Privacy Policy

Your family's data belongs to you — not advertisers, not data brokers, and not third-party trackers. This Privacy Policy explains what information we collect, how we use it, and the choices you have.

We've built AveroNova around four commitments that don't change: we don't sell personal data, we don't run advertising trackers, we collect only what's needed to provide a safe and effective learning experience, and parents control what happens with their child's data.

Last updated: March 30, 2026

ScopeKey principlesInformation we collectCookiesHow we use informationAI providersHow we share informationData residencyData retentionSecurityChildren's privacyYour rightsContactChanges

1. Scope

This Policy applies to:

  • The AveroNova website and apps
  • Parent and Child Accounts
  • Subscription and support interactions

It does not apply to third-party sites or services you access through our Service (e.g., a billing provider checkout page), which have their own policies.

2. Key principles

We do not sell personal data.

No third-party advertising trackers. We do not run third-party ad pixels or behavioural advertising trackers.

Data minimisation. We collect only what we need to provide a safe, effective learning service for families — and to meet legal obligations.

Parent control for children. Parents control accounts and can access or export child data; deletion requests are handled via support.

3. Information we collect

3.1 Information you provide (Parents)

  • Account details (e.g., name, email).
  • Support messages and communications.
  • Subscription status information we receive from billing providers.

3.2 Information you provide (Children, via Parent-created accounts)

  • Full legal name (for transcripts, where applicable).
  • Nickname / username.
  • Date of birth.
  • Hobbies and interests (optional but currently collected).
  • Country selection (for curriculum fit).

3.3 Learning and lesson interaction data

  • Lesson progress, mastery checks, time in lessons.
  • Inputs a learner provides during lessons (including clarification questions) and the system's responses.
  • Parent dashboard insights derived from learning activity.

3.4 Device and technical data (minimal)

Even without third-party analytics, services typically require basic logs for security and reliability:

  • IP address (e.g., for fraud prevention and security).
  • Device and browser information (as needed for compatibility and security).
  • General location inferred from IP (coarse), plus the country a user selects.

4. Cookies and similar technologies

4.1 Our stance

We aim to use essential cookies only — for login sessions, security, and basic functionality. We do not use third-party marketing cookies.

4.2 Embedded checkout

Our payment provider's embedded checkout may load their scripts and process buyer data during purchase. They collect buyer data for payment processing and fulfilment.

5. How we use information

We use information to:

  • Provide and operate the Service (accounts, lessons, parent dashboards).
  • Personalise learning experiences (including keeping lesson interaction history while an account is active).
  • Provide support and communicate service messages.
  • Process subscriptions and manage refunds.
  • Protect the Service (fraud prevention, abuse prevention, security monitoring).
  • Comply with legal obligations.

6. AI providers and processing of lesson interactions

Some lesson features rely on third-party AI services, currently OpenAI, Anthropic, and Google Gemini.

What we send: lesson prompts and learner inputs needed to generate explanations and feedback.

Training: we configure these services, where available, so data is not used to train their models for our usage.

Retention: these providers may retain data briefly for abuse monitoring and policy enforcement. OpenAI documents up to approximately 30 days for abuse monitoring by default; Anthropic documents backend deletion for API data within 30 days in standard configurations.

Human review: we may perform limited human review when interactions are flagged for safety or policy reasons, or in quality sampling.

7. How we share information (and how we don't)

7.1 We do not sell or rent personal data

We do not sell, rent, or trade personal data.

7.2 Service providers

We share information with vendors only to run AveroNova:

  • Billing and payment providers for payment processing and order fulfilment.
  • AI providers (OpenAI, Anthropic, Google) as described above.
  • Infrastructure and hosting: OVH VPS, with future regional deployments planned.

7.3 Legal and safety

We may disclose information if required by law, or to protect the rights, safety, and security of users (especially children) and the Service.

8. Data residency and international transfers

Our primary hosting is currently on an OVH VPS located in Canada. In the future, we plan to operate separate regional instances for the US, UK, Canada, and Australia, and pin accounts to a region. Region moves can be requested.

9. Data retention

Active accounts: we retain account and learning interaction history while the account remains active to provide continuity and personalisation.

After cancellation or closure: we retain personal data for 90 days, then delete it, subject to legal obligations and backup rotation.

Backups: backup data rotates on a 90-day cycle, meaning remnants may persist in backups until overwritten.

10. Security

We use reasonable administrative, technical, and organisational safeguards designed to protect personal data. No system is 100% secure; you are responsible for using a strong password and keeping credentials private.

11. Children's privacy notice

AveroNova is used by children under Parent supervision and is designed to be parent-controlled.

11.1 Parental consent

If a Child is under 13, we seek verifiable parental consent before collecting personal information beyond what is permitted by limited exceptions. We use methods such as credit card verification plus email confirmation.

11.2 What we collect from children

We may collect child account information (name, date of birth, username) and lesson interaction and learning progress data needed to provide the educational service.

11.3 How Parents can control child data

  • Access and export: Parents can access and export their child's data via the Service where available.
  • Deletion: Parents can request deletion by emailing support@averonova.com.
  • Consent withdrawal: Parents may withdraw consent by contacting support; withdrawal may limit or end the child's ability to use the Service.

11.4 Human review and safety

We may review content if it is flagged or sampled for safety or quality purposes.

12. Your privacy rights

Depending on where you live, you may have rights to access, correct, delete, or obtain a copy of your personal data, and to appeal certain decisions. Contact us at privacy@averonova.com to exercise these rights.

13. Contact us

Questions or concerns about this Privacy Policy or our data practices:

General: support@averonova.com
Privacy matters: privacy@averonova.com

14. Changes to this Policy

We may update this Policy from time to time. We'll update the "Last updated" date and provide additional notice if changes are material.

Privacy questions? privacy@averonova.com