Privacy Policy

This Privacy Policy (“Policy”) governs the privacy practices of Legend (“Company,” “we,” “us,” or “our”) regarding the collection and use of information through our website, Chrome extension, and related services (collectively, the “Service”).

Legend is deeply committed to protecting the privacy and security of our users' personal information, especially student data. This Privacy Policy outlines our privacy-first approach, which is designed to comply with the Family Educational Rights and Privacy Act (FERPA), the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada, and other applicable data protection laws.

1. Our Privacy-First Commitment

At Legend, privacy is a core product principle. We believe that student data belongs to students and their educational institutions, not to us. We collect only what is necessary to deliver and improve the Service, use it only for appropriate educational and operational purposes, and do not use identifiable student work for advertising or to build behavioral profiles.

By default, we do not use identifiable student work to train generalized AI models. If we use data to improve our Service or models, we will rely on de-identified and/or aggregated information, as described in Section 3.3.

2. Information Collection

2.1 Collection of Personal Information

Legend collects minimal personal information necessary for account creation and authentication. We collect only:

• User name obtained from Google OAuth for login authentication
• Teacher or School Name if provided during account setup

We do not collect unnecessary personal data, track users across websites, build advertising profiles, or request additional permissions beyond those required for authentication and core functionality. We do not sell or rent your personal information to third parties.

We may use trusted service providers (such as authentication or infrastructure providers) to support the Service, as described in Section 4, but they are not permitted to use your personal information for their own marketing purposes.

2.2 Collection of Student Data

Legend processes student-submitted assignments exclusively for educational purposes, such as grading assistance, feedback, and progress tracking under the control of the teacher and/or school.

Student names and other identifiers may be stored within a teacher's account for ease of use, but are never used for advertising, sold, or shared with third parties for their own commercial purposes.

By design:

• Student assignments are processed to generate grading and feedback.
• We do not use identifiable student work to train generalized AI models.
• Any future use of student-related data for analytics, research, or model improvement will be done in a de-identified and/or aggregated manner, as outlined in Section 3.3 and subject to applicable agreements with schools and legal requirements.

3. Use of Information

3.1 Use of Personal Information

Collected personal information is used exclusively for:

• Account authentication and login
• Providing access to and operating the Legend platform
• Improving and personalizing user experience within the platform
• Security, abuse prevention, and compliance with legal obligations

We do not use personal information for third-party advertising or for selling data to advertisers or data brokers.

3.2 Use of Student Data

Student-submitted content is used primarily for:

• Grading and feedback
• Progress tracking and record-keeping within the educational context
• Supporting teacher workflows and school-directed reporting

Legend does not:

• Use identifiable student work to build behavioral advertising profiles
• Sell or rent student data
• Use identifiable student data for unrelated commercial purposes

We may retain student data as reasonably necessary to support teacher and school use of the Service, comply with legal obligations, and maintain reliable operations, subject to the controls described in Section 5.2.

3.3 De-Identified and Aggregated Data

To continue improving Legend while respecting student privacy, we may use de-identified and/or aggregated data derived from use of the Service. When we do so:

• We remove direct identifiers (such as student names or email addresses) and apply reasonable technical and organizational measures designed to reduce the risk of re-identification.
• We may use de-identified and/or aggregated data to:
  • Improve and evaluate our algorithms and AI models
  • Enhance product features and usability
  • Generate usage statistics and analytics
  • Conduct internal research and quality assurance

We do not attempt to re-identify individuals from de-identified or aggregated data. Where required by law or by our agreements with schools or districts, we will obtain appropriate consents or authorizations before using data in this manner.

4. Information Sharing

4.1 No Unauthorized Third-Party Sharing

Legend does not sell or rent user or student data to third parties.

We may share information only in the following limited circumstances:

• Essential service providers: With trusted third-party vendors who provide services such as authentication, hosting, storage, security, logging, and analytics that help us operate the Service. These providers act on our behalf, are contractually bound to protect your information, and may not use it for their own independent purposes.
• Legal requirements: If we are required to do so by law (e.g., court orders, regulatory requests) or if we reasonably believe such disclosure is necessary to protect our rights, safety, or the rights and safety of others. Where legally permitted, we will make reasonable efforts to notify affected customers.

We maintain a strict no-third-party-advertising policy on our platform. We do not share user or student data with advertising networks or data brokers.

4.2 Data Transmission to API Providers

When teachers submit assignments for grading, the text content may be transmitted to third-party API providers, including AI model providers such as OpenAI, for processing.

Our intent and practice are that:

• Data is transmitted over encrypted channels.
• Data is processed only to fulfill the specific request (e.g., generating feedback or scores).
• We put in place contractual terms and configuration settings that prohibit the use of this data for training generalized AI models, unless such training is performed on de-identified and/or aggregated data consistent with this Policy and applicable agreements.

API providers' own privacy policies govern their internal handling of data, but our agreements and configurations are designed to ensure that your data is not used to identify your students or for unrelated commercial purposes.

