Privacy Policy – Navigating Knowledge, LLC

Effective Date: July 9, 2025

Navigating Knowledge, LLC (“Navigating Knowledge,” “we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and share your information.

1. Information We Collect

  1. Personal Information You Provide: Name, email, phone, and address provided when creating an account, subscribing, or contacting us.
  2. Automatically Collected Information: IP address, browser type, device, usage data, location (if permitted).
  3. Information from Third Parties: Information from public sources or integrations (e.g., Stripe, social media).
  4. Student Data (K–12 Users Only): For users participating through a K–12 school or district (e.g., high school AP courses), we may collect information such as school-assigned email addresses, course enrollment, engagement data, and performance-related inputs. This data is collected solely to support educational purposes as outlined in this policy and in compliance with the Illinois Student Online Personal Protection Act (SOPPA) and the Family Educational Rights and Privacy Act (FERPA).

2. How We Use Your Information

  • To provide and support services
  • To send communications (you may opt out)
  • To improve services and conduct analytics
  • To meet legal and contractual obligations
  • For student users in Illinois K–12 schools, all data is used strictly to support educational services as permitted by SOPPA and FERPA. We do not use student data for marketing, advertising, or profiling beyond educational use.

3. Legal Bases for Processing (EEA/UK)

We process your data based on consent, contract, legitimate interest, or legal obligation.

4. Sharing Your Information

  • With your consent
  • With service providers under contract
  • For legal compliance or protection of rights
  • For K–12 student data, we may share information only with authorized service providers acting on our behalf. These providers are contractually bound to use student data solely for educational purposes and to comply with applicable privacy laws. A full list of subprocessors that may have access to K–12 student data is available upon request.

5. Your Rights

You may have the right to access, correct, delete, or restrict the use of your personal data under applicable laws (e.g., GDPR, CPRA). You may also object to certain processing activities or request data portability.

To exercise your rights, please submit a Data Subject Request via email. Include your name, the nature of your request, and the email address associated with your account so we can verify your identity.

6. Data Retention

We retain data as long as needed for service delivery or legal purposes.

For K–12 student data governed by SOPPA, we retain information only for the duration of the educational service relationship. Upon written request from the school or upon termination of the service, we will delete student data within 60 calendar days in accordance with SOPPA.

7. Security

We use secure servers, encryption, and access controls. However, no system is completely secure.

8. Payments and Subscriptions

Payments are processed through Stripe. We do not store payment details. Subscriptions can be canceled any time. Refunds are discretionary.

9. Cookies and Tracking

We use session-based tracking mechanisms to maintain your login state, personalize your experience, and support secure transactions. These sessions are stored server-side and do not rely on browser cookies.

We do not use tracking cookies, advertising pixels, or third-party cookie-based analytics. You may still configure your browser privacy settings, but our core services do not require cookie consent banners under current regulations.

10. Third-Party Links

We are not responsible for external sites. Use at your own discretion.

11. Email Policy

We comply with anti-SPAM laws. You may unsubscribe from promotional messages at any time. We do not sell or rent email addresses.

12. Data Aggregation

We may use de-identified, aggregated data for analysis and product development.

13. Intellectual Property

All content is protected by intellectual property law. Unauthorized use is prohibited.

14. Children’s Privacy

We do not knowingly collect or solicit personal information from children under the age of 13. If we learn that we have inadvertently collected such data, we will delete it promptly.

15. International Data Transfers

Your personal data may be transferred to, and stored in, countries outside your jurisdiction, including the United States. Where required, we implement appropriate safeguards such as Standard Contractual Clauses.

16. Do Not Track Signals

We do not respond to Do Not Track (DNT) browser signals. However, you may manage your tracking preferences via browser settings or Global Privacy Control tools.

17. Automated Decision-Making

We may use automated systems to deliver personalized experiences based on your activity. These processes do not involve legal or similarly significant effects on you.

18. Data Breach Notification

In the event of a data breach, we will notify affected users and relevant regulatory authorities in accordance with applicable laws.

For Illinois K–12 schools covered under SOPPA, we will notify the school district within 30 calendar days of becoming aware of a breach involving student data.

19. Changes to This Policy

We may update this policy. Material changes will be communicated through our website or email.

20. Contact Us

Questions or requests? Contact: hello@navigatingknowledge.com