Compass legal

Privacy Policy

This Policy explains how Compass collects, uses, discloses, stores, and protects personal information.

Effective and last updated: June 10, 2026

At a glance

  • Compass is built for educators and does not offer student accounts.
  • We use personal information to run the platform, secure accounts, process uploads, provide AI-assisted features, support billing, and communicate with users.
  • Temporary upload files and pasted text are short-lived workflow buffers unless a user or district asks us to retain them.
  • We do not sell personal information.

Scope and who we are

This Privacy Policy applies to Compass websites, the Compass application, public launch pages, account creation, school and district activation flows, support communications, billing workflows, and related services that link to this Policy.

Compass is operated by CARL Hub Inc., a Canadian corporation incorporated in British Columbia and federally registered in Canada. Our privacy contact is [email protected].

If your school, district, or organization has a separate agreement with Compass, that agreement may include additional data protection, retention, access, residency, or support terms for the organization workspace.

Student personal information

Compass is an educator and administrator platform. Student accounts are not currently available, and teachers should not enter student names, student records, grades, Individual Education Plans, health information, parent contact details, or other identifiable student personal information unless their institution has explicitly approved that use.

Compass can be used to track curriculum coverage, plans, classes, and teacher-created notes without naming students. If a school or district authorizes use involving student personal information, the institution is responsible for giving staff instructions, obtaining any required consents, and confirming that Compass is approved for that purpose.

Information we collect

Compass collects information directly from users, from institution administrators, from product activity, and from configured service providers.

Account and profile
Name, email address, password hash, verification status, preferred interface language, school or district affiliation, role, grades, subjects, profile image from Google where connected, and account status.
Authentication and security
Session records, OAuth state records, active workspace selection, password reset and email verification tokens, support impersonation records, IP address, user agent, request identifiers, rate-limit events, and audit logs.
Workspace and planning content
Workspace names, memberships, roles, class or planning area setup, grade and subject labels, curriculum selections, curriculum coverage state, plan titles, dates, notes, learning objectives, activities, materials, reflections, status, archive state, reports, class shares, and related metadata.
Uploads and custom curriculum
File names, file type, file size, temporary stored files or pasted text, scan job status, AI extraction summaries, reviewed curriculum items, source metadata, and teacher-confirmed matches. Compass is designed not to store extracted full text in the final scan result.
Billing and subscriptions
Plan, subscription status, Stripe customer and subscription identifiers, checkout session identifiers, billing mode, licensed seat counts, invoice and payment method summaries returned by Stripe, district contract metadata, purchase order details, and billing contact information. Compass does not store full card numbers.
School and district administration
Roster import rows and preview results, user invitations, domain policy settings, seat changes, organization branding, admin notes, district launch checklist state, support sessions, entitlement overrides, and organization lifecycle events.
Communications and support
Emails, support requests, privacy requests, security reports, survey responses, launch interest forms, onboarding booking details, and feedback you send to us.
Analytics and device data
Page paths, feature events, launch source parameters, anonymous analytics identifiers, browser and device information, approximate location derived from IP address, and public launch page session telemetry where analytics tools are enabled.

How we use information

We use personal information for the purposes for which it was collected and for compatible purposes, including to:

  • create, verify, authenticate, and secure accounts;
  • provide class setup, curriculum coverage, planning, reporting, sharing, and workspace administration features;
  • process uploaded files, pasted text, curriculum sources, and AI-assisted requests you initiate;
  • operate school and district provisioning, roster imports, seat limits, owner transfer, and access policies;
  • manage subscriptions, checkouts, invoices, district quotes, and customer portal access;
  • send verification, password reset, account, billing, product, support, security, and policy communications;
  • monitor reliability, debug errors, detect abuse, enforce limits, investigate security events, and protect users;
  • measure product usage, improve workflows, prioritize roadmap decisions, and evaluate launch campaigns;
  • comply with legal, tax, audit, accounting, reporting, and dispute-resolution obligations.

