Customer Privacy Policy

Last Modified: December 17, 2025 | Update History

Most recent update: This Privacy Policy has been updated to address additional rights for individuals in the European Union/UK.

We advise you to read this Privacy Policy in its entirety, including the jurisdiction-specific provisions in the appendix. Click here to review Our U.S. Notice At Collection.

Customer Privacy Policy: K–12 Schools

Who We Are

Amplify Education, Inc. (“Amplify”) is leading the way in next-generation curriculum and assessment. Amplify’s programs provide teachers with powerful tools that help them understand and respond to the needs of each student and use data in a way that is safe, secure, and effective.

Our Products and Services

Amplify’s products support classroom instruction and learning and include Amplify CKLA, Amplify ELA, Amplify Caminos, Amplify Science, Amplify Desmos Math, Boost Reading, Boost Math, mCLASS, Mathigon, associated professional development and tutoring services, and services at classroom.amplify.com (for creating and assigning activities) and student.amplify.com (for use of the activities or curricula as directed by an instructor), and any other product or service that links to this Privacy Policy (together, the “Products”).

Our Approach to Student Data Privacy 

In the course of providing the Products to Schools and their Authorized School Users, Amplify collects, receives, generates, or has access to Student Data (defined below). We consider Student Data to be confidential and we collect and use Student Data solely for educational purposes in connection with providing our Products to, or on behalf of the School as described in this Privacy Policy and our Agreements (defined below). We work to maintain the security and confidentiality of Student Data that we collect or store, and we enable Schools to control the use, access, sharing, and retention of Student Data.

Our Products are geared towards K–12 students (“Students”), and the educators, agents and staff members who use the Products as authorized by their School (“Educators”). Information that directly relates to an identifiable Student (“Student Data”) is owned and controlled by the School, and Amplify receives Student Data as a “school official” under Section 99.31 of the Family Educational Rights and Privacy Act of 1974 (“FERPA”) for the purpose of providing the Products hereunder. In addition, we rely on the School acknowledging that it is acting as the parent’s agent and consenting on the parent’s behalf to process personal information of Students under the age of 13 (“Child Users”) in accordance with the Children’s Online Privacy Protection Act (“COPPA”).

Our collection and use of Student Data is governed by our Agreements with Schools, including this Privacy Policy (“Privacy Policy”), and applicable laws which may include FERPA, COPPA, the Protection of Pupil Rights Amendment (“PPRA”), as well as other applicable federal, state, and local privacy laws and regulations (“Applicable Laws”). As noted above, with respect to FERPA, Amplify receives Student Data as a “school official” under Section 99.31 of FERPA for the purpose of providing its Products, and such Student Data is owned and controlled by the School.

Schools may provide authorization in two ways:

  1. by the School agreeing to our Customer Terms and Conditions located at amplify.com/customer-terms or another written agreement between Amplify and the School, as applicable; or
  2. by an Educator agreeing to the Acceptable Use Policy located at amplify.com/acceptable-use-policy/ (“AUP”) on behalf of the School as outlined in the AUP.

In each case, we collect Student Data and provide these Products solely for the use and benefit of the School and for no other commercial purpose. We require all Schools to review this Privacy Policy, available at amplify.com/customer-privacy, and to make a copy of the Privacy Policy available to the parents or guardians of Child Users.

We also provide limited opportunities for individual users to sign up for an account for use of our Products at-home or otherwise outside of the authorization of a School (“Home Users”). See the Appendix–Supplemental Disclosures for additional information that applies to our Home Users.

What This Privacy Policy Covers 

This Customer Privacy Policy (“Privacy Policy”) describes how Amplify collects, uses, and discloses personal information through the provision of Products.

For purposes of this Privacy Policy, “you” and “your” means Authorized Users (defined below).

This Privacy Policy does not apply to Amplify’s handling of:

  • information collected from users of Amplify’s company website, which is governed by our Website Privacy Policy.
  • job applicant data that we process in accordance with our applicant privacy notice.

There may be different contractual terms or privacy policies in place with some Schools. Such other terms or policies supersede this Privacy Policy for information collected or released under those terms. If you have any questions as to which legal agreement or privacy policy controls the collection and use of your personal information, please contact us using the information provided below. Unless expressly superseded, this Privacy Policy is incorporated into and is subject to the Agreement that governs your use of the Products.

