Privacy Policy

Last Updated: January 24, 2026

1. Introduction

Kemnile ("we", "our", or "us") operates kemnile.com, an AI-powered personalized learning platform for K-8 students. This Privacy Policy explains how we collect, use, disclose, and protect your personal information in compliance with GDPR (EU General Data Protection Regulation) and other applicable data protection laws.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, full name, password (encrypted)
  • Profile Information: Role (student), grade level
  • Usage Data: Learning progress, quiz scores, AI tool interactions
  • Communication Preferences: Marketing consent (optional)

2.2 Automatically Collected Information

  • IP address, browser type, device information
  • Log data: access times, pages viewed, actions taken
  • Cookies and similar tracking technologies

3. How We Use Your Information

  • Essential Services: Account creation, authentication, personalized learning
  • Product Improvement: Analyze usage patterns, fix bugs, develop new features
  • Marketing (Only with Consent): Send updates, tips, new features, promotions via email
  • Legal Compliance: Comply with laws, prevent fraud, protect our rights

4. Legal Basis for Processing (GDPR)

  • Consent: Marketing emails (you can withdraw anytime)
  • Contract: Providing our learning platform services
  • Legitimate Interest: Improving our services, security, fraud prevention
  • Legal Obligation: Compliance with applicable laws

5. Data Sharing & Third Parties

We never sell your personal data. We share data only with:

  • Service Providers: Supabase (database), Groq/Ollama (AI), Render.com (hosting)
  • Analytics Tools: Anonymous usage statistics (optional)
  • Legal Requirements: When required by law or to protect rights

6. Your Rights (GDPR)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate data
  • Erasure ("Right to be Forgotten"): Delete your account and data
  • Data Portability: Export your data in a machine-readable format
  • Withdraw Consent: Unsubscribe from marketing emails anytime
  • Object to Processing: Object to data processing based on legitimate interest
  • Lodge a Complaint: Contact your local data protection authority

To exercise your rights, email us at privacy@kemnile.com

7. Data Retention

  • Active Accounts: Data retained while account is active
  • Deleted Accounts: Data deleted within 30 days (except legal obligations)
  • Marketing Consents: Retained for 3 years from last activity or withdrawal

8. Children's Privacy

Our platform is designed for K-8 education. For users under 16, we recommend parental supervision. We do not knowingly collect data from children under 13 without parental consent. Parents can request data deletion at any time.

9. Security

We use industry-standard security measures: encryption (HTTPS/TLS), secure database storage, access controls, regular security audits. However, no system is 100% secure. Notify us immediately of any suspected breaches.

10. International Data Transfers

Your data may be processed in the United States or other jurisdictions. We ensure adequate safeguards (e.g., Standard Contractual Clauses) for GDPR compliance.

11. Changes to This Policy

We may update this policy periodically. Changes will be posted on this page with a new "Last Updated" date. Continued use after changes constitutes acceptance.

12. Contact Us

For questions, data requests, or concerns:
Email: privacy@kemnile.com
Address: [Your Company Address]

← Back to Home