Privacy Policy

1. Who we are and our commitment to student privacy

Tinkerix ("we", "us") is an AI-powered platform used by educators to generate interactive classroom activities. Protecting students is the foundation of how this product is designed. We commit to the principles of the Student Data Privacy Pledge: we do not sell student data, do not use it for targeted advertising, do not build advertising profiles of students, do not change privacy practices without notice, and we use student information only for the educational purpose authorized by the school or teacher.

2. Our role under FERPA

When a teacher, school, or district uses Tinkerix to generate or assign classroom activities, Tinkerix acts as a "School Official" with a legitimate educational interest under the Family Educational Rights and Privacy Act (FERPA, 34 CFR § 99.31(a)(1)(i)(B)). We perform a service the school would otherwise perform itself, we are under the direct control of the school with respect to any education records, and we use education records only for the authorized educational purpose. We do not re-disclose education records except as permitted by FERPA or directed by the school.

3. Information we collect

From teachers (account holders). Name, email, authentication identifiers from your sign-in provider (e.g. Google), and the profile fields you provide during onboarding (grade level, subjects taught, curriculum). We log the prompts you submit, the activities you generate, plan tier, and basic usage metrics (counts, timestamps).

From students. Tinkerix activities are designed to be played without a student account or login. We do not request student names, emails, IP-based identifiers, location, biometrics, behavioral profiles, or any other personally identifiable information from students. Activities may keep ephemeral progress (such as the current score in a quiz) in the student's own browser memory for the duration of the session; that data is never transmitted to Tinkerix servers and is discarded when the tab is closed.

Google Classroom (optional). If you connect Google Classroom, we receive an OAuth access token and the minimum course/roster metadata needed to post an assignment link to the class you select. We do not import student names, grades, or rosters into Tinkerix, and we do not read coursework submissions. You can disconnect at any time from your Account page.

Uploaded documents. If you attach a document (lesson plan, worksheet, reading) to a generation request, its contents are sent to our AI provider so an activity can be created from it. Teachers must not upload documents that contain student personally identifiable information (names, IDs, grades, IEPs, etc.). Uploaded files are not retained after the generation request completes.

Payments. If you upgrade to a paid plan, payment is processed by Stripe. We never see or store your full card number.

4. How we use information

• To operate the service and generate the activities you request.
• To enforce plan limits, prevent abuse, and secure the platform.
• To improve the product in aggregate (e.g. which activity types are most used). We never use student interactions to do this.
• To send essential service emails (account, billing, security, product changes).

What we never do: we never sell personal information; we never rent, trade, or share it for marketing; we never serve targeted advertising based on student data; we never build advertising or behavioral profiles of students; and we never use student data, teacher prompts, or uploaded documents to train AI models — neither ours nor any third party's. Our AI provider processes generation requests on a zero-retention basis and is contractually prohibited from using submitted content to train their models.

5. Sub-processors

We share data only with the limited set of vetted sub-processors required to run Tinkerix. Each is bound by a written data processing agreement and may process data only on our instructions:

• Supabase (via Lovable Cloud) — managed database, authentication, and storage hosting.
• Anthropic — AI generation provider. Requests sent on a zero data retention basis where applicable. Anthropic does not train on submitted content.
• Stripe — payment processing for paid plans.
• Google — sign-in (OAuth) and optional Google Classroom assignment posting.
• Resend — transactional service email delivery.

A current list is available on request. We will notify customers in advance of any material change to our sub-processors that affects student data.

6. Children's privacy (COPPA, FERPA, state laws)

Tinkerix is intended for use by educators in classroom settings. Because students do not create accounts and we do not knowingly collect personal information from children, the Children's Online Privacy Protection Act (COPPA) framework treats the teacher and school as the consenting authority for in-school educational use of the service.

We design Tinkerix to support school compliance with FERPA, COPPA, and U.S. state student-privacy laws including California's Student Online Personal Information Protection Act (SOPIPA), New York Education Law § 2-d, Illinois SOPPA, Colorado Student Data Transparency and Security Act, Connecticut Public Act 16-189, and similar laws in other states. If your school or district requires a signed Data Privacy Agreement (DPA) or addendum to a state-specific exhibit (e.g. NDPA), contact us at legal@tinkerix.app.

If you believe a student has provided personal information through a Tinkerix activity in error, contact legal@tinkerix.app and we will delete it.

7. Data retention and deletion

Account data is retained while your account is active. Generated activities are retained until you delete them or close your account. Generation logs used for abuse prevention are retained for up to 12 months and then automatically purged. You may request deletion of your account and all associated data at any time by emailing legal@tinkerix.app; we will complete deletion within 30 days, except where retention is required by law.

8. Parent and school rights

Under FERPA, parents (and eligible students 18+) have the right to inspect and review education records held by the school. Because Tinkerix does not collect personally identifiable student information, we typically have no education records to disclose. If a parent has a question about a specific activity, they should contact the teacher or school first; we will support the school in responding to access, correction, or deletion requests.

9. Your rights (teachers)

Depending on where you live (e.g. GDPR/EEA, UK, California CCPA/CPRA), you may have the right to access, correct, export, or delete personal data we hold about you, and to object to certain processing. Email legal@tinkerix.app to exercise these rights. We do not sell or "share" personal information as those terms are defined under California law.

10. Security

We use industry-standard encryption in transit (TLS 1.2+) and at rest, scoped Row-Level Security on our database, least-privilege access controls, secret management, and audit logging on administrative actions. Access to production systems is restricted to a small number of authorized engineers and requires multi-factor authentication.

11. Breach notification

In the event of a confirmed data security incident that affects personal information of teachers or, in the unlikely event applicable, students, we will notify the affected school or account holder without undue delay and in any case within the timelines required by FERPA, state student-privacy laws, and any executed Data Privacy Agreement, and we will cooperate with the school's notification obligations to parents and authorities.

12. International users

Tinkerix is operated from the United States. If you access the service from outside the U.S., you understand that your information will be transferred to, stored, and processed in the U.S. We rely on appropriate transfer mechanisms (such as Standard Contractual Clauses) where required.

13. Changes

We may update this policy from time to time. Material changes — particularly any that affect student data — will be announced by email and in-product notice in advance of taking effect. Continued use after the effective date constitutes acceptance.

14. Contact

Privacy questions, DPA requests, deletion requests, or suspected security issues: legal@tinkerix.app.