Privacy Policy & Security Policy

1. Data Collection

Eduly AI collects information necessary to provide our services, including account information, usage data, and conversation history. We collect this data to improve service quality, provide personalized experiences, and ensure security.

We do not collect sensitive personal health information (PHI) beyond what is necessary for service functionality. All data collection complies with applicable privacy regulations.

2. Data Security Measures

• Encryption in transit using TLS/SSL protocols for all data transmission
• Encryption at rest for stored data using industry-standard encryption algorithms
• Regular security audits and vulnerability assessments
• Access controls and authentication mechanisms to protect user accounts
• Secure coding practices and regular security updates

3. User Authentication and Authorization

We implement secure authentication mechanisms including password hashing, session management, and optional two-factor authentication. User credentials are never stored in plain text.

Access to user accounts is protected through secure authentication protocols. Users are responsible for maintaining strong, unique passwords and keeping their credentials confidential.

4. Data Storage and Encryption

All user data is stored in secure, encrypted databases. We use industry-standard encryption methods to protect data both in transit and at rest.

Data backups are performed regularly and are also encrypted. We maintain secure backup procedures to ensure data availability and recovery capabilities.

5. Third-Party Services

Eduly AI may use third-party services for infrastructure, analytics, and functionality. We carefully vet all third-party providers to ensure they meet our security standards.

Third-party services are required to comply with applicable data protection regulations and maintain appropriate security measures. We do not share personal information with third parties except as necessary to provide our services.

6. User Privacy Rights

• Right to access your personal data
• Right to correct inaccurate or incomplete data
• Right to delete your account and associated data
• Right to export your data in a portable format
• Right to opt-out of certain data processing activities

To exercise these rights, please contact us through the support channels provided in the application.

7. Cookie Policy

We use cookies and similar technologies to enhance user experience, analyze usage patterns, and maintain session state. Essential cookies are required for the service to function properly.

You can manage cookie preferences through your browser settings. Note that disabling certain cookies may affect service functionality.

8. Security Best Practices for Users

• Use strong, unique passwords for your account
• Enable two-factor authentication if available
• Do not share your account credentials with others
• Log out from shared or public devices
• Be cautious of phishing attempts and suspicious links
• Keep your devices and browsers updated with security patches

9. Incident Reporting

In the event of a security incident or data breach, we will notify affected users and relevant authorities as required by law. We maintain incident response procedures to quickly address and mitigate security issues.

If you discover a security vulnerability, please report it responsibly through our designated security contact channels.

10. Contact for Security Concerns

If you have security concerns or questions about our security practices, please contact us through the support channels provided in the application. We take security seriously and will respond to your inquiries promptly.