Privacy Notice

Educational Data

When you use SimulateAI, we collect information about your learning journey to provide personalized experiences:

• Scenario Progress: Which scenarios you've completed and your choices within them
• Ethics Radar Data: Your ethical decision patterns and reasoning frameworks
• Learning Analytics: Time spent on scenarios, replay patterns, and exploration paths
• Achievement Data: Badges earned, milestones reached, and learning objectives completed

Account Information (Optional)

If you choose to create an account or sign in with third-party services:

• Authentication Data: Email address, display name, and profile picture (from sign-in providers)
• User Preferences: Settings like accessibility options, theme choices, and notification preferences
• Sync Data: Information to synchronize your progress across multiple devices

Technical Information

We automatically collect some technical information to ensure the platform works properly:

• Device Information: Browser type, operating system, screen resolution (for responsive design)
• Usage Analytics: Which features are used most, error reports, performance metrics
• Security Logs: Failed login attempts, suspicious activity patterns

Educational Purposes

• Personalized Learning: Tailor scenario recommendations based on your interests and progress
• Progress Tracking: Save your achievements and learning milestones across sessions
• Adaptive Content: Adjust difficulty and content based on your engagement patterns
• Assessment Support: Provide educators with anonymized learning analytics (with consent)

Platform Improvement

• Feature Development: Understand which features help learning and which need improvement
• Bug Fixes: Identify and resolve technical issues to improve user experience
• Accessibility Enhancement: Ensure the platform works for users with diverse needs
• Educational Research: Anonymized analysis to improve AI ethics education methods

Communication

• Essential Updates: Important changes to privacy policies or platform functionality
• Educational Resources: New scenarios, educator tools, and learning materials (opt-in only)
• Technical Support: Respond to help requests and troubleshoot issues

We Do NOT Share Data For:

• ❌ Marketing or advertising purposes
• ❌ Commercial data brokers or data mining
• ❌ Social media targeting or profiling
• ❌ Any non-educational commercial purposes

Limited Data Sharing (Educational Purposes Only)

• Educational Institutions: With explicit consent, we may share aggregated, anonymized learning analytics with your school or educator
• Third-Party Services: We use trusted educational technology providers for authentication (Firebase), analytics (Google Analytics for Education), and content delivery
• Legal Requirements: We may disclose information if required by law or to protect user safety

Data Processing Partners

These trusted partners help us provide educational services:

• Google Firebase: Secure authentication and data storage (GDPR and COPPA compliant)
• Google Analytics for Education: Privacy-enhanced analytics without advertising features
• Cloudflare: Content delivery and security protection

Technical Security Measures

• Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• Access Controls: Strict authentication and authorization for data access
• Regular Security Audits: Periodic security assessments and vulnerability testing
• Incident Response: Documented procedures for security breach response

Organizational Security

• Staff Training: Regular privacy and security training for all team members
• Data Minimization: We only collect data necessary for educational purposes
• Retention Limits: Data is automatically deleted according to retention schedules
• Regular Backups: Secure, encrypted backups to prevent data loss

Compliance Standards

• GDPR: Full compliance with European data protection regulations
• FERPA: Adherence to U.S. educational privacy standards
• COPPA: Special protections for users under 13 years old
• ISO 27001: Information security management best practices

Data Access and Control

• Access: Request a copy of all data we have about you
• Correction: Update or correct inaccurate information
• Deletion: Request complete removal of your data (see our Data Deletion page)
• Portability: Export your data in a machine-readable format

Communication Preferences

• Opt-out: Unsubscribe from educational newsletters and updates
• Notification Settings: Control which types of communications you receive
• Marketing Withdrawal: Stop promotional communications while keeping essential updates

Special Rights for Minors

• Parental Consent: Parents can request deletion of their child's data
• Enhanced Protections: Additional privacy safeguards for users under 18
• Educational Oversight: Schools and educators can manage student data on their behalf

How to Exercise Your Rights