Privacy Policy: AI Teacher Assistant

Last Updated: May 31, 2026

This Privacy Policy describes how the AI Teacher Assistant ("the Application", "we", "us") collects, utilizes, and strictly protects your data and the data of your students.

Because we process educational materials and classroom rosters, we have built this Application from the ground up on a Zero-Trust, Stateless Architecture specifically designed to eliminate the persistent storage of Personally Identifiable Information (PII) on our servers.

1. Data We Do NOT Collect or Store

The most important aspect of our privacy system is what we do not retain:

2. PII Scrubbing & Demographic De-identification

Before any student parameters or class rosters are sent to our language models for lesson customization, the Application executes a strict, automated PII Scrubbing Boundary locally on our secure proxy gateway:

3. How We Access Your Data

In order to orchestrate lesson plan generation, the Application requests specific Google Drive API scopes (e.g., https://www.googleapis.com/auth/documents and https://www.googleapis.com/auth/spreadsheets).

When you click "Distribute" or "Generate", the Application uses a secure, temporary, short-lived API token explicitly generated by your browser to perform the following:

The temporary API token expires automatically, and our servers cannot access your Google Drive asynchronously when you are not actively using the Chrome Extension.

4. How We Process Data (Stateless Execution)

When you submit a request, the text from your Google Doc and your Roster Spreadsheet is transmitted to our securely hosted API Gateway on Google Cloud Run.

Because the backend is entirely stateless, if our servers were hypothetically breached, there would be zero historical student or teacher data for an attacker to steal.

5. Student Data & COPPA / FERPA Compliance

Because our Application does not store or stockpile student data natively, the absolute "source of truth" and ultimate jurisdiction of the data remains natively within your school district's Google Workspace domain (inside your Google Sheets and Google Docs).

6. Third-Party AI Integrations

We route our lesson plan synthesis through Google's Gemini Large Language Model APIs. This data is transmitted securely over TLS encryption. The data processed through these enterprise APIs is strictly kept private and is explicitly opted-out of being used to train Google's foundational models or build marketing profiles.

7. Your Data Rights

Because your roster data and generated lesson plans live entirely inside your own Google Drive, you have total 100% control over deletion.

If you simply delete the Google Spreadsheet titled "AI Teacher Assistant Rosters (DO NOT DELETE)", the system instantly loses all memory of your classroom. Likewise, you can revoke the Application's permissions entirely at any time from your Google Account settings (Google Account Permissions Dashboard).

8. Contact Us

If you have any questions regarding this privacy policy or our stateless architecture, please contact us at our support portal.