Privacy Policy

Brighten Learning (“BL,” “we” or “us“) provides educational materials and related services, via a set of online learning platforms. The following privacy policy governs our privacy practices for each learning platform that links to this policy.

We have created our learning platform to assist schools in providing personalized and rewarding online educational experiences to their students. We believe that transparent and strong privacy practices foster these experiences, and we provide this privacy policy in that spirit.

Our learning platform is designed for schools and teachers working with K–12 students. We recognize the sensitive nature of personal information concerning students under age 13, and concerning K–12 students generally, where the information is contained in a school’s educational records. This personal information is protected under either or both of the following federal statutes: the Children’s Online Privacy Protection Act (“COPPA”) and the Family Educational Rights and Privacy Act, including the Protection of Pupil Rights Amendment (“FERPA”). Our privacy practices comply with both COPPA and FERPA.

This privacy policy governs our privacy practices with respect to all personal information that our users submit, or that we collect in connection with our learning platform. This policy governs not only our practices with respect to students’ personal information, but also with respect to the personal information of teachers and school administrators who use our learning platform.

COPPA permits a school, acting in the role of “parent,” to provide required consents regarding personal information of students who are under the age of 13. Where a school is the subscriber to our learning platform, we rely on this form of COPPA consent. We provide the school with this privacy policy, to ensure that the school, in providing its COPPA consent, has full information and assurance that our practices comply with COPPA.

FERPA permits a school to provide educational records (including those that contain students’ personal information) to certain service providers without requiring the school to obtain specific parental consent. FERPA permits this where the service provider acts as a type of “school official” by performing services, for example, that would otherwise be performed by the school’s own employees. We fulfill FERPA requirements for qualifying as a school official by, among other steps, giving the school direct control with respect to the use and maintenance of the education records at issue (including associated personal information), and refraining from re-disclosing or using this personal information except for purposes of providing our learning platform to the school. We comply with FERPA by relying on this form of consent.

We also obtain consents regarding personal information of users other than students (such as teachers and school administrators). To obtain these consents we (a) notify the users of our privacy practices by including links to this privacy policy within our learning platform, and (b) rely on their continued use of our learning platform to indicate their consent to this privacy policy.

We limit our collection of personal information to no more than is reasonably necessary for the user at issue to participate in our learning platform. Specifically, we collect the following types of information:

If we discover that we have collected information in a manner inconsistent with the requirements of COPPA or FERPA, we will either (a) delete the information or (b) promptly seek requisite consents before taking further action concerning the information.

Our learning platform collects personal information in three ways. First, school administrators and teachers provide personal information during the registration process. Second, teachers and students submit personal information during the normal operation of our learning platform. They submit this information, for example, when creating and responding to teaching assignments, and otherwise engaging in educational and other activities available on our learning platform. Finally, we collect usage information through technology, such as cookies, flash cookies, web beacons, and persistent identifiers. This collection of usage information takes place, for example, when a student or other user visits our learning platform, and during the activities in which the user engages. Certain features (or all features) of our learning platform may be hosted on third party sites, and in those instances the collection activities described above are undertaken by this third party, under our direction and control and consistent with this privacy policy.

We use personal information for the following purposes:

We do not as a rule allow third-party operators to collect personal information or usage information through persistent identifiers on our learning platform for any purposes other than the internal operations of our platform. Further, we do not use personal information collected through our Platform for the purpose of targeted advertising.

Finally, we de-identify usage information in accordance with COPPA and FERPA, and use this de-identified information to develop, evaluate, and provide improved educational products and services, as permitted under COPPA and FERPA. To the extent we collect information that constitutes Performance Review Data, we protect such information as personal information in accordance with this Privacy Policy.

We use personal information for our internal purposes only, with the following limited exceptions. First, we share information with our service providers if necessary for them to perform a business, professional, or technology support function for us. In instances where we engage service providers for these purposes, we require them to comply with this privacy policy. Second, we disclose personal information:

We have implemented and maintain technical, administrative and physical security controls that are designed to protect the security, confidentiality and integrity of personal information collected through our learning platform from unauthorized access, disclosure, use or modification. Our information security controls comply with reasonable and accepted industry practice, as well as requirements under COPPA and FERPA. We diligently follow these information security controls and periodically review and test our information security controls to keep them current.

