Privacy Policy
Welcome to Amesite! We aim to provide the highest level of respect and protection of privacy. This Privacy Policy serves as a guide to how Amesite Inc. ("Company”) manages and safeguards data.The definitions below are the building blocks for our Privacy Policy.
Definitions
"Company" - That's us, Amesite, a provider of artificial intelligence software and services.
"Platform" – Our products and services and all of the technology and business services that create them, in part or whole: a blend of software, hardware, content, and technology that includes everything from behind-the-scenes processes to the user interface, our website, data handling, communication, and advanced analytics.
"User" - That's you! Whether you're an individual, a representative of an entity, or even an automated system, if you're engaging with our Platform, this term refers to you.
"Partner" - Any organization that has entered into an agreement with us to use the Platform to provide content and services to its students, employees, contractors, affiliates or collaborators, or any other entity with which it engages in any way.
"Product" - The branded software and services that we and our Partners offer on the Platform, including information, courses, and capabilities that are offered to a User.
"Content" - A collective term for both "Partner Content" (everything from information to protocols provided by our Partners, sometimes using third-party materials) and "Company Content" (the material we create or source ourselves, based on Partner Content and enriched with additional third-party content), and “Generated Content” (including information produced by our models and algorithms, whether original, derivative or any combination).
"Expert" - Knowledgeable individuals or groups, including but not limited to educators, instructors, consultants, industry professionals, thought leaders, and software agents who contribute their specialized expertise to our Platform.
"Output" - The materials you, as a User, create using the Platform or that the Platform creates for you.
"Input" – Any and all materials you provide to the Platform, either directly or indirectly or through a Partner.
1. INTRODUCTION
Understanding Our Ecosystem and Scope of Our Privacy Commitment
Our Platform is a dynamic environment where software, hardware, content, technology and other elements collectively create the User experience. As you explore and utilize the various Products and Content provided by Amesite and our Partners, please know that your privacy and the security of your personal information are our top priorities. This Privacy Policy applies to all interactions with the Platform. By using the Amesite Platform, you consent to the collection and use of your information as described in this Privacy Policy. We are dedicated to maintaining transparency in our data practices and providing you with the control to manage your personal information.
Your Rights
Amesite acknowledges the trust you place in us when sharing your personal information. By using the Platform, you acknowledge and accept the practices and terms outlined in this policy. As such, we are committed to:
• Ensuring that you are fully informed about the use and handling of your personal data.
• Providing you with tools and choices to control your personal information.
• Upholding your rights to access, modify, and delete your personal information, consistent with legal and regulatory requirements.
2. DATA COLLECTION
Types of Data Collected
• Personal Information: This includes but is not limited to your name, email address, phone number, and other contact details you provide. When engaging with our services, you may also create and share personal output through the Platform.
• Payment Information: For services requiring payment, we process transaction-related information, which may include credit card numbers, bank account details, and billing addresses, through secure payment processing services.
• Analytical Data: We collect data about how our Users interact with the Platform. This includes but is not limited to usage patterns, engagement levels, and preferences, which help us tailor our services and improve user experience.
• Minors' Information: You must be at least 18 years of age to use the Platform in any capacity, for any reason.
Methods of Collection
• Direct Collection: When you actively provide us with your data, such as signing up for an account, enrolling in a course, or contacting customer support or any other engagement with the Platform.
• Indirect Collection: We may receive information about you from other sources, including our partners and third-party services, which we may combine with the information you provide.
• Automatic Collection: As you navigate our Platform, we automatically collect certain information via cookies, logs, and other technologies that capture your interactions with our services.
• Third-Party Collection: We may utilize services from third parties to gather analytics data, enhance the functionality of our Platform, or process payments, and in doing so, they may collect information as necessary to provide their services.
3. USE OF TECHNOLOGICAL TRACKING
Tracking Technologies Employed
• Cookies and Other Tracking Technologies: We use may use cookies, web beacons, and other tracking technologies to collect information that aids in personalizing your experience. These technologies help us remember your preferences, authenticate your account, analyze Platform performance, provide tailored content or perform other functions.
• User Control: You have the choice to control the use of tracking technologies. Most web browsers provide options to block cookies or to alert you before they are placed on your device. However, please note that disabling cookies may limit your ability to use certain features of the Platform.
• Third-Party Opt-Out: We respect your privacy choices and provide you with opt-out mechanisms for third-party tracking where applicable. You can often opt out of third-party advertiser use of cookies by visiting their respective opt-out pages.
Application of Tracking Data
• Enhancing Your Experience: The data collected through tracking technologies allows us to understand user behavior, improve the functionality of our Platform, and offer content that is relevant to you.
• Analytics and Improvement: We analyze data to identify trends, measure Platform performance, and implement enhancements based on user interaction patterns.
• Security and Fraud Prevention: Tracking data also plays a crucial role in maintaining the security of our Platform and protecting against fraudulent activities.
• Your use of the Amesite Platform signifies your understanding and acceptance of our use of such tracking technologies, as outlined above. We are dedicated to using these technologies responsibly and transparently, ensuring that your privacy remains safeguarded.
