile in generating statistical data for usage of our site without disclosing your identity. We may occasionally send you notifications regarding new services offered by MaiaLearning, Inc. that we think you may find valuable. MaiaLearning, Inc. may also send you service-related announcements and notices about your account.

When a student account expires and is not renewed, the data associated with that account may be archived for a period of 4 years. However, if the school or district requests deletion of data under its control, that information will be deleted.

If MaiaLearning, Inc. becomes involved in actions which would change these Privacy Policy terms, we will ensure the confidentiality of your data and notify you before your data becomes subject to a different Privacy Policy. Any improper collection or misuse of information provided on MaiaLearning™ is a violation of our Terms of Use and should be reported to support@MaiaLearning.com.

‍Counselors, teachers, and school administrators, and the student’s family/legal guardian can see all account information for that student except:
- Journal and Gallery entries the student has hidden or marked Private
- Student Calendar event entries
- Student files that a not shared or are marked Private

Links to Third Party Websites
This Privacy Policy applies solely to information collected by MaiaLearning™. MaiaLearning™ may contain links to other websites. MaiaLearning, Inc. is not responsible for the privacy practices or content of such websites, or use of information you might provide to these other sites. We recommend strongly that you review the privacy policy of each linked site that you use to determine whether that site's policies are acceptable to you before providing personally identifiable information. We cannot guarantee the security of any information you disclose to such other websites and you do so at your own risk.

Security Measures
MaiaLearning, Inc. takes appropriate precautions to protect your information. Your account information is located on a secured server behind a firewall. We encrypt information being sent to or from our servers using secure socket layer technology (SSL). (To learn more about SSL, go to http://en.wikipedia.org/wiki/Secure_Sockets_Layer). Because email and instant messaging are not recognized as secure communications, we request that you not send private information to us by email or instant messaging services. If you have any questions about the security of the MaiaLearning™ website, please contact us through the feedback form. No data sent over the Internet can be guaranteed to be 100% secure. MaiaLearning, Inc. will use commercially reasonable measures to protect your information but does not warrant that the information transmitted to us will be secure at all times.

International Transfer of Collected Information
We primarily store personal information we collect within the United States, the European Economic Area (the “EEA”) and in other countries and territories. To facilitate our global operations, we may transfer and access personal information from around the world, including from countries other than those in which MaiaLearning, Inc. has operations.

If you are visiting our websites from the EEA or other regions with laws governing data collection and use, please note that you are agreeing to the transfer of your personal information to the United States and other countries and jurisdictions. By providing your personal information, you consent to any transfer and processing in accordance with this Policy.

Additionally, when using or disclosing personal information transferred from the European Union, MaiaLearning^TM uses standard contractual clauses approved by the European Commission, adopt other means under European Union law for ensuring adequate safeguards, or obtain your consent.

Your Obligations As a User
By using MaiaLearning™, you signify your consent to the MaiaLearning™ Privacy Policy. If you do not agree to this policy, please do not use MaiaLearning™. Your continued use of MaiaLearning™ following the posting of changes to this Privacy Policy will mean that you accept the revised Privacy Policy.

If you accept this Privacy Policy, which is indicated by your continued use, you must always comply with the terms of the then-current Privacy Policy and any other terms and conditions posted on MaiaLearning.com. You will respect all intellectual property rights of MaiaLearning, Inc. and any third parties relating to content or services provided through MaiaLearning™.

You are solely responsible for maintaining the secrecy of your login information. At no time will MaiaLearning, Inc. require you to transmit your password information to MaiaLearning, Inc. via email. Should you receive any such requests, please contact us to authenticate the inquiry before responding to such requests.

Compliance with Privacy Laws
MaiaLearning, Inc. complies fully with the requirements of the federal Family Educational Rights and Privacy Act of 1974, as amended, 20 U.S.C. Sec. 1232g (FERPA), the Student Online Personal Information Protection Act, Assembly Bill No. 1584 codified in Education Code Section 49073.1, and all other federal and state guidelines applicable and adopted in accordance therewith. Personally identifiable information received by MaiaLearning, Inc. will be used solely for legitimate educational interests.

Pursuant to FERPA, MaiaLearning, Inc. may disclose your personal information in cases where we believe that such disclosure is reasonably necessary to meet the requirements of an applicable and enforceable law, regulation, or government request, to comply with a judicial order or lawfully issued subpoena, in connection with a health or safety emergency, to address fraud, security, or technical issues, or to enforce the applicable Terms of Use.