School administrators and (where applicable) teachers hold access to personal information of the students for whom they are responsible, and they are able to update this information in the manner permitted by our learning platform. School administrators and teachers are similarly able to access and update their own personal information. The parents of a student can obtain access — through their child’s school — to information concerning their child that is available on our learning platform. To do so, the parent should follow the school’s procedures for access under FERPA. We cooperate with and facilitate the school’s response to these access requests. Where the school’s procedures do not apply to the parent’s access request (and the request is otherwise proper), we will ourselves fulfill the request if and as required by law. After fulfilling an access request, we will update and (where necessary) correct the personal information at issue, as requested by the school or individual entitled to such access. We limit access to personal information to only those employees (i) who have a need to know such information, and (ii) who use the information only for the educational purposes of operating our learning platform and delivering our services.

We retain personal information of users of our learning platform (i) for up to 60 days, unless agreed in writing to extend from an authorized official, (ii) to permit the user to participate in the platform, (iii) to ensure the security of our users and our services, or (iv) as required by law or contractual commitment. After this period has expired, we will delete the personal information from our systems. Please understand that these deletion periods apply to personal information and do not apply to de-identified information. We retain de-identified information in accordance with our standard practices for similar information, and do not retain or delete such information in accordance with this policy.

In addition, if requested by a school, we will delete from our platform the personal information of the school’s users, including its teachers and students, as the school directs. Deleting this information will prevent the school user from engaging in some or all features of our learning platform. Where required by local law, we will delete such information and provide a certification of such deletion.

The New York Parents’ Bill of Rights for Data Privacy and Security (the “Privacy Bill of Rights“) addresses the relationship between schools and their third party contractors in addition to the schools’ relationships with parents. The only elements of the Privacy Bill of Rights that are incorporated herein are those provisions directed to third party contractors (“Contractor Privacy Provisions“). BL agrees to comply with the Contractor Privacy Provisions for schools in the State of New York. In the event of a direct conflict between this Privacy Policy and the Privacy Bill of Rights, the Privacy Bill of Rights will control. The full text of the Privacy Bill of Rights is available at http://www.p12.nysed.gov/docs/parents-bill-of-rights.pdf.

“De-identified information” means information that meets each of the following criteria: the information (i) does not identify a particular natural person; (ii) does not identify, by network Internet Protocol address, raw hardware serial number, or raw MAC address, a particular device or computer associated with or used by a person; (iii) does not identify the school at issue by name or address; and (iv) is not reasonably linkable to a particular natural person or school because of technical, legal, or other controls.

“Learning platform” means any BL  learning platform that links to this privacy policy.

“Parent” means a parent or legal guardian of a student.

“Personal Information” means information that identifies a natural person, as specified in the Family Educational Rights and Privacy Act, 20 U.S.C. § 1232g, including the Protection of Pupil Rights Amendment (“FERPA”) and the Children’s Online Privacy Protection Act, 15 U.S.C. §§ 6501–6506 (“COPPA”), the California Student Online Personal Information Protection Act, Ch. 22.2, §§ 22584 et seq. of the California Business and Professions Code, and Section 49073.1 of the California Education Code.

“Student” means an individual receiving educational instruction via our learning platform. The term “student” includes individuals within the K–12 age group, and individuals who are children under the age of 13.

“Usage Information” means information that does not directly identify a particular person, but that may be linkable to a particular computer or device (via a unique device ID or otherwise).

“We” or “us” or “our” refers to BL.

You may contact us with questions or concerns with respect to this Privacy Policy at the following addresses: contact@brightenlearning.com. Any improper collection or misuse of information provided by BL’s Website is a violation of the Terms of Use and should be reported to contact@brightenlearning.com. If you have any questions about this Privacy Policy, please contact us at contact@brightenlearning.com or write us at:

Brighten Learning
162 S. Rancho Santa Fe Road
Suite E70
Box 228
Encinitas, CA 92024

Please be assured that any personal information that you provide in communications to the above e-mail and postal mail addresses and telephone numbers will not be used to send you promotional materials, unless you so request.

The effective date of this Privacy Policy is January 1st, 2022.