4. DATA USE PRACTICES
Utilization of Collected Data
The data collected through the Platform is utilized to do the following, among other tasks:
• Enhance and personalize the user experience.
• Improve our services and develop new features.
• Conduct internal analytics and market research.
• Communicate with users, including providing customer support and sending updates about our services.
Legal Basis for Data Processing
In compliance with the General Data Protection Regulation (GDPR) and other data protection laws, our legal basis for processing personal data includes:
• User consent for specific uses of data.
• The necessity to fulfill our contractual obligations to our users.
• Legitimate interests pursued by Amesite, such as improving our Platform, unless such interests are overridden by the rights and freedoms of the data subject.
Data Use for AI Services and Personalization
We may employ artificial intelligence (AI) to provide tailored content and a personalized learning experience. This may include:
• Analyzing user preferences and interactions to recommend relevant experiences or content.
• Utilizing machine learning algorithms to adapt User workflows to individual User needs.
• Analyzing User data to predict and respond to User behaviors and needs.
Commitment to Data Protection
Amesite is committed to the principles of data minimization and purpose limitation. We ensure that the data used for AI and personalization is relevant and necessary for the services provided. All data processing activities are conducted with the highest regard for privacy and security, and aligned to applicable data protection laws.
5. USER RESPONSIBILITIES TO ASSURE PRIVACY OF THIRD PARTIES
Respecting Boundaries of Usage
The Platform serves as an informational resource and is not intended for storing or managing Protected Health Information (PHI) or any other data that falls under regulatory compliances such as HIPAA. Users must acknowledge and respect these boundaries and refrain from transferring, storing, or processing such protected information within the Platform.
Sole Responsibility of Users
Users who have access to PHI or other sensitive data through their professional capacities or other platforms must act as compliant custodians of that data. It is the sole responsibility of the User to ensure adherence to all protocols, regulations, and privacy standards applicable to such information. This includes not utilizing the Amesite Platform for any activities where the security and privacy requirements of PHI are mandated.
Prohibited Actions
To maintain the integrity of the Platform and respect the privacy of all third parties, Users are expressly prohibited from:
• Uploading PHI or sensitive regulatory-protected data onto the Platform.
• Using the Platform as a repository for any information that requires special compliance or protection.
• Sharing any content through the Platform that may compromise the privacy of individuals as protected by law.
Acknowledgment of Platform Limitations
By using the Amesite Platform, Users acknowledge that the Platform does not offer HIPAA compliance or similar regulatory assurances. The responsibility to secure and manage PHI or other regulated information appropriately, using compliant and designated tools and services, lies with the User.
Commitment to Third-Party Privacy
We trust our Users to uphold their professional and ethical obligations to third-party privacy. Our commitment to your privacy is mirrored in our expectations that you, as a User, will be an advocate for the privacy of others. Should there be any uncertainty regarding the handling of sensitive data, we encourage Users to seek clarification to ensure full compliance with all privacy obligations.
6. DATA SHARING AND DISCLOSURE
We are committed to leveraging the data we collect to foster partnerships, enhance our offerings, and participate in market-driven opportunities. Here is how we may share and disclose data:
With Your Consent
We may share your data with third parties when we have obtained your explicit consent to do so. This may include sharing with partners who may offer products or services of interest to you.
For External Processing
We provide personal data to our affiliates or other trusted businesses or persons to process it for us, based on our instructions and in compliance with our Privacy Policy and any other appropriate confidentiality and security measures.
For Legal Reasons
We will share personal data with companies, organizations, or individuals outside of Amesite if we have a good-faith belief that access, use, preservation, or disclosure of the data is reasonably necessary to meet any applicable law, regulation, legal process, or enforceable governmental request.
In the Event of Sale or Business Transaction
If we are involved in a merger, acquisition, or asset sale or purchase, your personal data may be transferred.
Non-personally Identifiable Information
We may share non-personally identifiable information publicly and with our partners – like publishers, advertisers, developers, or rights holders. For example, we may share information publicly to show trends about the use of our services.
Partner Relationships
We may share your data with trusted partners in order to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about targeted advertising, including how you may be able to opt out, you may visit third-party resources like the Network Advertising Initiative’s opt-out page.
Revenue-Generating Data Use
We actively explore avenues for utilizing the data we collect in ways that are beneficial to our users, partners, and our business model. This includes, but is not limited to, creating anonymized datasets for research, developing insights for industry analysis, or participating in data-sharing initiatives that may offer financial returns.
Aggregated and Anonymized Data
We may also use aggregated or anonymized data to improve our services, develop new products, and to analyze and enhance the user experience. This data does not identify you individually but may be derived from your personal data. We are committed to balancing the commercial use of data with respect for individual privacy. We ensure that all data sharing and disclosure activities comply with applicable data protection laws and our own high standards of privacy.
7. DATA PROTECTION AND SECURITY
Our data protection and security policies are designed to safeguard the information you trust us with. Here are the ways we protect your data:
Robust Security Measures
We employ state-of-the-art security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These include advanced encryption technology, secure network configurations, and regular security assessments conducted by experts.