Pursuant to AB 1584, Pupil records entered into accounts on the Website by students of the Local Educational Agency (LEA) shall continue to be the property of, and under the control of, the LEA. Students may retain possession and control of or transfer such accounts to personal accounts upon by following instructions from within their account. In the event of an unauthorized disclosure of records, we will promptly notify the affected parent, legal guardian, or eligible pupil and LEA and take appropriate mitigation efforts. Pupil records shall not be retained upon completion of the terms of the contract.

In compliance with federal guidelines, personal information acquired by the MaiaLearning, Inc. will not be used to engage in targeted advertising on any site, service, or application when the targeting of the advertising is based upon any of the acquired personal information. Pursuant to FERPA all users may, through the proper processes described herein, seek to amend education records believed to be inaccurate. However, in cases where data was provided by your school or school district, you may not be able to update, delete, or otherwise modify the data, except through the applicable procedures of the school or school district.

Further, in compliance with the Children's Online Privacy Protection Act of 1998, 15 U.S.C. Sec. 6501-6506 ("COPPA") and consistent with the Privacy Policy of the Website, students under thirteen should not create accounts on MaiaLearning™. The only exception is when MaiaLearning™ has data sharing agreements in place and in which districts consent to usage on behalf of the student.

Your Controls
If you are a user that accesses MaiaLearning™ products provided to you by schools, government agencies, independent counselors, companies, or any other organization that purchases services from MaiaLearning™ whether or not you pay for the MaiaLearning™ services directly and would like to opt-out of getting marketing communications from us please contact us at legal@maialearning.com or follow the unsubscribe instructions included in each marketing email.

We process and store service data on behalf of our subscribers. We have no direct relationship with the individuals with whom our subscribers may interact using the MaiaLearning™ products. If you are an individual interacting with a subscriber of the MaiaLearning™ products and would no longer like to be contacted by that subscriber, please contact that subscriber directly.

Correcting, Updating and Removing Your Information
Upon request, we will provide you with information about whether we hold, or process on behalf of a third-party, any of your personal information. To request this information, you can use our Data Subject Access Request form, or contact us at legal@maialearning.com. Subscribers to MaiaLearning™ products may update or change their Account Information by editing their profile or customer record directly in the products or by contacting support@maialearning.com. To make a request to have personal information maintained by us returned to you or removed, please email support@maialearning.com. Requests to access, change, or remove your information will be handled within thirty (30) days.

An individual who seeks access to, or who seeks to correct, update, or delete inaccuracies in personal information stored or processed by us on behalf of a Subscriber should direct their query to the Subscriber. Upon receipt of a request from one of our Subscribers for us to remove the data, we will respond to that request within thirty (30) days. We will retain personal information that we store and process on behalf of our Subscribers for as long as needed to provide the services of the MaiaLearning™ products to our Subscribers. We will retain and use this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

The security of your personal information is important to us. We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once it is received. If you have any questions about the security of your personal information, you can contact us at legal@maialearning.com.

If you are a Subscriber or otherwise provide us with personal information in connection with your use of the MaiaLearning™ products or websites, we will delete this information upon your request, provided that, notwithstanding such request, this information may be retained for as long as you maintain an account for our products, or as needed to provide you with the services of the MaiaLearning™ products, comply with our legal obligations, resolve disputes and enforce our agreements.

Privacy Shield Frameworks
MaiaLearning, Inc. complies with the EU-U.S. and Swiss-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from Switzerland and the European Union to the United States. MaiaLearning, Inc. has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms of this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov

‍MaiaLearning, Inc. is responsible for the processing of personal data it receives under the Privacy Shield Framework and subsequently transfers to a third party acting as an agent on its behalf.

MaiaLearning, Inc. complies with the Privacy Shield Principles for all onward transfers of personal data from the EU or Switzerland, including the onward transfer liability provisions.In compliance with the Privacy Shield Principles, MaiaLearning, Inc. commits to resolve complaints about our collection or use of your personal information. EU or Swiss individuals with inquiries or complaints regarding our Privacy Shield policy should first contact MaiaLearning, Inc. at: legal@maialearning.com. We will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of your EU Personal Data or Swiss Personal Data within 45 days of receiving your complaint.

