HeartFirst Education, LLC (“Company” or “We, Our, Us, HeartFirst Education”) respects your privacy and is committed to protecting it through our compliance with this policy.
This policy describes the types of information we may collect from you or that you may provide when you visit the website www.heartfirsteducation.org or www.heartfirstkids.com (our “Website“) and our practices for collecting, using, maintaining, protecting, and disclosing that information.
This policy applies to information we collect:
On this Website.
In email, text, and other electronic messages between you and this Website.
Through mobile and desktop applications you download from this Website, which provide dedicated non-browser-based interaction between you and this Website.
www.heartfirstkids.com website is a social emotional learning network that gathers data from children for educational purposes. We prioritize user privacy and data security, especially for young users. All information pertaining to children is handled with the highest level of confidentiality. We are committed to strictly avoiding any public exposure of children’s data, in alignment with COPPA’s guidelines.
It does not apply to information collected by:
Us offline or through any other means, including on any other website operated by Company or any third party including our affiliates and subsidiaries; or
Any third party including our affiliates and subsidiaries, including through any application or content including advertising that may link to or be accessible from or through the Website.
Information We Collect About You and How We Collect It
We collect several types of information from and about users and Learners of our Website, data belonging to Learner is never subjected to public disclosure.
Website Visitors and General Consumers
We collect information through technology for website visitors who do not engage with us directly, please see the Technology and cookies and trackers section below for more information. If you interact on our website, we will track your activities online, but we do not know who you are.
However, if you submit a form with your contact information, we will engage with you as requested and may follow up with you to further build a relationship, generally through Communications and Marketing. You can opt out of marketing communications at any time.
How do we collect this information? This information is typically provided by you voluntarily. Where it is not voluntary, it may be in the realm of employment or legal proceedings and follow the requirements of applicable law. In addition, we buy services or information that help us learn more about you and communicate with you.
Why do we collect this information? We respond or initiate communications in provision of the Activities or in response to a request. This is based on the requirement to provide you services or our legitimate interest to grow our business and understand our Customers and their needs better. Our legitimate interest in this relates to sending you the request, in which you may choose to respond or not and can choose to ask us not to contact you for those purposes. Given this, our legitimate interest is not outweighed by the risk to you.
When you communicate with us, regardless of the channel, we keep records of communications and act on them as appropriate, whether email, messaging, or other forms of communication. Communications may be managed by various departments and/or third parties, including Trust & Safety or Legal. We may also communicate with you to better understand our market, and ask you to participate in study groups, surveys, video interviews, etc. We will provide more information to you at the time.
When visitors provide comments on our website, we gather the information that is disclosed within the comment form. This includes the content of the comment itself. Additionally, we automatically capture the visitor’s Internet Protocol (IP) address and the user agent string of their web browser. This information serves the purpose of facilitating the identification and prevention of spam.
Upon the validation and authorization of a visitor’s comment, the profile image linked to their account may become publicly visible. This visibility extends to the general public and occurs within the contextual framework of the specific comment in question.
When you choose to upload images to our website, it’s important to be aware of certain considerations. Specifically, we recommend that you exercise caution and avoid uploading images that contain embedded location data, commonly known as EXIF GPS data. This type of data can reveal the geographical coordinates where the image was captured.
By refraining from uploading images with embedded location data, you are ensuring an extra layer of privacy protection. This is particularly important because visitors to our website have the capability to download and extract location data from images that are present on the site.
In essence, being mindful of the images you upload helps safeguard your own and others’ privacy. Our commitment to user privacy extends to all aspects of the content shared on our platform, and we appreciate your cooperation in this matter.
We may interact with you using social media in a variety of ways. We may “follow” you or ask you to “follow” us. We may create groups on social media for interaction. We may ask for your social media handles or tags to use in advertising. We may copy your posts or statements and follow up internally or with you.
We will use your contact information to communicate with you, unless you instruct otherwise. We do not collect Learner information for marketing purposes. We may obtain information from third parties, such as matching your email address to a publicly available physical address and sending physical marketing materials, like postcards. You can request that your email or other information in your profile not be used for marketing purposes. If you opt out of marketing emails, we will continue to send emails related to Classes or Activities and respond to any requests from you. Please contact firstname.lastname@example.org for questions.
Customers (Parents, Learners, and Partners)
The personal information we process can be grouped into three main categories: information you (or your learner) provide to us, information we get from third parties about you, and information we get from cookies and trackers.