Payment Information Security
We understand the sensitivity of payment information and take extra precautions. Our payment security strategy includes compliance with Payment Card Industry Data Security Standards (PCI DSS) and the use of secure payment processing services.
Proactive Incident Response
In the unlikely event of a data breach, we have an incident response plan ready to mitigate risks and promptly inform affected users. We are committed to resolving any issues efficiently and minimize any potential impact on our Users.
Ongoing Training and Awareness
Our staff is regularly trained on the importance of data security and privacy. We foster a culture of security awareness within our organization to ensure that every team member understands their role in maintaining the integrity and confidentiality of user data.
Continuous Improvement
Data security is not a one-time task but a continuous endeavor. We constantly update our security practices in response to new threats and evolving industry standards to ensure that our Users' data remains protected.
8. USER RIGHTS AND CHOICES
We recognize the critical importance of your privacy rights and the choices available to you regarding your personal data. Our practices are designed to comply with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other relevant privacy laws, ensuring that we maintain the highest standards of data privacy.
Managing Your Personal Information:
Access and Control: We provide you with account settings and tools to access and manage the personal data we hold about you, including the ability to correct or update certain information.
Your Privacy Rights Under Law:
• GDPR: If you are a resident of the European Economic Area (EEA), you have the right to access, correct, or delete personal data we hold about you and to restrict or object to our processing of your personal data.
• CCPA: California residents can request disclosure of the specific pieces and categories of personal data we have collected, as well as the right to ask for the deletion of their personal information by contacting [email protected] with the subject line “Request for Data Control”, if you would like us to delete your personal data.
Exercising Your Rights:
Should you wish to exercise any of your rights, contact [email protected] with the subject line “Request for Data Control”, if you would like us to delete your personal data or opt-out of certain practices, to ensure your requests are handled in a timely and efficient manner.
9. INTERNATIONAL DATA TRANSFERS
We are a global entity engaging in various activities that may involve the cross-border transfer of personal information. We understand the significance of protecting personal data when it is transferred internationally, and we are committed to handling such data with the utmost care and in accordance with all applicable legal frameworks.
Cross-Border Data Transfer and Storage:
• Policy Compliance: We strive to transfer personal data across borders in full compliance with the principles set forth by international privacy agreements and local laws. Our policies are designed to ensure that data is transferred securely and with legitimate business justifications.
• Global Operations: Our operations require a harmonized approach to data handling, ensuring consistency in protection levels, whether the data is stored within the European Union, the United States, or any other region.
Compliance with International Privacy Frameworks:
• GDPR: We design for compliance with the General Data Protection Regulation (GDPR), which includes specific requirements for transferring personal data outside the EEA to ensure the same level of data protection as within the EEA.
• Other Frameworks: We also respect and strive to comply with other international frameworks and principles, adapting our practices as necessary to align with the evolving global privacy landscape.
10. DATA RETENTION
We aim to balance user privacy rights with the need to retain data for legitimate business and security purposes.
Duration of Data Retention
The length of time for which we retain personal data varies depending on the type of information and the reasons for which we need it. We design our retention practices to ensure that we do not keep personal data for longer than is necessary for the purposes for which it was collected or for which it is to be further processed.
Criteria for Determining Retention Period
The criteria used to determine the retention periods include:
• The nature and sensitivity of the personal data.
• The purposes for which we process the personal data and whether we can achieve those purposes through other means.
• The applicable legal, regulatory, tax, accounting, or other requirements that may specify how long certain types of data should be kept.
• Operational requirements such as proper account maintenance, facilitating client management, and responding to legal claims or regulatory requests.
Process for Data Deletion and De-Identification
When data is no longer needed, or when a user exercises their right to have their data deleted, we follow a structured deletion and de-identification process:
• Deletion: We remove personal data from our systems in a way that ensures the information cannot be reconstructed or read.
• De-identification: In cases where the data may still serve a legitimate business or research purpose, we may opt to de-identify the information. This process involves removing or altering certain details so the data cannot be linked back to an individual.
While we endeavor to partner with entities that uphold equivalent standards of data protection, we disclaim responsibility for any failure on their part.
11. UPDATES, CONTACT, AND FEEDBACK
We recognize the importance of maintaining a transparent and evolving relationship with our users. Hence, it is the User's responsibility to remain informed about our policies, which are subject to change at any time.
Updates and Acceptance of Changes
We strive to keep you updated on any amendments, understanding that such changes may impact your consent. We encourage you to review our policies frequently to stay informed. By choosing to use our services, you acknowledge and agree to any updated terms.
Input and Feedback
We welcome your input and value your privacy concerns. Should you have any questions, or wish to provide feedback about our privacy practices, please do not hesitate to contact us. Our dedicated customer support team is readily available to assist with any inquiries you might have. Remember, your voice matters to us. Your feedback is crucial in shaping the way we protect and manage your privacy. Together, we can ensure a secure and trustworthy experience.