Privacy Policy
How we protect student data and maintain a safe learning environment.
Last Updated: June 2, 2026
Our Commitment to Student Privacy
At HIVE Social, we believe that student privacy is not just a legal requirement—it is a foundational pillar of trust. Our platform is designed as a "supervised practice space" where student safety and data protection always come first.
Zero Public Access
Profiles are not indexable and invisible to anyone outside the verified school network.
Data Minimization
We only collect the bare minimum data required for educational interaction.
1. Compliance with Federal Laws
COPPA (Children's Online Privacy Protection Act)
Hive Social complies with COPPA by operating under the "Educational Purpose" exception. Schools provide consent on behalf of parents for the use of the platform within a controlled educational context. We do not collect behavioral data for advertising.
FERPA (Family Educational Rights and Privacy Act)
We act as a "school official" under FERPA, maintaining school records that contain personally identifiable information (PII) under the direct control of the school or district.
CIPA (Children's Internet Protection Act)
Our real-time AI content filtering (Gemini) monitors all interactions to prevent access to harmful or inappropriate material, supporting the school's requirement for a safe internet environment.
2. Data Collection & Usage
We collect only what is necessary to create a functioning social environment:
| Data Type | Purpose |
|---|---|
| Name & Email | Identity verification via School SSO (Google/Clever). |
| Posts & Comments | Facilitating student-to-student interaction. |
| Moderation Logs | Tracking safety scores and strikes for administrative review. |
| Activity Metadata | Improving platform performance and ensuring site safety. |
MANDATORY DISCLOSURE: Hive Social does NOT sell student data to third parties, does NOT use data for marketing purposes, and does NOT utilize biometric identifiers.
3. Security
We use industry-standard encryption (SSL/TLS) for data in transit and at rest. Access to the administrative backend is strictly restricted to authorized school personnel and HIVE security engineers.
4. Supervised Educational Purpose Limitation
HIVE is committed to using student data solely to deliver and improve our educational and school-sponsored platform. We explicitly guarantee the following:
- We do NOT sell, lease, or rent student personal data to third parties under any circumstances.
- We do NOT use student data to profile, track, or serve behaviorally targeted advertising to students.
- We do NOT build marketing profiles of students for any non-educational purposes.
5. Parental Rights & Student Data Deletion
Under FERPA, parents and legal guardians have the right to review, request corrections to, or request the permanent deletion of their student's personally identifiable information (PII) stored within HIVE.
Since HIVE operates as a "School Official" under the direct control of your school district, all parental access or deletion requests must be initiated through the school district's administration. HIVE will coordinate directly with school administrators and fully process any data deletion request within **30 days** of receiving confirmation from the district.
6. Security Incident & Data Breach Response Plan
HIVE maintains a comprehensive, written Security Incident and Data Breach Response Plan. In the event of a confirmed security incident resulting in unauthorized access, alteration, or disclosure of student records, HIVE will:
- Notify the affected school district's IT or administrative contacts immediately, and no later than **72 hours** after confirmation of the breach.
- Provide detailed information regarding the nature of the breach, the affected data fields, and the mitigation steps being taken.
- Collaborate fully with the school district to meet all state and federal notification requirements.
7. Data Retention & Contract Termination
Student data is retained only for the duration of the school or district's active service agreement with HIVE, or as required by applicable laws.
Upon contract termination, expiration, or upon receipt of a written request from the school district, HIVE will permanently and securely delete or anonymize all student data within **90 days** and provide a written certification of destruction to the district.
Contact Our Privacy Team
If you are a parent or administrator with questions regarding our data practices, please contact us at:
bwellsean@gmail.com
Subject: Student Data Privacy Inquiry