EdTech
EdTech COPPA & FERPA
Student PII masking, consent-bound data access, breach notification, limited retention.
What this package does
COPPA and FERPA-aligned guardrails for AI-powered educational platforms. Masks student PII before it reaches any log or third-party sink, binds every data access to an educational purpose, enforces strict retention limits, and triggers a breach notification workflow if bulk student records are accessed in a single operation.
Designed for
- K-12 AI tutoring platforms
- LMS vendors with AI features
- EdTech student data processors
What's included
- Student PII masking (student ID, DOB, grades)
- Consent-purpose binding: education + learning analytics only
- Breach notification threshold @ 500 student records
- 1-year data retention limit (COPPA: delete when no longer needed)
- HITL escalation for AI-generated student assessments
Controls in this bundle
Profile tiers
Switch profiles in Studio to retune default thresholds across the whole bundle without rewriting any control by hand. This package ships at strict — anything you've already tightened by hand is preserved on switch.
Every control in this package uses identical parameters across all four profiles. Switching profile in Studio has no effect here.
Attestation
The canonical hash of these bundle bytes is sha256:bbb4022d183ec40d9d4f4b59e1862733657ecf4fc3580eea1d3ae15f103870db. The same hash is computed at lock time, at Stripe checkout, and again on the runtime side before any byte is honored.
Want to customize first? Opening this package in Studio prefills the canvas with the 8 controls above. You can add, remove, or retune any of them before you lock the hash and pay.