Features For Educators Pricing Get Started
Legal

Privacy Notice

Campanion Inc. Effective date: May 4, 2026

This Privacy Notice describes how Campanion Inc. ("Campanion," "we," "us," or "our") collects, uses, retains, and protects information in connection with our products: Campanion Grader for K-12 educators and InteGrade by Campanion for higher education. Both products are operated by Campanion Inc. under this single Privacy Notice.

We've written this notice in plain English. Where the two products handle data differently, we've called that out.

01 Who We Are

Campanion Inc. is a US-based company headquartered at 1032 East Brandon Blvd., Brandon, FL 33511. We build grading-workflow tools for educators.

For privacy questions, deletion requests, or breach inquiries, contact us at founders@campanion.org.

02 What Our Products Do

Campanion Grader is a grading-assistance tool for K-12 teachers. Teachers upload student work and the platform helps with feedback and scoring. Students do not have accounts on Campanion Grader; the product is teacher-only.

InteGrade by Campanion is a grading platform for higher education, built as an extension of Campanion's grading workflow optimized for community colleges. Instructors use it to grade student submissions and provide feedback. The product integrates with the institution's learning management system. Students may submit work directly through the platform and review feedback that the instructor has chosen to release.

03 What Information We Collect

We collect only the data needed to deliver the contracted grading service. We do not collect demographic information (race, ethnicity, gender, age, etc.), genetic or biometric data, location data, or any sensitive special-category data.

From instructors and teachers

  • Name, email address, institutional affiliation
  • Authentication and login records
  • Activity within the platform

From institutional roster sync (InteGrade only)

  • Student names
  • Student email addresses
  • Institutional student identifiers

From students (InteGrade only)

  • Submission content uploaded for grading
  • Acknowledgment of this Privacy Notice on first launch
  • Audit log entries (timestamps, IP addresses, action types) for security purposes

From teachers' grading work (both products)

  • Rubric content
  • Grading results, feedback, and scores

Browser and technical data (both products)

  • IP addresses (for security and audit purposes)
  • Standard authentication session tokens

Within Campanion Grader and InteGrade by Campanion (the products), we do not use third-party advertising trackers, analytics scripts, marketing pixels, or behavioral profiling tools. Our public marketing website (campanion.org) does use standard marketing analytics; that activity is governed separately by our cookie policy and never includes data from product users or institutional customers.

04 Why We Collect It

We collect personal information only for the following purposes:

  • To deliver the contracted grading service
  • To send assignment-related notifications (submission confirmations, due-date reminders, feedback announcements); for InteGrade, these are dispatched through the institution's learning management system
  • To maintain audit logs for security, compliance, and FERPA requirements
  • To respond to support requests and account-related inquiries

We do not use personal information for marketing, advertising, behavioral profiling beyond the grading context, or sale to third parties. We have never sold personal information and we will not.

05 Legal Basis and FERPA

Educational records processed through our products are protected under the Family Educational Rights and Privacy Act (FERPA). Campanion Inc. operates as a "school official" under the FERPA exception when handling these records on behalf of the institution. Our processing is governed by the institutional contract; institutions retain control over the data and over data subject rights for educational records.

For students residing in US states with active consumer privacy laws, educational records are governed primarily by FERPA, which preempts most state consumer privacy law where the two overlap. We comply with applicable state-specific provisions where they extend beyond FERPA.

06 Who We Share It With

We share personal information only with the following categories of recipients:

Service providers that help us operate the platform, including cloud hosting, database, authentication, and AI inference providers. All service providers are bound by contractual data-processing terms requiring them to handle data only for the purposes of providing services to us, with security standards equivalent to or stronger than our own. Our AI service provider is contractually prohibited from using customer data to train AI models.

A current list of service providers is available to institutional customers on request.

Institutions: We share data with the institutional customer that contracted for the service (the school district or college) as required to fulfill the contract.

Legal requirements: We may disclose personal information when required by valid legal process. Where permitted by law, we will notify the affected institution before disclosure.

We do not sell personal information, share it with advertisers or data brokers, transfer it outside the United States, or grant access to any third-party AI service that uses customer data for training.

07 How Long We Keep It

For InteGrade by Campanion: Submission and grading data is retained for the duration of the academic term plus 45 days, then automatically deleted unless the instructor or institution explicitly extends the retention period. Earlier deletion is available on instructor or institutional request, with deletion completed within 30 days. Backup snapshots may persist briefly past this window per our cloud provider's documented backup retention timelines and are overwritten on the standard schedule.

For Campanion Grader: Original student work files remain on the teacher's device only and are auto-cleaned after 30 days. Records are deleted on teacher or institutional request within 30 days.

Audit logs and security records (both products): Retained for up to 90 days online and up to 1 year in archival storage to support security investigations and compliance requirements.

Personnel data: Instructor and teacher account records are retained while the account is active and for a reasonable period after closure to handle any final inquiries, then deleted.

08 How We Protect It

We implement multiple layers of technical and organizational security:

Encryption

Data in transit is encrypted using current industry-standard transport security (TLS 1.2 or 1.3 with FIPS 140-2 validated cryptography). Data at rest is encrypted with AES-256. For InteGrade, identifying student fields are additionally protected by application-level encryption with cryptographic key separation, meaning that even Campanion personnel with database access cannot read these fields directly.

