Privacy Policy

This Privacy Policy explains how DoerDo ("we," "us," or "our") collects, uses, discloses, and safeguards your information when you use our AI-powered education platform. We are committed to protecting the privacy of all users, especially children under 13.

**Account Information**: Name, email address, role (student/parent/teacher), grade level, and country. **Learning Data**: Questions asked to the AI tutor, assessment responses, progress metrics, skill mastery levels, and study session history. **Usage Data**: Pages visited, features used, device information (browser, OS), IP address, and session duration. **AI Conversation Data**: Chat history with the AI tutor, including text and voice interactions. Voice recordings are processed in real-time and not permanently stored.

We use the information we collect to: - Provide, maintain, and improve the DoerDo platform - Personalize your learning experience using our Knowledge Tracing Engine - Track progress and provide insights to parents and teachers - Communicate service updates and educational content (with opt-in) - Improve our AI models using anonymized, aggregated data - Ensure platform safety and prevent abuse

We comply with the Children's Online Privacy Protection Act (COPPA). For children under 13: - We require verifiable parental consent before collecting personal information - Parents can review, modify, or delete their child's data at any time via the Parent Dashboard - We collect only information necessary for the educational service - We do not use children's data for advertising or share it with third parties for marketing

**We do NOT sell personal data.** We may share information with: - **Service Providers**: Cloud hosting (Google Cloud), analytics (GA4), payment processing (Chargebee) — under strict contractual obligations - **Educational Institutions**: If you use DoerDo through a school, we may share progress data with authorized school administrators - **Legal Requirements**: When required by law, subpoena, or to protect safety

We implement industry-standard security measures: - Encryption at rest and in transit (TLS 1.3) - Access controls with role-based permissions - Regular security audits and vulnerability assessments - Data stored in Google Cloud (asia-south1 region) with SOC 2 compliance - Automated threat detection and monitoring

You have the right to: - **Access**: Request a copy of your personal data - **Correction**: Update or correct inaccurate information - **Deletion**: Request deletion of your account and data - **Export**: Download your data in a portable format - **Opt-out**: Unsubscribe from marketing communications at any time To exercise these rights, contact us at privacy@doerdo.com.

Our primary data storage is in Google Cloud's asia-south1 (Mumbai) region. If you access DoerDo from outside India, your data may be transferred to and processed in India. We implement appropriate safeguards for cross-border data transfers in compliance with applicable regulations.

We use cookies for: - **Essential**: Session management, authentication, preferences - **Analytics**: Google Analytics 4 (with consent) to understand usage patterns - **No Advertising Cookies**: We do not use third-party advertising cookies You can manage cookie preferences in your browser settings. See our Cookie Policy for full details.

For privacy-related inquiries: - **Email**: privacy@doerdo.com - **General**: hello@doerdo.com We respond to all privacy requests within 30 days.