Student Privacy Protection Policy

Spelling Test Buddy's Student Privacy Protection Policy

Last updated: February 24, 2025

Spelling Test Buddy Student Privacy Protection Policy

Introduction

At Spelling Test Buddy, we take student privacy seriously. Our platform is designed to help educators administer online spelling tests and practice while ensuring compliance with federal and state data privacy laws. This policy outlines how we collect, use, protect, and manage student data in accordance with applicable local, state, and federal laws, including FERPA, COPPA, PPRA, ISSRA, SOPPA, IPA, and PIPA.

Data Collection and Use

We collect only the minimum student data necessary to provide our services effectively. The types of student data that are collected include:

  • Identifiers: A system-generated unique student ID (not tied to external identifiers like Social Security Numbers, Student ID, etc.)
  • Performance Data: Student spelling test results and progress tracking
  • Technology Metadata: IP addresses and usage data (for platform optimization and security)

Teachers using the solution have the ability to enter student first and last names into the system. However, they are not required to - many teachers make use of the solution by entering only first name and last initial for their students, for example.

Purpose of Data Collection

We collect this information solely to provide educational services to schools, teachers, and students. Student data is not used for any commercial purposes, including targeted advertising or profiling.

Data Ownership and Access

  • Ownership: Student data remains the property of the school district (Local Education Agency, or LEA).
  • Access: Only authorized school officials and educators can access student data within Spelling Test Buddy.
  • Parent and Student Rights: Parents or eligible students can request access, corrections, or deletions of their data through their school.

Data Protection and Security Measures

To ensure the security of student data, Spelling Test Buddy implements industry-standard safeguards, including:

  • Encryption: Data is encrypted both in transit and at rest with bank-equivalent encryption.
  • Access Controls: Role-based access ensures only authorized personnel can access student data.
  • Monitoring: We conduct regular security audits and risk assessments.
  • Subprocessor Agreements: Any third-party service providers handling student PII data must adhere to our strict security and privacy policies.

Data Retention and Deletion

We retain student data only for as long as necessary to provide our services. Upon termination of an agreement or at the request of the teacher, school and/or district, we will:

  • Instruct the Teacher(s) and/or Administrator(s) how to generate student-specific reports for long-term data retention.
  • Delete all student data from our systems following industry-standard data destruction methods.

Data Breach Notification

In the event of unauthorized access or a data breach:

  • We will notify the affected teacher, school, and/or district within 48 hours.
  • We will provide details on the breach, its impact, and any corrective actions taken.
  • We will work with the teacher, school, and/or district to inform affected parents or students if necessary.

Compliance and Updates

Spelling Test Buddy complies with all relevant student data privacy laws and updates its policies as needed. Any changes will be communicated to our users promptly.

If you have any questions about this Student Privacy Protection Policy, You can contact us by email: support[at]spellingtestbuddy.com

Spelling Test Buddy is committed to protecting student privacy and ensuring a safe, secure learning environment for all users.

You can also find our general Privacy Policy here.