4.3 Google API Services User Data

Legend uses Google OAuth to authenticate users. Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• We only request access to the Google user data necessary to provide and improve our Service (authentication and basic profile information).
• We do not use Google user data for serving advertisements.
• We do not sell Google user data to third parties.
• We do not use Google user data for purposes unrelated to the core functionality of the Service.
• No human can read your Google user data unless: (a) we have your express consent, (b) it is necessary for security purposes (e.g., investigating abuse), (c) it is necessary to comply with applicable law, or (d) our use is limited to internal operations and the data has been aggregated and de-identified.

5. Data Handling & Security

5.1 Security Measures

Legend implements technical, administrative, and physical security measures designed to protect your information, including:

• Encryption in transit and at rest: TLS 1.3 (or equivalent) for data in transit and modern encryption standards (such as AES-256) for stored data.
• Access controls: Role-based access and authentication mechanisms to ensure only authorized users can access relevant data.
• Secure authentication: Google OAuth for login, with support for multi-factor authentication where available.
• Security reviews: Periodic security assessments, monitoring, and testing to identify and address potential vulnerabilities.
• Data minimization: Collecting and retaining only the data reasonably necessary to provide and improve the Service.

While no system can be guaranteed 100% secure, we continually work to enhance our security posture.

5.2 Data Retention & Deletion

We retain data only for as long as reasonably necessary to provide the Service, comply with legal obligations, resolve disputes, and maintain reliable operations.

For student-related data:

• Teachers can delete individual assignments or student data from their account where the product supports that functionality.
• Teachers or schools can request permanent deletion of an account and associated data by contacting privacy@legend.org.
• Upon confirmed account deletion, we aim to delete associated personal and student data within 30 days, subject to standard backup retention and legal requirements.
• Upon termination of a school's contract, student data will be deleted within a commercially reasonable period (typically within 30 days), unless a different retention period is requested or required by law or contract.

Backups may persist for a limited technical retention period before being overwritten, but we do not use deleted data for active operations.

5.3 Data Storage Location

Data is stored in secure, SOC 2 Type II–certified data centers located in the United States and Canada. We do not transfer data outside of these regions except:

• Where necessary to provide the Service (e.g., global infrastructure), and
• Where appropriate safeguards (such as contractual protections and technical safeguards) are in place, and/or
• Where required or permitted by law.

6. User & Student Rights

6.1 Access, Update, and Deletion Requests

Users (teachers) have the right to:

• Request access to their account data
• Update their account details
• Request deletion of their account and associated data
• Request an export of their personal data in a machine-readable format, where feasible

To exercise these rights, contact us at privacy@legend.org. We will respond to requests within 30 days or as required by applicable law.

6.2 Parental & School Control Under FERPA

Schools, as FERPA-defined “Educational Institutions,” maintain primary control over student data. Legend acts as a “School Official” under FERPA, processing student data only at the direction of the school and for legitimate educational purposes.

Parents or eligible students should direct requests to review, correct, or delete student records to their school. Upon receiving direction from the school, Legend will assist in fulfilling such requests within a reasonable time (typically within 30 days), consistent with our technical capabilities and legal obligations.

7. Rubric Publishing & Public Content

7.1 Voluntary Publishing of Rubrics

Teachers may choose to publish rubrics to Legend's shared rubric library to help other educators. This is entirely optional and separate from student data:

• Only rubric content is shared—never student assignments or identifiable student data.
• Once published, rubrics can be viewed and copied by other Legend users.
• Teachers may unpublish their rubrics at any time; however, copies previously made by other users may continue to exist in those users' accounts.

We clearly indicate when content will be shared with other users and give teachers control over what they publish.

8. Children's Privacy

Legend is designed for use by educational institutions and teachers, not for direct sign-up by children.

We do not knowingly collect personal information directly from children under 13. All student data is provided or managed by educational institutions and teachers in accordance with their own legal obligations (including FERPA and, where applicable, COPPA).

If you believe we have inadvertently collected information directly from a child under 13 without appropriate consent, please contact us at privacy@legend.org, and we will take steps to investigate and, where appropriate, delete such information.

9. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements.

If we make material changes, we will:

• Notify you by email at least 30 days before the effective date of the updated Policy, where feasible, and/or
• Post a prominent notice within the Service, and
• Update the “Last updated” date at the top of this Policy.

For changes that materially expand how we use or share personal or student data (for example, new categories of de-identified data use), we will provide additional notice and, where required by law or agreement, obtain appropriate consent or authorization.

Your continued use of the Service after the effective date of an updated Policy constitutes your acceptance of the changes. If you do not agree with the updated Policy, you should discontinue use of the Service and may request deletion of your account.

10. Governing Law

If you are accessing or using the Service from within Canada, this Privacy Policy shall be governed by and construed in accordance with the laws of the Province of Ontario and PIPEDA, without regard to its conflict of laws principles.

If you are accessing or using the Service from within the United States, this Privacy Policy shall be governed by and construed in accordance with the laws of the State of Delaware and applicable U.S. federal laws, including FERPA, without regard to conflict of laws principles.

Local laws may provide additional rights or protections; where applicable, we will respect those rights.

11. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact our Privacy Team: privacy@legend.org