Access controls

Per-tenant data isolation is enforced at the database layer. Each instructor accesses only their own courses; for InteGrade, each student accesses only their own submissions and only feedback explicitly released by the instructor.

Personnel access

Campanion personnel do not access institutional or student data in the normal course of operations. Production data access requires explicit, audited authorization, with multi-factor authentication enforced on all administrative consoles.

Data minimization

We collect only what's necessary for the grading workflow. Across both products, no student personally identifiable information is transmitted to or processed by any AI service. Submission content is de-identified before any AI processing.

Audit logging

Authentication events, data access, mutations, and exports are logged to tamper-resistant audit storage.

While no system can guarantee perfect security, these controls reflect industry best practices for educational data protection. We are actively pursuing SOC 2 Type 2 certification.

09 Your Rights

For students using InteGrade by Campanion

  • You can review your own submissions and instructor-released feedback within the application at any time.
  • You can request a machine-readable export of your record on demand.
  • Correction and deletion requests for educational records are routed through your institution per FERPA. Your institution will determine how to address the request and may direct us to act accordingly.
  • Instructors may revoke previously released feedback at any time; in that case the content will no longer be visible to you in the application, though the underlying record is preserved through the academic term and applicable retention period for institutional audit and FERPA review.

For instructors and teachers

  • You can access and update your account information through the application.
  • You can request deletion of your account and its associated data.
  • For data you've collected from students through the platform, deletion and correction requests should be coordinated with your institution per FERPA and your institutional contract.

For institutions

  • You retain ownership of all data, inputs, outputs, and metadata processed through the service.
  • You can request a full or partial export of your institutional data at any time during the contract.
  • At contract completion, your data is available for export for 90 days, after which it is permanently deleted within the timelines described in Section 7.

To exercise any of these rights, contact us at founders@campanion.org. We respond to verified requests within 30 days.

10 Children Under 13 (COPPA)

Campanion Grader (K-12) may be used by teachers in classrooms that include children under 13. In those cases, the teacher uploads student work on the student's behalf; we operate under the school's authorization to collect this data for educational purposes (the "school authorization" basis under COPPA). Students do not have accounts on Campanion Grader and do not interact with the platform directly. If a parent or guardian believes we have collected information from a child in a manner inconsistent with COPPA, contact us at founders@campanion.org and we will investigate and delete as appropriate.

InteGrade by Campanion (higher education) is intended for college and university students who are typically 18 years of age or older. We do not knowingly collect data from children under 13 through InteGrade. If you believe we have, contact us and we will delete.

11 Notifications and Communications

For InteGrade by Campanion: Student notifications are dispatched through the institution's learning management system, which honors each student's existing notification preferences. We do not operate independent email infrastructure for student communications and do not store student email addresses for messaging purposes.

For instructors and teachers (both products): We send service-related communications (account, security, billing, material product changes) to the email address associated with the account. We do not send marketing email.

12 International Users

Both products are operated for users in the United States. All data processing and storage occurs within the United States. We do not currently target users in the European Economic Area, the United Kingdom, or other jurisdictions with comprehensive cross-border data transfer regimes. If your institution has needs related to international students or cross-border data transfer, contact us and we will discuss appropriate contractual safeguards on a case-by-case basis.

13 AI Processing

Across both products, no student personally identifiable information (PII) is ever transmitted to or processed by any AI service. Submission content passes through a personally-identifying-information removal layer before any data is sent to an AI service for analysis. Student names, email addresses, institutional identifiers, and other identifying information are stripped from the content prior to AI processing. The AI service receives only the de-identified academic content of the work.

InteGrade by Campanion includes an optional, instructor-toggleable AI assistance feature. This feature is off by default and may be enabled by an instructor on a per-assignment basis. Institutions may also disable the feature entirely.

When enabled:

  • Submission content is de-identified before any data is transmitted to the AI service, as described above.
  • Our AI service provider is contractually prohibited from using customer data to train AI models.
  • AI output is visible to the instructor only.
  • Students never see raw AI output. All student-visible feedback is gated by an explicit instructor release control: nothing reaches a student until the instructor confirms and releases it. Instructors can revoke previously released content at any time.
  • Every AI invocation is logged for audit purposes.

The AI feature does not make autonomous grading decisions and does not use customer data to train any model.

Campanion Grader uses the same de-identification layer before any AI processing. No student PII is transmitted to or processed by any AI service. Our AI service provider is contractually prohibited from training on customer data.

14 Changes to This Notice

We will post material changes to this notice with an updated effective date. For institutional customers, we will provide at least 14 days advance notice of material changes to data handling practices via the institutional contact on file.

15 Contact

Campanion Inc.
1032 East Brandon Blvd.
Brandon, FL 33511
United States Privacy questions, data subject rights requests, and breach inquiries:
founders@campanion.org

We typically respond within 5 business days; verified data subject rights requests are addressed within 30 days.

This Privacy Notice was last updated on May 4, 2026.
← Back to Campanion