Last updated: May 19, 2026
Alatus Academy is an AI-assisted homeschool curriculum platform operated by Alatus LLC ("Alatus," "we," "us," or "our"). The platform is designed exclusively for use by parents and legal guardians ("you" or "Parent"). Children do not have accounts, do not log in, and do not interact directly with the platform.
All accounts on Alatus Academy belong to parents or legal guardians. There is no child-facing login, no student portal, and no direct interface that allows a child to submit information to us. All data about a child is entered by the parent on their child's behalf. The Service is intended for use by residents of the United States and is not offered to residents of the European Economic Area, the United Kingdom, or Switzerland.
We collect only the data needed to operate the platform:
Information about a child's learning needs. Because Alatus Academy personalizes curriculum to each child, parents may choose to enter information about a child's learning differences, accommodations, or other educational needs. Alatus LLC is not a healthcare provider and is not a HIPAA-covered entity; we do not solicit and do not need protected health information to operate the Service. Parents are encouraged to share only the information needed to plan effective curriculum, and to omit clinical diagnoses, treatment records, or other protected health information.
We use the data above only to:
Optional product communications. From time to time we may send you occasional, non-transactional communications about Alatus Academy — for example, product updates, new feature announcements, or homeschool-related content we think may be relevant. You may opt out of these communications at any time by replying to any such email or by updating your preferences once an in-product opt-out is available; opting out will never affect the transactional emails required to operate your account.
Alatus Academy is operated as a service subject to the U.S. Children's Online Privacy Protection Act ("COPPA") and the FTC's implementing regulation at 16 CFR Part 312. We collect personal information about children from the parent or legal guardian who creates the account, under a Verifiable Parental Consent ("VPC") process described in detail in our COPPA Parental Consent Notice. We do this because the Service personalizes curriculum and assessments to each child using information the parent provides, and because some of that information is shared with our AI service provider (currently Anthropic) for prompt processing (see Sections 7 and 7A).
No direct child-facing surface. The Service has no child account, no child login, and no facility for a child to type into the Service. All information we hold about a child has been entered by the verified parent. If we ever launch any feature that allows a child to interact with the platform directly, we will pause for a separate compliance review and, where required, obtain renewed Verifiable Parental Consent before that feature is released.
Elevated internal handling. The following categories of fields are flagged internally as containing information about a minor and are excluded from our third-party error-monitoring service before any event is transmitted:
If you believe a child has used the Service without proper authorization, or if you have any question about how we handle information about your child, please contact us at the addresses listed in the COPPA Parental Consent Notice.
We do not sell, rent, lease, license, or otherwise commercially share your data or your child's data with any third party for advertising, marketing, or profiling purposes — ever. We do not use any third-party analytics or behavioral-tracking services on the platform, and we do not allow ad networks on the platform.
We rely on a small number of vendors to operate the platform. Each receives only the minimum data needed to perform its function and is contractually required to handle that data on our behalf:
Changes to Service Providers. We may add, replace, or remove service providers from time to time. If we add a new service provider that materially changes how data about you or your child is processed, we will update this Privacy Policy with a new "Last updated" date and notify account holders by email at least thirty (30) days in advance of the change taking effect, except where the change is required by law or is necessary to address an urgent security risk.
We use third-party large language models (currently provided by Anthropic) to generate curriculum, assessments, and Lyra chat responses. On each curriculum generation and each Lyra chat message, we send the following to Anthropic for processing:
Under Anthropic's Commercial Terms of Service — which apply to our use of the API — your inputs and the resulting outputs are not used to train, fine-tune, or otherwise improve any foundation model. Inputs and outputs may be retained by Anthropic for a short period (typically up to thirty (30) days) for trust-and-safety review, after which they are deleted. We are evaluating zero-data-retention status with Anthropic and will update this Policy if our practice changes. We do not separately use the data described above to build a profile of your child. If we ever change AI providers or change this practice, we will update this Privacy Policy and notify account holders by email before the change takes effect.