Customers – information you provide to us
For engaging with us, you provide us information directly for your Account, Services, and Finance. More detail is provided below for each one of these, but here we explain how and why we process this information.
How do we collect this information? If you engage with us directly, we collect this information from you or from linked accounts (like Google or Facebook log-ins) that you choose to share the data with us. You also volunteer information when you complete parts of your profile. You can choose not to provide this information. If you are a Learner, your Parent may provide your information. When engaged with classes or activities, participants may be requested to submit some information to complete the assignment and some information is volunteered through your engagement, like comments or feedback.
Why do we collect this information? We collect this data to add you to our platform and let you engage with us – generally at your request or consent, which you may revoke at any time. Revoking consent may end your classes, activities, or account, depending on your request. Some information is provided for learner safety, such as video evidence that the person in the Activity other than the Educator is a child. If you refuse to provide a video, you may be refused to join Activities. You can participate without providing any voluntary information, but you must provide required information. We may also use information provided to us to prevent fraud. In general, we use your information to provide the Services, customer support, and to improve our platform and Services.
When you join HeartFirst Education, we ask for your name or publicly posted name from a linked account (such as Facebook, Google or Apple), email address, phone number, and postal address. We collect information about the Activities you can or wish to be involved with (as an Educator or as a Parent or Learner) and keep a history of your Activities. You may choose to provide additional information in your profile, such as age, gender, pronouns, title, and profile photo. All live classes are recorded and cameras required to be on for at least a portion of the Activity for the safety of all Learners. Where necessary, an account may require a contract to be in place.
We collect information about the Classes, Activities, or other Services for which you or a Learner engages in, comments and communications, instructions, information you share such as drawings or photos, class or Teacher reviews, video and audio, writing assignments, submissions, and various activities that you or a Learner partake in. and the history of activity in and with HeartFirst Education. This may include uploaded items, such as photos or drawings. If information is uploaded to HeartFirst Education, it may contain metadata such as who created or last modified it, the date created or modified, location, and such. You can generally check metadata by clicking on the properties for that item. We do not require any metadata on submitted items and we do not purposefully use any. We do not support or encourage communication outside our platform, except where required and specifically approved by the course. At times, we may want to test if certain parts of the website or Services work better than others and if so, may present one version to some group (of Customers, general consumers, etc.) and one to another. There is no substantive difference between the options, mainly just presentation, such as testing whether more people like the “load more” option or the page clicking. We do this to better determine how to design our site for engagement.
For purchases, we collect name, credit card or other payment information, billing address, and information about the Services purchased. For payments to you, we collect your financial account information if necessary, payment details, and information about our payments, such as the reason or history. We also use financial information to detect or prevent fraud.
“Sensitive data” has different meanings depending on location. Where possible, we apply heightened protection to sensitive data. In some places, information from a child may be considered sensitive information itself. You or a Learner may voluntarily provide sensitive information, such as health or disability information included in forms, messages, or with a complaint or concern. Learners may also be enrolled in special classes offered for Learners with disabilities and Teachers may volunteer their disabilities within a class. Teachers and Learners are otherwise not allowed to have discussions that may elicit or result in sharing of sensitive information, and where they do learn sensitive information, they are not permitted to share that outside HeartFirst Education or use it in an inappropriate way.
Fraud. If we suspect that a Learner is over the age of 18 or misrepresenting their identity, for the safety of other Learners, we may request proof of appropriate age or identity, such as a video clip or the Learner’s birth certificate, passport, or driver’s license. This documentation may contain sensitive data such as full date of birth, place of birth, and government ID numbers. We only retain the information necessary, such as date of birth.
Background Check Information. Teachers and potential employees must provide information as part of our background check process, including criminal history information, professional education and qualifications, work history, references, and teaching abilities. We provide separate notices and consent forms before performing background checks.
Information we get through Third Parties
We may get information on you from Customers, Partners, third parties or vendors on Customers or potential Customers. This may include us getting the information directly or it may be getting your information from Partners. More detail is provided below for each one of these, but here we explain how and why we process this information.
How? We get information from third parties either by purchasing or leasing it, indirectly through our own vendors, or by engaging with you through third parties, like social media. Also, our current Customers may share information in our referral program. We do not buy or lease information from third parties on Learners.
Why? In most cases, we obtain or purchase data so we can grow our business – so this is in our legitimate interests as a business to do so. We may use this data to report suspicious activity to a local agency. If so, this is either for addressing fraud or for the safety of Learners.
