COPPA governs the collection of certain information from children under the age of 13 by commercial websites and online services.

When Brisk Teaching provides Brisk Products on behalf of a school, the school provides consent for Brisk Teaching to collect information from students under the age of 13. In this case: some text

• We collect and process personal data from students under 13 solely at the direction of and under the control of a school, and do not require students to disclose more information than is reasonably necessary to use Brisk Products.
• At all times, schools have the right to request to review or delete the personal data from students under 13 or decline to permit further collection or use of the students’ personal data by contacting the school’s account representative.
• Schools are responsible for providing appropriate notice to parents of the school’s use of third-party service providers such as Brisk Teaching.

When Brisk Teaching provides Brisk Products directly to children under 13 outside of the school context, we require the child’s parent or legal guardian to provide the appropriate consent or authorization for Brisk Teaching to collect the child’s personal data. The parent, legal guardian or school may withdraw consent at any time.

Protecting student privacy is a top priority. We are signers of the Student Data Privacy Pledge, and comply with all student data privacy laws, including FERPA and COPPA. We have signed the National Data Privacy Agreement with California, Illinois, Massachusetts, Maine, Missouri, New Hampshire, Ohio, Rhode Island, Virginia, Vermont, Washington, and Wisconsin, and are open to signing district-level agreements when state-level Data Privacy Agreements are not possible.

We have established robust physical, technical, and administrative safeguards designed to protect the information in Brisk Teaching. These safeguards prevent unauthorized access, disclosure, or improper use of information. Below is a summary of some of the steps Brisk Teaching takes to protect student information:some text

• We restrict access to personal information to authorized Brisk Teaching employees, agents, service providers, or independent contractors who reasonably need to know that information in order to process it for us, and who are subject to confidentiality obligations.  Employees and contractors (“Staff”) are subject to discipline if they fail to meet these obligations;
• We require our service providers with which we share Student User personal information to employ industry standard data protection and security protocols;
• We use identification and authentication methods such as multi-factor authentication;
• We employ administrative, physical, and technical safeguards designed to protect personal information from unauthorized access, disclosure, and use or acquisition by an unauthorized person, including when transmitting and storing such information;
• We employ encryption technologies to securely transmit personal information, including data-in-transit encryption, and we encrypt personal information that is stored;
• We maintain a data backup and recovery capability designed to ensure a timely and accurate restoration of personal information;
• We maintain a secure software development lifecycle with industry standard security practices designed to establish secure application(s), network, and infrastructure architectures;
• We maintain event monitoring and response procedures for events which could impact functionality, security and/or availability of Brisk Teaching;
• We regularly provide Staff training for security incidents and maintain incident response policies, plans and procedures focused on timely and effective incident response.

We want to hear from you! Email us at hello@briskteaching.com to get in touch.