Privacy Policy

SpEd Coach Master is provided to schools, districts, and education organizations as a central access and governance layer for modular workflow tools. This Privacy Policy describes the categories of data we process on behalf of those organizations.

Who controls the data

The organization that licenses SpEd Coach Master is the data controller for end-user records inside their workspace. SpEd Coach Master acts as a data processor on the organization's behalf.

What we collect

• Account data: name, email, authentication identifiers.
• Organization data: organization name, status, members, roles.
• Module data: which modules are enabled, per-user module access, seat counts.
• Operational logs: authentication events, module launches, administrator actions, support requests, AI usage counts.
• Module content: content created inside individual product modules is governed by that module's data handling. See each module's documentation.

How data is isolated

Each organization's data is isolated using row-level security policies in our database. Members of one organization cannot read, modify, or list data belonging to another organization. Administrator routes are role-gated server-side.

FERPA awareness

SpEd Coach Master is designed with FERPA-aware practices: role-based access, audit logging, and organization-controlled data sharing. SpEd Coach Master does not claim to be a FERPA-certified service and does not certify compliance on behalf of any organization. Schools remain responsible for their own FERPA obligations, including any required parental notice and consent.

Sub-processors

We use a small number of infrastructure sub-processors for hosting, database, authentication, and AI model access. Sub-processors are bound by contract to maintain confidentiality and appropriate safeguards.

Retention and deletion

See our Data Retention page for the retention model and how to request export or deletion.

Contact

Privacy questions can be sent through the Support page.