Information from Partners. HeartFirst Education, may partners with other organizations, such as schools, non-profits, and employers to provide services. In general, these Partners would provide your information to us for you to participate in Classes or Activities in which they have control (such as schools) or where they are offering the Services to you as a joint effort. Partners will likely provide you with specific information when the relationship is set up, especially if they have control over the Classes or Activities. If so, you need to look at their privacy notice for how they handle your information.
We also partner with technology companies to jointly provide some services. In some cases, you need to create an account with the partner to use their services and when you link your account there with your account with us, they may provide information to us.
Information from Vendors. At times, we may purchase (or lease) data from third parties for certain reasons. We don’t know how these third parties get your data, but it is generally through advertising services or other companies you have used who are able to share your information. We do not sell that information, but we may share it with our vendors, such as if we buy a mailing list of parents in a certain area, we will share those addresses with a vendor who may print and mail the postcards. The data we get may be just on a group of people where we provide characteristics we want or we may provide the names (not on Learners) to get more information on them, such as addresses for marketing materials or for reporting an event to the local agencies.
Information from other third parties. At times, you may decide to login to our services using a linked account, such as Facebook or Google. We make sure that you are able to do this, but it does mean you may be providing us more information about you. You should check the privacy notices of these providers to see what they share with us. We may also get information through third parties if you use them in Classes or Activities. We try to control the use of third party tools, but we are not perfect.
Information We Collect Through Automatic Data Collection Technologies
As you navigate through and interact with our Website, we may use automatic data collection technologies to collect certain information about your equipment, browsing actions, and patterns, including:
Details of your visits to our Website, including traffic data, location data, logs, and other communication data and the resources that you access and use on the Website.
Information about your computer and internet connection, including your IP address, operating system, and browser type.
We also may use these technologies to collect information about your online activities over time and across third-party websites or other online services.
The information we collect automatically is only statistical data and does not include personal information, but we may maintain it or associate it with personal information we collect in other ways or receive from third parties. It helps us to improve our Website and to deliver a better and more personalized service, including by enabling us to:
Estimate our audience size and usage patterns.
Store information about your preferences, allowing us to customize our Website according to your individual interests.
Speed up your searches.
Recognize you when you return to our Website.
The technologies we use for this automatic data collection may include:
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser. When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks.
If you log out of your account, the login cookies will be removed. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Web Beacons. Pages of our Website [and our emails] may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or [opened an email] and for other related website statistics (for example, recording the popularity of certain website content and verifying system and server integrity).
Flash Cookies. Certain features of our Website may use local stored objects (or Flash cookies) to collect and store information about your preferences and navigation to, from, and on our Website. Flash cookies are not managed by the same browser settings as are used for browser cookies. For information about managing your privacy and security settings for Flash cookies, see Choices About How We Use and Disclose Your Information.
Cookies and tracking technologies are employed to optimize navigation and customize user experiences. These technologies, used responsibly, help us understand user preferences and improve our services. Importantly, the data of children is never shared publicly through these means.
Our Commitment to Privacy
We do not collect personal information automatically, but we may tie this information to personal information about you that we collect from other sources or you provide to us.
We want to emphasize that any data related to children is treated with the utmost confidentiality. Public disclosure of children’s data is strictly avoided, aligning with the guidelines of COPPA.
This table presents a concise overview of the plugins and third-party services on our website. It outlines their purposes, data collected, and our data sharing approach.
We do not control these third parties’ tracking technologies or how they may be used. If you have any questions about an advertisement or other targeted content, you should contact the responsible provider directly. For information about how you can opt out of receiving targeted advertising from many providers, see Choices About How We Use and Disclose Your Information.
How We Use Your Information
Learner data is treated with the utmost care and is never shared to the public. We use information that we collect about you or that you provide to us, including any personal information,
To present our Website and its contents to you.
To provide you with information, products, or services that you request from us.
To fulfill any other purpose for which you provide it.
To provide you with notices about your account subscription, including expiration and renewal notices.
To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection.
To notify you about changes to our Website or any products or services we offer or provide through it.
To allow you to participate in interactive features on our Website.
In any other way we may describe when you provide the information.
For any other purpose with your consent.
