top of page

Security and Data Privacy

Our General Approach to Student Data Privacy

Deledao is committed to student data privacy:
  • We are fully compliant with all applicable U.S. federal and state laws concerning student data privacy.
  • We never sell, share, or rent personally identifiable information (PII).
  • We collect only the necessary data and act as data processors, not data owners.
Data Privacy Compliace 2023.png

Compliance with Applicable U.S. Federal Regulations

FERPA

The Family Educational Rights and Privacy Act (FERPA) (20 U.S.C. § 1232g; 34 CFR Part 99) is a Federal law that protects the privacy of student education records. The law applies to all schools that receive funds under an applicable program of the U.S. Department of Education.

FERPA gives parents certain rights with respect to their children's education records. These rights transfer to the student when he or she reaches the age of 18 or attends a school beyond the high school level. Students to whom the rights have transferred are "eligible students."


COPPA

The Children's Online Privacy Protection Act (COPPA) imposes certain requirements on operators of websites or online services directed to children under 13 years of age, and on operators of other websites or online services that have actual knowledge that they are collecting personal information online from a child under 13 years of age.

PPRA

The Protection of Pupil Rights Amendment (PPRA) applies to the programs and activities of a state education agency (SEA), local education agency (LEA), or other recipient of funds under any program funded by the U.S. Department of Education. It governs the administration to students of a survey, analysis, or evaluation that concerns one or more of the following eight protected areas: (1) political affiliations or beliefs; (2) mental or psychological problems; (3) sex behavior or attitudes; (4) illegal, anti-social, self-incriminating, or demeaning behavior; (5) critical appraisals of other individuals with whom respondents have close family relationships; (6) legally recognized privileged or analogous relationships, such as those of lawyers, physicians, and ministers; (7) religious practices, affiliations, or beliefs of the student or student’s parent; (8) income (other than that required by law to determine eligibility for participation in a program or for receiving financial assistance under such program).

​

CIPA

The Children’s Internet Protection Act (CIPA) applies to schools and libraries that want to access E-Rate discounts. E-Rate is the federal program in which the federal government subsidizes the cost of internet and some other telecommunication services for schools and libraries if the school or library meets certain internet safety requirements, such as preventing access to content that is obscene or harmful to minors. Compliance with CIPA lies with the school and Deledao keeps schools CIPA-compliant by being an effective web filter on and off campus.  

Compliance with Applicable State and Regional Regulations

Deledao fully complies with various state laws, including Nevada’s NRS388, Illinois’s SOPPA, California’s CCPA, New York Education Law 2-D, and Texas House Bill No. 18 (SCOPE Act).

Additionally, we are happy to work with schools to sign individual Data Privacy Agreements (DPAs) that align with their state requirements.

Going beyond compliance

Student Privacy Pledge 2020.webp
We hold ourselves to the highest standards by actively participating in industry initiatives. Deledao has signed the original Student Privacy Pledge as well as the latest Student Privacy Pledge (Pledge 2020), a legally enforceable commitment to protect student data beyond federal laws.

This pledge sets a universal standard for EdTech vendors, ensuring data protection regardless of geographical location.

Winner of the EdTech Awards
“Best Student Data Privacy Solution”

Data Privacy Winner 2020.png
Not only do we have strict company standards for the student data that we collect ourselves, but we also prevent student data from being collected by other entities online.



The Deledao solution comes with these data privacy features:
 
  • Anonymizing web searches for students even when they are signed in.
    • This is especially relevant since students use their Google Accounts to sign in to their Chromebooks.
    • Their search history will not be associated with their Google Account.
  • Blocking third parties from tracking students online. This solves the issue of third-party data collection.
  • Blocking online advertisements. This solves the issue of targeting advertising being shown to students.



Data Security FAQ

Is Deledao an American company?
Yes, Deledao is an American company. It was founded by Silicon Valley veterans and does not have any foreign funding. 

Where does Deledao store the data it collects?
Data is encrypted and housed in U.S. data centers.

How long does Deledao retain student data?
Data is stored for one year after the student data activity occurs, then it is deleted.

What type of data security practices does Deledao employ to ensure the safety and integrity of data?
We use a variety of industry-standard security technologies and procedures to help protect your personal data from unauthorized access, use, or disclosure. Some examples of these safeguards are listed below: 
  • Administrative: Limiting personal information access to necessary personnel, etc. 
  • Technical: SSL, encryption at rest, firewalls, etc. 
  • Physical: Physical access controls, etc. 
Your data privacy and security remain our top priority at Deledao.

Trust Deledao for a secure, privacy-conscious digital learning environment that fosters student success and well-being.

Please refer to our privacy policy for more details.
For further questions, email privacy@deledao.com.
bottom of page