We separate the data we hold into two categories for retention purposes:
When you request full deletion of your account (see Section 9), all data is hard-purged thirty (30) days after the deletion request, following a 30-day soft-delete grace window during which deletion can be reversed.
As the parent who created the account, you may at any time:
To make any of the requests above, contact us at the address listed in Section 12.
If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act ("CCPA/CPRA"), gives you specific rights regarding personal information we collect about you and the children for whom you are the parent or legal guardian.
Categories Collected. In the prior 12 months we have collected the following categories of personal information, as defined by the CCPA/CPRA: identifiers (name, email); commercial information (subscription status); internet or other electronic activity (login and operational telemetry); inferences drawn from the foregoing (curriculum personalization signals); and, for child profiles entered by parents, identifiers, education-related information, and information about characteristics protected under California or federal law to the extent a parent voluntarily enters such information in profile notes. We do not collect biometric information, geolocation data, or genetic data.
Sources. All personal information is collected directly from you or generated by your interaction with the Service. We do not purchase personal information from data brokers.
Purposes. We use personal information solely for the purposes described in Section 4 of this Policy.
Disclosures. We disclose personal information only to the service providers listed in Section 7 and only for the purposes described there.
No Sale or Share. We do not sell personal information and do not share personal information for cross-context behavioral advertising, as those terms are defined under the CCPA/CPRA. We have not done so in the prior 12 months and have no plans to do so.
Sensitive Personal Information. To the extent any information in a child's profile notes constitutes "sensitive personal information" under the CCPA/CPRA, we use that information only for the purposes permitted under Cal. Civ. Code § 1798.121(a) — namely, to provide the Service requested. We do not use it to infer characteristics about you or your child for any other purpose.
Retention. We retain personal information for as long as the account is active and for a reasonable period thereafter for backup, legal, and dispute-resolution purposes, as described in Section 8.
Your Rights. You have the right to (i) know what personal information we have collected; (ii) request a copy in a portable format; (iii) request correction of inaccurate information; (iv) request deletion; (v) limit our use of sensitive personal information (we already limit such use as described above); and (vi) be free from retaliation for exercising any of these rights. To exercise any of these rights, contact support@alatusacademy.com from the email address on your account. We will verify your identity by confirming control of that email address. You may also designate an authorized agent to make a request on your behalf, subject to written verification of the agent's authority.
The Texas Securing Children Online through Parental Empowerment Act ("SCOPE Act," Tex. Bus. & Com. Code Ch. 509) applies to digital service providers whose users include children under 18. As a K–5 platform, we treat every student whose profile is created on the Service as a known minor. Accordingly, we do not (a) sell minor data, (b) target minors with advertising of any kind, (c) collect minor data beyond what the parent voluntarily provides through the parent dashboard, or (d) provide any facility for direct minor-to-minor communication. Parents have full visibility into all minor data through the parent dashboard and may request deletion at any time from the in-app Privacy & Data settings page.
We use industry-standard transport encryption (HTTPS), encryption at rest for database storage, scoped database row-level security, short-lived signed URLs for document downloads, and access controls limiting personnel access to user data on a need-to-know basis. No system is perfectly secure. If we determine that a breach of security has resulted in the unauthorized acquisition of personal information about you or a child in your care, we will notify you by email to the address on your account without unreasonable delay and, where required by applicable law, within the timeframe required by that law (for example, the breach notification requirements of Texas Bus. & Com. Code § 521.053 and any other applicable state breach laws). Our notification will describe, to the extent then known, the nature of the breach, the categories of information affected, and the steps we are taking in response and that you can take to protect yourself.
We may update this Privacy Policy from time to time. Material changes will be communicated by email to the address on your account and posted at this URL with a new "Last updated" date.
Questions, requests, or complaints about this Privacy Policy may be sent to support@alatusacademy.com.