We do not sell personal information. We do not use private workspace content for targeted advertising. We may use aggregated or de-identified usage information to understand and improve Compass.

AI-assisted processing

When you use AI-assisted features, Compass may send relevant prompts, uploads, pasted text, plan details, custom curriculum content, curriculum metadata, and workspace context to the configured AI provider. Compass currently supports OpenAI, Google Gemini, Google Vertex AI, and a mock provider for development environments.

We do not use your content or personal information to train AI models. We access AI providers through their business APIs, under terms that do not permit them to use your inputs or outputs to train their models.

AI processing is used to extract file text, parse custom curriculum, suggest plan details, rank curriculum matches, generate plan ideas, summarize plans, and draft Plus features such as family summaries or report comment starters. AI output is returned to you for review and may be saved only when the feature or your action stores it in Compass.

Temporary uploads and pasted text may be stored long enough for the scan worker to finish processing. By default, temporary upload assets expire after 24 hours. Completed or canceled scan job results are deleted after a short workflow window, and failed scan job metadata is retained longer for support recovery. Current defaults are listed in the retention section.

When we share information

We disclose personal information only where needed to provide Compass, where you direct us, or where law allows or requires it.

  • Within your workspace: Workspace owners, administrators, and invited collaborators can access information according to their role and the sharing settings used in the product.
  • With class share recipients: If you share a class or resource, recipients may see the shared content, attribution, access level, expiry, and related metadata.
  • With service providers: Providers help us host, store, process, secure, email, bill, analyze, and support Compass. They may process information only for the service we ask them to provide.
  • With payment processors: Stripe processes payments, checkout, customer portal access, invoices, and payment method summaries. Card details are handled by Stripe.
  • With authentication providers: Google receives and returns information needed for Google sign-in where you choose that option.
  • With CARL, at your direction: CARL and Compass are separate products with separate accounts and sign-ins. If you choose to link them, the two products exchange information through a secure server-to-server API connection: account-link details (your linked identity and email), the lessons and units you import from CARL, curriculum match and plan status updates, and subscription entitlement status for bundle purchases. You control what is synced in your integration preferences and can unlink the accounts at any time.
  • For legal and safety reasons: We may disclose information to comply with law, enforce our Terms, protect rights and safety, investigate abuse, respond to security incidents, or prevent harm.
  • Business transfers: If Compass or CARL Hub Inc. is involved in a merger, acquisition, financing, restructuring, or sale of assets, information may transfer as part of that transaction, subject to appropriate safeguards.

Providers currently supported or used by Compass may include hosting and database providers, DigitalOcean, Railway, Redis or Redis-compatible services, S3-compatible object storage, Stripe, Google, OpenAI, Google Gemini or Vertex AI, Resend, Sentry, PostHog, Google Analytics or Tag Manager, Microsoft Clarity on public launch pages, HubSpot forms, Calendly links, and CARL integration services, depending on environment and feature configuration.

Cookies, local storage, and analytics

Compass uses cookies, local storage, and similar technologies for essential and optional purposes.

Essential cookies
Session cookies keep you signed in. Locale cookies remember interface language. OAuth cookies complete Google sign-in. Support impersonation cookies support authorized admin sessions. Blocking essential cookies may prevent Compass from working.
Local storage
Compass may store interface preferences such as workspace panel width and an anonymous analytics identifier in the browser.
Analytics
Where enabled, Compass may use PostHog, Google Analytics, Google Tag Manager, and Microsoft Clarity on public launch pages to understand product usage, campaign performance, and page issues.
Third-party pages
Embedded forms, payment screens, Google sign-in, scheduling links, and other third-party services may set their own cookies under their own privacy notices.

You can control cookies through your browser. You may opt out of marketing communications using unsubscribe links where available, but we may still send service, account, billing, security, and policy messages.

Retention and deletion

We keep personal information only as long as needed for the purposes described in this Policy, unless a longer period is required or permitted by law, contract, tax, audit, security, dispute, or backup needs.

