Privacy Policy

The Applied AI Ethics Project ("we," "our," or "us") is committed to protecting your privacy. This policy describes how we collect, use, disclose, retain, and safeguard information when you use the platform.

Information We Collect

We collect information you provide directly to us, including your email address when you join our waitlist or create an account, profile details you choose to provide, membership and billing status, organization or cohort participation, support messages, and preferences you save in the platform. We may also collect limited technical and usage information needed to operate, secure, debug, and improve the platform.

If you complete the Discovery Assessment, we collect your assessment status, consent timestamp, selected options, authored scenario identifiers, dimension impact data, framework alignment data, generated individual report content, and account-linked export or deletion-request timestamps.

If you complete interactive course activities, we collect saved scenario choices, calibration checklist selections, reflection responses, capstone responses, lesson identifiers, block identifiers, section indexes, and related timestamps so your learning work can be restored when you return.

If you participate through an organizational cohort, your organization administrators can see cohort membership and completion status. They do not receive your individual answers, dimension scores, framework scores, or individual report. Organizational reports and AI policy drafts use anonymized aggregate cohort data.

Payment processing is handled by our payment provider. We do not intentionally store full payment card numbers on our servers. Billing records, plan status, and transaction metadata may be used to provide paid access, manage subscriptions, and resolve account issues.

How We Use Your Information

We use the information we collect to operate and improve the platform, communicate with you about your account and platform updates, and send newsletters and educational content you have requested.

Course response data is used to preserve your learning history and support future reflective learning features. Assessment data is used to compute your Discovery Report, Personal AI Principles when available to your tier, cohort-level aggregate reports, governance risk findings, and draft AI policy artifacts for authorized organization administrators. Scores are interpretive indicators, not legal, clinical, employment, or professional certification judgments.

We may use account, course, assessment, cohort, and technical data to maintain security, prevent abuse, enforce Terms of Service restrictions, troubleshoot errors, improve platform quality, and protect the integrity of proprietary course, assessment, report, and policy-generation materials.

How We Share Information

We do not sell your personal information. We share information with service providers only as needed to operate the platform, including hosting, authentication, database, payment, email, analytics, customer support, security, and AI provider services. These providers are permitted to process information for the services they provide to us.

Organization administrators receive cohort membership and completion information and may receive anonymized aggregate reports and policy drafts derived from cohort-level data. They do not receive individual assessment answers, dimension scores, framework scores, or individual reports through the organizational reporting features.

We may disclose information if required by law, subpoena, court order, legal process, or to protect rights, safety, security, platform integrity, intellectual property, or users. We may also transfer information as part of a merger, acquisition, financing, or sale of assets, subject to appropriate continuity of privacy protections.

AI Providers

Some report and policy features may send structured assessment or aggregate cohort inputs to a configured large language model provider to generate narrative text. We use API settings intended for business use, and provider training on API inputs is not enabled for these requests. We do not intentionally log prompts, assessment answers, or generated report or policy content in production logs.

AI-generated outputs may be inaccurate, incomplete, or unsuitable for a particular legal, organizational, or regulatory context. Generated reports, principles, risk findings, and policy drafts are governance-support materials and should be reviewed by qualified human reviewers before use.

Security and Retention

We use administrative, technical, and organizational safeguards intended to protect account data, assessment data, generated reports, and proprietary platform materials. No internet service can be guaranteed to be completely secure, and you are responsible for keeping your account credentials confidential.

We retain information for as long as needed to provide the platform, maintain account history, support exports and deletion workflows, comply with legal obligations, resolve disputes, enforce agreements, protect intellectual property, and preserve security and audit records.

Export and Deletion

Account settings include a JSON export of your non-deleted saved course responses, Discovery Assessment records, saved assessment decisions, and individual report data. You may request deletion of saved course response and assessment data from account settings; the application records the request timestamp while the delayed hard-delete and affected aggregate recalculation process is completed.

Some information may be retained where necessary for security, fraud prevention, accounting, legal compliance, dispute resolution, backup integrity, anonymized aggregate reporting, or enforcement of the Terms of Service. Deleting individual assessment data may not remove previously generated anonymized aggregate cohort artifacts that no longer identify an individual user.

Generated Policy Limits

Generated policy drafts are governance artifacts derived from aggregate assessment data, risk findings, selected frameworks, and organization context supplied by administrators. They are not legal advice, compliance certification, or a substitute for review by counsel, leadership, and affected stakeholders.

Your Choices

You may update certain account information in account settings, use available export and deletion request tools, unsubscribe from optional marketing communications where available, and contact us with privacy questions. Some transactional or account-related communications may still be necessary to provide the service.

Children

The platform is intended for adults and professional or higher-education contexts. It is not directed to children under 13, and we do not knowingly collect personal information from children under 13.

Changes to This Policy

We may update this policy from time to time. Material changes will be reflected by the updated date below and, where appropriate, through additional notice in the platform or by email.

Contact

If you have questions about this policy, please contact us at the email address associated with your account.

Last updated: May 14, 2026