Privacy Policy
Effective Date: March 1, 2026 | Last Updated: March 23, 2026
This Privacy Policy describes how Readify LLC ("Readify," "we," "us," or "our") collects, uses, and protects information when you use the Readify platform and related services. We are committed to protecting the privacy of all users, with particular care for children under 13 and student education records.
1. Our Privacy Architecture
Readify is built on a local-first AI architecture. All AI processing — including reading comprehension analysis, content generation, image generation, and adaptive learning — runs on local hardware controlled by you or your school. Student data never leaves the building. This is not a policy promise; it is an architectural guarantee.
2. What Data We Collect
2.1 Account Information
When you create an account or subscribe, we collect:
- Name and email address — for account creation and communication
- Payment information — processed securely through Stripe (we do not store credit card numbers)
- School/organization name — for institutional accounts
- Role — teacher, administrator, parent, or individual user
2.2 Usage Analytics
We collect limited, anonymized usage data to improve the Service:
- Feature usage frequency (which tools are used, not what content is created)
- Error reports and performance metrics
- Session duration and page views
- Device type and browser version (for compatibility)
3. What Data We Do NOT Collect
Because Readify's AI runs locally, the following data never reaches our servers:
| Data Type | Collected? | Where It Lives |
|---|---|---|
| Student reading passages and responses | No | Local machine only |
| AI-generated content (stories, illustrations) | No | Local machine only |
| Reading comprehension scores | No | Local machine only |
| Student learning profiles and analytics | No | Local machine only |
| Adaptive learning model data | No | Local machine only |
| Classroom chat / Q&A conversations | No | Local machine only |
| Account email and name | Yes | Readify servers (encrypted) |
| Subscription and billing records | Yes | Stripe (PCI compliant) |
| Anonymized feature usage | Yes | Readify analytics |
4. COPPA Compliance (Children Under 13)
Readify complies with the Children's Online Privacy Protection Act (COPPA). For complete details, see our dedicated COPPA Compliance Statement.
- No personal information from children under 13 is collected without verifiable parental consent
- Schools may act as the parent's agent under COPPA for classroom use, providing consent on behalf of parents
- All AI processing that involves children's content runs locally — no children's data is transmitted to external servers
- Parents may review, request deletion of, or refuse further collection of their child's information at any time
5. FERPA Compliance (Student Education Records)
For schools and districts, Readify complies with the Family Educational Rights and Privacy Act (FERPA):
- Student education records remain under the school's control at all times because they are stored on local infrastructure
- Readify does not access, store, or process student education records on our servers
- Schools maintain full authority over who can access student data
- No student records are shared with third parties by Readify
- The local architecture means FERPA compliance is guaranteed by design, not by contract alone
6. Data Retention
6.1 Account Data
We retain your account information for as long as your account is active. If you cancel your subscription, we retain your account data for 90 days to allow for reactivation. After 90 days, account data is permanently deleted upon request.
6.2 Payment Records
Payment transaction records are retained for 7 years as required by tax and financial regulations. These records are stored by Stripe in compliance with PCI DSS standards.
6.3 Usage Analytics
Anonymized usage analytics are retained for up to 24 months. This data cannot be linked to individual users.
6.4 Local Data
Data stored on your local machine (student work, AI-generated content, learning analytics) is entirely under your control. Readify does not have access to delete or modify this data. You are responsible for backing up and managing local data.
7. Third-Party Services
We use the following third-party services, each with their own privacy practices:
- Stripe (stripe.com/privacy) — Payment processing. PCI DSS Level 1 certified. We never store your credit card number.
- Cloudflare (cloudflare.com/privacy) — Content delivery network, DNS, and DDoS protection for our web infrastructure.
- Calendly (calendly.com/privacy) — Used for scheduling demo appointments. Only collects data you voluntarily provide when booking.
We do not sell, rent, or share your personal information with third parties for their marketing purposes.
8. Data Security
We implement industry-standard security measures to protect the data we do collect:
- TLS/SSL encryption for all data in transit
- Encrypted storage for account credentials
- Regular security audits and vulnerability assessments
- Access controls limiting employee access to user data on a need-to-know basis
- Cloudflare WAF and DDoS protection for web infrastructure
9. Your Rights
You have the following rights regarding your personal information:
- Access — You may request a copy of the personal data we hold about you
- Correction — You may request correction of inaccurate personal data
- Deletion — You may request deletion of your personal data, subject to legal retention requirements
- Portability — You may request an export of your data in a machine-readable format
- Objection — You may object to certain processing of your personal data
- Withdrawal of Consent — Where processing is based on consent, you may withdraw that consent at any time
To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.
10. International Users
Readify is operated from the United States. If you access the Service from outside the U.S., your limited account information may be transferred to and processed in the United States. By using the Service, you consent to this transfer. Note that student content and AI processing data remain local and are never transferred internationally.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated via email to registered users at least 30 days before they take effect. The "Last Updated" date at the top of this page reflects the most recent revision.
12. Contact Information
For questions, concerns, or requests related to this Privacy Policy:
- Email: [email protected]
- Website: ireadifybooks.com
- Mailing Address: Readify LLC, United States