Account and workspace data
Kept while your account or workspace is active, then deleted, anonymized, or retained only where legally or operationally necessary.
Auth sessions
Compass auth sessions are created with a 30-day expiry unless revoked earlier. OAuth state cookies expire quickly, currently after about 10 minutes.
Temporary uploads
Plan and curriculum uploads are temporary workflow buffers by default. Current default expiry is 24 hours unless the user or workspace chooses retention.
Scan job results
Completed or canceled scan job results are currently retained for 48 hours. Failed scan job metadata is currently retained for 168 hours to support troubleshooting.
Class shares
Class share links expire when their configured expiry date passes or when revoked. The retention worker marks expired links so access stops.
Audit and security logs
Audit logs, rate-limit records, support session records, billing events, and security records may be retained for compliance, fraud prevention, support, and forensic purposes.
Billing records
Subscription, invoice, payment, tax, and contract records may be retained as required for accounting, legal, and dispute purposes.

For verified account deletion requests, we target removal of active product account data within two business days where operationally possible. Backups, audit logs, billing records, de-identified records, and records we must keep for legal or security reasons may remain for longer.

Security

Compass uses administrative, technical, and organizational safeguards designed to protect personal information, including hashed passwords, session revocation, role-based access controls, request-origin checks, rate limiting, audit logs, support session controls, environment secret management, and encrypted HTTPS transport in production deployments.

No online service can guarantee absolute security. Please use a strong password, keep credentials private, sign out of shared devices, and contact [email protected] if you suspect unauthorized access.

School and district workspaces

When Compass is provided through a school or district workspace, the institution may control workspace membership, seat allocation, billing, roster imports, domain policies, class sharing defaults, resource access, owner transfers, and retention or offboarding decisions. Institution administrators may see workspace data according to their role and the applicable agreement.

If you use Compass through your employer or school district, direct requests about institution-controlled data to your institution when required by its policies. You can also contact us at [email protected] and we will route or coordinate the request as appropriate.

Your privacy rights and choices

Depending on where you live and how you use Compass, you may have rights to access, correct, export, delete, or challenge the handling of your personal information. You may also have rights to withdraw consent, object to or restrict certain processing, and complain to a privacy regulator.

  • You can update some profile, language, session, workspace, billing, and planning information inside Compass.
  • You can revoke other active sessions from Settings where that feature is available.
  • You can request access, correction, export, or deletion by emailing [email protected].
  • We may need to verify your identity and authority before acting on a request.
  • We will not discriminate against you for exercising privacy rights.

Canadian users may contact the Office of the Privacy Commissioner of Canada or, for British Columbia matters within its mandate, the Office of the Information and Privacy Commissioner for British Columbia. We ask that you contact us first so we can try to resolve the issue directly.

Storage locations and international transfers

Compass is built for Canadian education and uses service providers selected for product, security, reliability, and operational needs. Primary hosting, databases, storage, analytics, AI, email, support, and payment processing may occur in Canada, the United States, or other countries depending on deployment and provider configuration.

When personal information is processed outside your province, state, or country, it may be subject to the laws of that location. We use contractual, technical, and organizational safeguards where appropriate. School or district agreements may add data residency or subprocessor terms.

Children and youth

Compass is not directed to children under 13 and does not offer student accounts. If we learn that a child has created an account or that identifiable child personal information was entered without authorization, we may delete the information, disable the account, or coordinate with the applicable school, district, parent, guardian, or regulator as appropriate.

Changes and contact

We may update this Privacy Policy to reflect product changes, legal requirements, provider changes, or privacy practice changes. Minor updates are effective when posted with a new date. For material changes, we will provide notice by email, in-app notice, website banner, or another reasonable method where required.

Privacy requests, security concerns, school or district questions, billing questions, and other Compass inquiries can be sent to [email protected].

Mailing address: CARL Hub Inc., Kelowna, BC, Canada.