Privacy Policy
Effective Date: December 27, 2025
At EverSpark Inc. (“EverSpark,” “we,” “us,” or “our”), we prioritize your privacy and aim to provide a safe online experience. This Privacy Policy explains how we collect, use, share, and safeguard your personal information when you use our websites and services (collectively, the “Services”). By accessing or using our Services, you agree to this Privacy Policy.
1. Information We Collect
1.1 Personal Information You Provide
We collect personal information you voluntarily provide, including:
- Account Creation: Name, email, password.
- Service Usage: Teachers may input student information (names, grades, assignments, health info, educational records).
- Communications: Name, email, and any info you provide when contacting support.
- Payments: Billing info processed securely by third-party processors; not stored on our servers.
Data Minimization: We collect only what is necessary to provide Services, fulfill legal obligations, and maintain security.
School Official Under FERPA: When processing student data on behalf of a school, we act as a “School Official” under FERPA, using data only for authorized educational purposes.
Note: Our Services are designed primarily for teachers and educational institutions; they are not intended for direct use by students.
1.2 Information Collected Automatically
- Usage Data: IP address, browser type, pages visited, timestamps.
- Cookies & Similar Technologies: To enhance experience and analytics.
1.3 Information from Third Parties
We may receive information from teachers, schools, or other third parties providing student or user data.
2. How We Use Your Information
- Provide & improve Services (student data is never used for product improvement or advertising).
- Account management and authentication.
- Communication and notifications.
- Payment processing.
- Compliance with laws.
- Safety and security.
- Personalization (excluding student data).
3. Data Sharing and Disclosure
3.1 Third-Party Service Providers
We share personal information with trusted service providers who assist us. They are contractually obligated to protect your information. We do not sell or rent user or student data.
3.2 Third-Party Providers
| Vendor | Purpose | Processes Student Data | Location |
|---|---|---|---|
| Userway | Accessibility widget | Yes | U.S. |
| Canny | User feedback | Yes | U.S. |
| Amplitude | Product analytics | Yes | U.S. |
| Hubspot / Pipedrive / Aircall | Customer management | No | U.S. |
| Stripe | Payment processing | No | U.S. |
| Slack | Internal communications | No | U.S. |
| Sentry | Technical issue logging | Yes | U.S. |
| Mailmodo | Customer communications | No | U.S. |
| Google LLC / AWS / Vercel / MongoDB | Cloud & hosting services | Yes | U.S. |
3.3 Legal Requirements
We may disclose personal information if required by law or in response to valid requests by authorities.
4. Data Security
- Encryption: TLS 1.2+ for transit; AES-256 at rest.
- Access controls: Limited to authorized personnel.
- Regular security reviews and staff training.
- Data breach notifications as required by law.
5. Data Retention
- Account info: Until deletion or legally required.
- Student data: Retained to provide Services or per law; deleted/returned after contract ends.
- Backups: Anonymized or removed within a set period unless legally required.
6. Your Choices and Rights
- Access & correction: Via account or support@eversparkworks.com.
- Deletion: privacy@eversparkworks.com (processed within 30 days).
- Opt-out of communications via “unsubscribe” links or account settings.
- Cookies management through browser settings.
7. Children’s Privacy (COPPA)
- Teachers must obtain parental consent for students under 13.
- Parents can request review or deletion via privacy@eversparkworks.com.
8. GDPR Compliance
EEA/UK users have rights to access, rectification, erasure, restriction, portability, objection, and protection from automated decisions. Contact privacy@eversparkworks.com to exercise rights.
9. AI Policy
- AI features are opt-in and clearly labeled.
- All data remains user-owned; not used to train AI models.
- Third-party AI tools adhere to HIPAA and privacy standards.
- Users can opt-out at any time.
- Responsible, ethical AI practices maintained.
10. Cookies
- Essential, functional, and analytics cookies used.
- No student-level analytics used.
- Manage preferences via browser settings.
11. Third-Party Links
We are not responsible for privacy practices of external websites.
12. Changes
Policy updates are posted with new effective dates.
13. Contact
Email: privacy@eversparkworks.com
Mailing Address:
EverSpark LLC.
Ypsilanti, MI
14. No Targeted Advertising
We do not use student or personal information for targeted advertising.
15. Aggregate or De-Identified Data
Used solely for analysis or improving Services, not for marketing.
16. Compliance & Certifications
- ISO 27001 certified
- HIPAA compliant
- FERPA verified