MaiaLearning, Inc.’s independent recourse mechanism for Privacy Shield complaints for use by EU and Swiss individuals is JAMS, an alternative dispute resolution provider located in the United States. If you do not receive timely acknowledgment of your complaint from us, or if we have not addressed your complaint to your satisfaction, please contact or visit https://www.jamsadr.com/eu-us-privacy-shield for more information or to file a complaint. The services of JAMS are provided at no cost to you.

For residual Privacy Shield disputes that cannot be resolved by the methods above, you may be able to invoke a binding arbitration process under certain conditions. To find out more about the Privacy Shield’s binding arbitration scheme, please see: https://www.privacyshield.gov/article?id=ANNEX-I-introduction The Federal Trade Commission has investigation and enforcement authority over our compliance with the Privacy Shield.

Governing Law
Any disputes arising between MaiaLearning, Inc. and you in relation to your use of MaiaLearning™ shall be governed by the laws of the State of California, without regard to its choice of law provisions. The Federal and State courts located in Santa Clara, California, shall have exclusive jurisdiction over all claims.

Amendment Procedure and Questions Regarding this Privacy Policy
We may amend this Privacy Policy at any time. If we amend this Privacy Policy to permit material changes in the way we collect, use and/or share your personal information, we will notify you of such changes by sending you an email at the last email address that you provided to us, and/or by prominently posting notice of the changes on our website. Any such material changes to this Privacy Policy will be effective thirty (30) calendar days following either our dispatch of an email notice to you or our posting of notice of the changes on our website. Any such material changes to this Privacy Policy may affect our use and sharing of personal information that you provided to us before our notification to you of the changes. If you do not wish to permit material changes in our collection, use or sharing of personal information that you have provided to us before the effective date of such changes, you must notify us before that effective date. Please be advised, however, that, regardless of whether you provide such notice to us, the changes to this Privacy Policy will apply to any personal information that you provide to us on or after the effective date of such changes.

Additional Information for California Users
‍In addition to the information provided elsewhere in this Privacy Policy, we make the following disclosures for purposes of compliance with the California Consumer Privacy Act ("CCPA") (capitalized terms have the meaning given by the CCPA):
- We do not Sell Personal Information ("PI").
- In the last 12 months, we collected these categories of PI: (1) Identifiers; (2) PI described in Cal. Civ. Code §1798.80(e); (3) Protected classification characteristics under California or federal law; (4) Commercial information; (5) Internet and other network activity information; and (6) Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).
- In the last 12 months, we have disclosed for a Business Purpose: (1) Identifiers; (2) PI described in Cal. Civ. Code §1798.80(e); and (3) Commercial information.The sources of personal information that we collected are: our subscribers (as defined elsewhere in this Privacy Policy), directly from you, third party sites or platforms that you link with your registered account and analytics tools.
- The CCPA grants CA residents in certain circumstances: (1) the right to request for the last 12 months specific pieces of PI, categories of PI, categories of sources of PI, Business Purpose or Commercial Purpose for collecting PI, and categories of Third Parties with whom we have shared PI; (2) the right to request deletion of PI; and (3) the right not to be discriminated against for exercising the rights listed above.
- To exercise CCPA rights, please submit a request via support@maialearning.com. Exercise is subject to verification (e.g. via our existing authentication practices for registered users or via information provided by you matching information we have already collected) and certain exceptions, and will be processed in accordance with applicable law. An authorized agent may make a request for you by providing written permission signed by you.
- CA residents under age 18 registered as MaiaLearning users may request (via support@maialearning.com) and obtain removal of content or information publicly posted on MaiaLearning. Removal does not ensure complete or comprehensive removal of said content or information.
- If you have any questions or concerns about MaiaLearning’s privacy policy and practices please email to legal@maialearning.com.

Additional Information for European Users
‍Osano has been appointed as MaiaLearning's representative in the European Union for data protection matters, pursuant to Article 27 of the General Data Protection Regulation of the European Union. In addition to the Data Subject Access Request form and legal@maialearning.com, Osano can be contacted, only on matters related to the processing of personal data, via the mailing address below.

Osano can be contacted at:
‍
Osano International Compliance Services Limited
ATTN: XZMJ
25/28 North Wall Quay
Dublin 1, D01 H104
IRELAND

If you have any questions about this Privacy Policy, please contact us

By mail:
MaiaLearning, Inc.
22700 Alcalde Rd
Cupertino, CA 95014

By email: support@maialearning.com
‍
‍Last modified on December 16, 2021