How We Use Student Data
Student Data provided under this Agreement shall remain the exclusive property of the relevant school and/or district. CommonLit has a limited, nonexclusive license solely for the purpose of performing its obligations as outlined in the Agreement. This Agreement does not give CommonLit any rights, implied or otherwise, to Student Data, content, or intellectual property, except as expressly stated in the Agreement. This means that CommonLit cannot sell or trade Student Data.
At the request of a school or district, CommonLit will ensure that all Student Data relating to that school or district, in CommonLit’s possession and in the possession of any subcontractors, or agents to which CommonLit may have transferred Student Data, are destroyed or transferred to the school or district under the direction of the relevant school or district when the Student Data are no longer needed for their specified purpose. Any Student Data relating to a school or district, and held by CommonLit, will be made available to that school or district upon request.
“Student Data” includes all Personally Identifiable Information (PII) and other non-public information. Student Data include, but are not limited to, student data, metadata, and user content. CommonLit will only collect Student Data as necessary to fulfill its duties as outlined in this Agreement, and will only use Student Data for the purpose of fulfilling its duties and providing services under this Agreement or to improve Services under this Agreement.
We Never Use Student Data To Advertise Or Market
CommonLit will never use any Student Data to advertise or market to students or their parents. We will not mine Student Data for any purposes other than those agreed to by the parties. Data mining or scanning of user content for the purpose of advertising or marketing to students or their parents is prohibited.
How We Secure Student Data
We store and process Student Data in accordance with industry best practices. This includes appropriate administrative, physical, and technical safeguards to secure Student Data from unauthorized access, disclosure, and use. We conduct periodic risk assessments and remediate any identified security vulnerabilities in a timely manner.
Our written incident response plan includes prompt notification of the relevant school or district in the event of a security or privacy incident, and follows best practices for responding to a breach of Personally Identifiable Information. CommonLit will share its incident response plan upon request.
How We Use Anonymized Data
Student Data does not include “De-Identified Data.” De-identified Data will have all direct and indirect personal identifiers removed. This includes, but is not limited to, name, ID numbers, date of birth, demographic information, location information, and school ID. CommonLit may use De-Identified Data for product development, research, analytics, marketing to schools or districts, or other purposes, but will do so in ways that keep users’ personal identities and information anonymous. CommonLit will not attempt to re-identify De-Identified Data, nor transfer De-Identified Data to any party unless that party agrees not to attempt re-identification.
How We Use Teacher and Administrator Data
We collect information when a teacher or administrator creates an account, or communicates with us. We use this information to perform our obligations as outlined in the Agreement, as well as for product development, research, analytics, and other purposes.
If You Are A Teacher Or Administrator, You Must Obtain All Necessary Parental Consent Before Allowing Students to Create an Account
If We Have Inadvertently Collected Information From A Student Under The Age of 13 Without Proper Consent, Please Let Us Know Immediately
Children under the age of 13 may only use our Services with appropriate parental consent. We do not knowingly collect any information from children under the age of 13, unless the child’s school or district has obtained parental consent for the child under 13 to use our Services. If you believe we may have collected information regarding a child under the age of 13 without proper consent, please contact us immediately at firstname.lastname@example.org so that we may delete the information as soon as possible.
We May Use Teacher and Administrator Feedback
Except as specifically indicated otherwise, communications or materials teachers or administrators transmit to us (including any information, questions, comments, ideas or the like) will be deemed to be non-confidential and non-proprietary. Teachers or administrators submitting such materials agree that we will be free, without further obligation, to reproduce, modify, prepare works derived from, perform, display, distribute, sell and otherwise make available, use and exploit, in any manner or medium now known or later developed, anything transmitted or posted to us or the Site, and to permit others to do so.
CommonLit may rely on one or more subcontractors to perform services under this Agreement. We will share the names of these subcontractors upon request. All subcontractors and successor entities of CommonLit will be subject to the terms of this Agreement.