Disclosure of Your Information We may disclose your personal data to the following categories of third parties:
Teachers: When Parents sign up for Services, they agree that Teachers may receive certain personal data about the Parents and their Learners including classes they have taken and requests or needs. Please note that in some cases, classes are taught by a “Teacher” that is actually an organization, group, or team of instructors. In such cases, class recordings may be accessed by the entire organization, and access would not necessarily be limited to a single individual Educator. Teachers may also need to engage others to assist.
Other Customers: Members of a class or activity will be able to see, hear, and read the interactions with the other members. This may include other Parents, Learners, and other individuals any member of the activity or class requires in order to participate, such as an interpreter. However, no one should have other individuals involved in class that should not be there for a legitimate and pre-approved purpose. HeartFirst Education prohibits non-approved people on our site engaging with Learners or other Customers.
Teachers using third-party sites or tools: We request that Teachers only share or use tools / third party sites that are COPPA-compliant. However, at times, Teachers prefer to use tools or sites that have not been reviewed by our team. Parents should review what sites or tools that Teachers list for specific Classes. Parents should review those sites and tools and either agree or let us or the Teacher know you disagree. Parents should check email registrations carefully and review your Learner’s Activity description or listing.
Partners: Where we work with organizations (schools, employers, non-profits, tech companies, etc.) that provide opportunities or funding to you for Services, we will share information back to them about Learner engagement. As mentioned above, you will be aware of these engagements as generally, that is how you came to HeartFirst Education or used their codes / vouchers to pay for Services or you specifically connected your account with them to us.
Vendors/Service Providers: We engage third-party service providers to perform certain activities on our behalf, such as hosting (AWS), communications (e.g., Google, Intercom), marketing (e.g., Postmark), analytics, payment processing (e.g., Swipe, Paypal, Afterpay), video hosting (Zoom), and website maintenance. This is not a complete list, but a sample of some third parties we use.
Business Transactions: If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of company assets, or transition of service to another provider, your information may be transferred to a successor or affiliate alone or as part of that transaction along with other assets. This may occur before the transaction is complete as part of the transition or evaluation, although where possible, we will ensure the other entity honors the privacy protections.
To our subsidiaries and affiliates, contractors, service providers, and other third parties we use to support our business and who are bound by contractual obligations to keep personal information confidential and use it only for the purposes for which we disclose it to them
Third-Party Analytics and Advertising Companies: We allow third-party analytics and advertising vendors to collect personal information, including the Technical Data described above, data about your usage, and inferences about you based on such data. Except for data collected from Learners in virtual classrooms where students interact with their instructors for educational purposes , these third-party vendors may combine this data across multiple sites to improve analytics for their own purpose and others. If you reside in California, you can opt out of this processing by sending us an email: email@example.com Do Not Sell My Personal Information. We do not sell your data for money, but we may receive services or a discount in exchange for some data collected online (not Learner data). For more information about the cookies and other technologies we use and your choices regarding what personal data they collect, please see our Cookie Notice Page.
Legal Requirements: We may disclose your personal data if required to do so by law or when we believe that such action is necessary to (i) comply with a legal obligation or a request from someone with legal authority to do so, (ii) protect and defend the rights or property of us or those of Customers or Partners, (iii) operate and maintain appropriate security, including to prevent or stop an attack on our computer systems or networks, (iv) to protect the personal safety of Customers or the public, or (v) protect against legal liability. Teachers are required to report to us any suspected case of child abuse or neglect they become aware of during their work with Learners. Teachers and Partners may also be required to report suspected abuse or neglect to local authorities, and we expect all Teachers and Partners to comply with their individual reporting responsibilities. We may also report instances of suspected abuse or neglect.
Please note that Classes and Activities may include references or links to or suggestions to engage with third parties whose privacy practices differ from ours. Teachers may also suggest third-party resources for Parents and Learners. If you provide personal data to any of those third parties, or instruct us to disclose personal data to them, that data is governed by their privacy notices.
Choices About How We Use and Disclose Your Information
Where permitted under applicable law, you have the right to request access to your Personal Information, delete, change or correct your Personal Information collected by HeartFirst Education. If you are a Parent, Teacher, or a Partner you can access and update the information associated with your HeartFirst Education account directly by logging into your account.
We strive to provide you with choices regarding the personal information you provide to us. We have created mechanisms to provide you with the following control over your information:
Disclosure of Your Information for Third-Party Advertising. If you do not want us to share your personal information with unaffiliated or non-agent third parties for promotional purposes, you can opt-out by checking the relevant box located on the form on which we collect your data. You can also always opt-out by sending us an email with your request to firstname.lastname@example.org .
