Privacy Policy
Last updated: March 2026
1. Information We Collect
We collect information you provide directly (name, email, profile data) and usage data (pages visited, lessons completed, feature usage) to improve your learning experience.
2. How We Use Your Information
Your information is used to personalize your learning experience, track progress, provide AI tutoring through JAX, process payments, and improve platform features.
3. Data Storage & Security
Your data is stored securely using Supabase with row-level security policies. We use encryption in transit and at rest. We do not sell your personal information to third parties.
4. AI & JAX Conversations
Conversations with JAX AI are stored to provide continuity and improve tutoring quality. You can delete your conversation history at any time from your account settings.
5. Cookies
We use essential cookies for authentication and session management. Analytics cookies help us understand usage patterns and improve the platform.
6. Your Rights
You have the right to access, update, or delete your personal data. You can export your learning progress and account data from your account settings.
7. Adaptive Learning & H2E Intelligence
Drivia uses an adaptive learning layer (H2E — Human-to-Expert Intelligence) that analyzes your learning patterns, intent, and performance to personalize AI tutoring. This includes tracking mastery levels per concept, session velocity, and interaction quality. All H2E data is private to your account and never shared with other users, instructors, or third parties. Enterprise administrators can view aggregate learning analytics but not individual AI conversation data.
8. Enterprise Data Handling
Enterprise organizations receive data isolation via V-RIM (Virtual Resource Integrity Model) partitioning. Organization data, student data, and assessment data are stored in separate logical partitions with strict access controls. Assessment records are retained for 5 years for compliance purposes. Student conversation history is never accessible to organization administrators.
9. FERPA Compliance
Drivia complies with the Family Educational Rights and Privacy Act (FERPA). When Drivia is used by an educational institution, we act as a “school official” with legitimate educational interest under 34 CFR 99.31(a)(1). We do not disclose student education records without consent. Students and parents/guardians may request access to education records, request amendment of inaccurate records, and opt out of directory information sharing. Educational institutions may request a FERPA-compliant Data Processing Agreement (DPA) at support@drivia.consulting.
10. COPPA Compliance
Drivia is designed for users aged 13 and older. We do not knowingly collect personal information from children under the age of 13. If you believe a child under 13 has provided personal information to Drivia, please contact us at support@drivia.consultingand we will promptly delete the information. Educational institutions using Drivia for students under 13 must obtain verifiable parental consent as required by the Children's Online Privacy Protection Act (COPPA).
11. California Privacy Rights (CCPA / CPRA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA). You have the right to know what personal information we collect and how it is used, the right to request deletion of your personal information, the right to opt out of the sale of personal information (Drivia does not sell personal information), and the right to non-discrimination for exercising your privacy rights. To exercise any of these rights, contact us at support@drivia.consulting. We will respond to verifiable consumer requests within 45 days.
12. Contact
For privacy-related inquiries, contact wilson@drivia.consulting.