Version: 1.0

Effective Date: 2025-08-01

Last Updated: 2025-08-08

Document Owner: Chief Technology Officer

1. Overview and Scope

This Data Security Policy outlines ClaireLabs commitment to protecting the confidentiality, integrity, and availability of educational data processed through our AI-powered grading and feedback platform. This policy applies to all data processed, stored, or transmitted by Claire AI systems and covers all personnel with access to such data.

2. Data Classification and Types

2.1 Data Categories Processed

Claire AI processes the following categories of data:

• Student Academic Content: Assignment submissions (PDFs, documents, text)
• Academic Performance Data: Assessment scores (grades)
• Behavioral Analytics: Usage patterns and engagement metrics (anonymized)
• System Identifiers: Student IDs for assignment mapping purposes
• User Authentication Data: Managed exclusively by Auth0 (no local storage)

2.2 Data Sensitivity Classification

• High Sensitivity: Student assignments, grades, and any personally identifiable information
• Medium Sensitivity: Aggregated analytics and system performance data
• Low Sensitivity: System logs and metadata (anonymized)

3. Data Storage and Infrastructure Security

3.1 Cloud Infrastructure