Promotional Offers from the Company. If you do not wish to have your email address, contact information used by the Company to promote our own or third parties’ products or services, you can opt-out by checking the relevant box located on the form on which we collect your data or by sending us an email stating your request to email@example.com. If we have sent you a promotional email, you may send us a return email asking to be omitted from future email distributions. This opt out does not apply to information provided to the Company as a result of a product purchase, warranty registration, product service experience or other transactions.
Targeted Advertising. If you do not want us to use information that we collect or that you provide to us to deliver advertisements according to our advertisers’ target-audience preferences, you can opt-out by checking the relevant box located on the form on which we collect your data or by sending us an email stating your request to firstname.lastname@example.org. We do not control third parties’ collection or use of your information to serve interest-based advertising. However these third parties may provide you with ways to choose not to have your information collected or used in this way. You can opt out of receiving targeted ads from members of the Network Advertising Initiative (“NAI“) on the NAI’s website.
To exercise your rights mentioned above or if you are Parent/Guardian and want to correct, edit, update or delete information about your child, please contact us at email@example.com. If you are a Parent/Guardian, your account deletion may impact, you will not be able to reinstate your activity, class, or other history, including interactions with teachers or payment. Please note that as part of your request, we may require additional information and documents, including Personal Information, in order to authenticate and validate your identity and to process your request. Such additional information will be then retained by us for legal purposes (i.e., as proof of the identity of the person submitting the request). We reserve the right to modify or update this Cookie to reflect changes in our practices or for other operational, legal, or regulatory reasons. The updated version will be posted on the Website.
Accessing and Correcting Your Information
You can review and change your personal information by logging into the Website and visiting your account profile page.
You may also send us an email at firstname.lastname@example.org to request access to, correct or delete any personal information that you have provided to us. We cannot delete your personal information except by also deleting your user account. We may not accommodate a request to change information if we believe the change would violate any law or legal requirement or cause the information to be incorrect.
If you delete your User Contributions from the Website, copies of your User Contributions may remain viewable in cached and archived pages, or might have been copied or stored by other Website users.
We recognize the need to provide further privacy protections with respect to personal information we may collect from children on our sites and applications. Some of the features on our sites and applications are may be blocked age-gated or provided in a limited form to restrict the collection or sharing of data from children (typically those under 13 or the age indicated by law) or to prevent them interacting with adults so that they are not available for use by children, and we do not knowingly collect personal information from children in connection with those features. When we intend to collect personal information from children, we take additional steps to protect children’s privacy, including:
Notifying parents about our information practices with regard to children, including the types of personal information we may collect from children, the uses to which we may put that information, and whether and with whom we may share that information;
In accordance with applicable law, and our practices, obtaining consent from parents for the collection of personal information from their children, or for sending information about our products and services directly to their children;
Limiting our collection of personal information from children to no more than is reasonably necessary to participate in an online activity;And
Giving parents access or the ability to request access to personal information we have collected from their children and the ability to request that the personal information be changed or deleted.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website, we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
We have implemented measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. All information you provide to us is stored on our secure servers behind firewalls. Any payment transactions will be encrypted using SSL technology.
The safety and security of your information also depends on you. Where we have given you (or where you have chosen) a password for access to certain parts of our Website, you are responsible for keeping this password confidential. We ask you not to share your password with anyone. We urge you to be careful about giving out information in public areas of the Website like message boards. The information you share in public areas may be viewed by any user of the Website.
Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to our Website. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website.
To register a complaint or concern, please contact us at: email@example.com
Customers include Learners and their Parents, Teachers, and Partners.
Learners, (“Child, Your Child, User, Children”) are the minors (18 years and younger) who participate in HeartFirst Education activities.
Parents are the parents or legal guardians of the Learners.
Teachers are the independent contractors – either individuals or organizations – who offer classes through HeartFirst Education’s platform.
Partners are companies (third parties) that we work with, such as schools, technology vendors, employers, or non-profit organizations, and who are not “teachers”.
Services means the (“Classes, Activities, other engagement or Digital Product, Product”) by Customers with HeartFirst Education
Classes means the courses developed / taught by Teachers, whether individuals or organizations.
Activities means the groups, challenges, and other types of engagement through or with HeartFirst Education in which any Customers may participate, whether paid or free.
Personal Information/Data means information linked to an identified (or identifiable) person.
Process means any activity with personal information, e.g., collecting, using, sharing, storing, etc.