Our Role

Amplify as a processor/service provider: Our School customers are the controllers of Student Data (as well as certain other Educator personal information to the extent required by law or Amplify’s agreement with the School) (together “School Data”).

Amplify acts as a processor/service provider for our School customers with respect to School Data, which means when we use School Data, we do so solely on the instruction of the School. School Data is subject to the School’s privacy policies; therefore, you will need to contact the School directly if you have any questions or would like to exercise your rights with respect to School Data.

Amplify as a controller: We are the controller of all other personal information we collect from non-Student Authorized Users (“Amplify Data”) and can be reached by email at privacy@amplify.com or by mail at Amplify Education, Inc., 55 Washington St.#800, Brooklyn, NY, 11201.

Policy

1. Definitions

Capitalized terms not defined in this section or elsewhere in this Privacy Policy will have the meaning set forth by Applicable Laws.

Agreement” means the underlying contractual agreement between Amplify and the School.

Authorized Users” means all users of our Products, including Authorized School Users, parents and legal guardians, and Home Users.

Authorized School Users” means Students and Educators.

Local Education Authority” means a local education agency or authority, school district, school network, independent school, or other regional education system.

Non-Student Data” means information that is linked or linkable to Authorized Users who are not Students.

School” means the Local Education Authority or State Agency.

State Agency” means the educational agency primarily responsible for the supervision of public elementary and secondary schools in any of the 50 states, the Commonwealth of Puerto Rico, the District of Columbia, or other territories and possessions of the United States, as well as a national or regional ministry or department of education in other countries, as applicable.

2. What personal information do we collect?

When you access or use our Products, you may choose to provide us with personal information, including Student Data. This information may be provided to us directly (e.g. when an account is created or through communications with us) or through your interactions with our Products.

Student Data. Below is a list of the categories of Student Data that may be collected by Amplify or its Products, either directly or through the Authorized School User’s use of the various features and configurations of the Products:

  • Identifier and Enrollment Data, such as name, email, school / state ID number, username and password, grade level, homeroom, courses, teacher names.
    • Why? Most of Amplify’s Products require some basic information about who is in a classroom and who teaches the class—Student or teacher Identifier and Enrollment data. This information is provided to Amplify by the School, either directly from the School’s student information system or via a third party with whom the School contracts to provide that information.
  • Demographic Data, such as date of birth, socioeconomic status, race, national origin, and preferred or primary language.
    • Why? To support school instructional and reporting requirements, Amplify’s Products allow Schools to view reports and analyze data using Demographic Data. Generally, Demographic Data is provided on a voluntary basis by the School. For example, a School may wish to analyze Student literacy assessment results based on English Language Learner status to better tailor classroom instruction, and in that case, the School may provide Demographic Data to enable that reporting.
  • School Records, such as grades, attendance, assessment results, and whether an Individualized Education Plan (IEP or local equivalent) is in place.
    • Why? Some of our Products support grading assignments and administering formative, diagnostic, and curriculum-based assessments. Teachers use that information to support Students’ progress in the program or help with instructional decisions. We do not collect specific details from an IEP, nor do we collect protected health information or other sensitive information.
  • Schoolwork and Student Generated Content, which includes any information contained in Student assignments and assessments, including information in response to instructional activities and participation in collaborative or interactive features of our Products, such as Student responses to academic questions and Student-written essays, as well as images, video, and audio recordings.
    • Why? As part of the digital learning experience, some of our Products may enable Students to write text and create and upload images, video, and audio recordings. For example, in Amplify ELA, students may write essays or submit short-form responses in our platform as part of a lesson on literature. As another example, in Boost Reading, student interactions with reading skills games are recorded to keep track of the student’s progress to level up in the program and to provide visibility to teachers on how students are mastering the skills.
  • Teacher Comments and Feedback, such as scores, written comments, or other feedback that Educators may provide about Student responses or student course performance.
    • Why? To enable teachers to track the performance and provide feedback to their students.
  • Non-Student Data. We may collect the following types of personal information from all other Authorized Users:
    • Contact Information, such as name and email address, as well as grade level taught, school name and school location, whether you are an Educator or Home User that creates an account or uses our Products or communicates with us.
    • Account Information, such as user login and password, for account creation and access purposes.
    • Survey Responses, which you provide in response to surveys or questionnaires.
  • Device and Usage Data. Depending on the Product, we may collect certain information about the device used to connect to our Product, such as device type and model, browser configurations, and persistent identifiers, such as IP addresses and unique device identifiers. We may collect device diagnostic information, such as battery level, usage logs, and error logs, as well as usage, viewing, and technical information (e.g., email open rates), such as the number of requests a device makes, to ensure proper system capacity for all Authorized Users. We may collect IP addresses and use that information to approximate device location to support operation of the Product. To the extent that we collect this information, this data is solely used to support operation of the Product and is not linked to Student Data. For purposes of clarity, Amplify does not use Student Data for marketing or advertising purposes (see section 6 of this Privacy Policy for more information about our commitments regarding Student Data).
    • Why? We use this information to remember returning users and facilitate ease of login, to customize the function and appearance of the Products, and to improve the learning experience. This information also helps us track product usage for various purposes, including website optimization, to ensure proper system capacity, troubleshoot and fix errors, provide technical assistance and customer support, provide and monitor the effectiveness of our Products, monitor and address security concerns, and compile analytics for product improvement and other internal purposes.
    • How? Cookies and Similar Technologies. We collect device and usage data through “cookies,” Web beacons, HTML5 local storage, and other similar technologies, which are used in some of our Products solely to support operation of the Products as described above. While we may use third party cookies and similar technologies for advertising and marketing purposes on our website (in accordance with our Website Privacy Policy), we do not permit such tracking technologies to be present on Student-facing portions of the Products. In particular, we only use the following types of cookies in our Products:
      • Strictly necessary cookies – These are cookies that are required for the operation of our websites and applications that host our Products. They include, for example, cookies that enable you to log into secure areas of our Products. These cookies are not generally stored beyond the browser session and are less likely to include personal information. This category of cookies cannot be disabled.
      • Functionality Cookies – We use these cookies so that we recognize you on the websites and apps that host our Products and remember your previously selected preferences. These cookies are stored on your device between browsing sessions but expire after a pre-defined period. These cookies enable us to “recognize” you when you use our Products, including your preferences such as your preferred language, time, and location. A mix of first party (placed by us) and third-party cookies (placed by third parties) are used.
      • Performance Cookies – These cookies help us and service providers acting on our behalf compile statistics and analytics about users of our Products that are accessed via websites and apps, including Device and Usage Information.
    • Learn how to opt out of cookies and similar technologies by reading the “What Rights and Choices Do You Have?” section of this Privacy Policy below.

3. How do we use personal information?

Student Data. Amplify uses Student Data for educational purposes, to provide the Products, and to ensure secure and effective operation of our Products, including:

  • to provide and improve our educational Products;
  • to support School and Authorized School Users’ activities;
  • to ensure secure and effective operation of our Products;
  • for purposes requested or authorized by the School or Authorized School User or as otherwise permitted by Applicable Laws;
  • for customer support purposes, to respond to the inquiries and fulfill the requests of the School and their Authorized School Users;
  • to enforce Product access and security controls; and
  • to conduct system audits and improve protections against the misuse of our Products, or to detect and prevent fraud and other harmful activities.
  • to enable the adaptive and personalized learning features of the Products.

Non-Student Data. Amplify may use Non-Student Data for the purposes for which Student Data is used as set forth above. In addition, Amplify may use Non-Student Data to provide customized content, advertising and marketing in limited circumstances (e.g. to periodically send newsletters and other promotional materials) directed to Educators and Home Users. For sake of clarity, we do not use Student Data for marketing purposes and we do not direct marketing to Students. Amplify may also use Non-Student Data for internal research and analytics, including generating insights on the use of our Products by Educators in certain Schools so that we can better serve those communities. We will also use Non-Student Data as otherwise required or permitted by law, or as we may notify you at the time of collection. Learn how to opt out of these communications by reading the “What Rights and Choices Do You Have?” section of this Privacy Policy below.

Amplify may use aggregate or de-identified data as described in the Aggregate/De-identified Data section below.

4. To whom do we disclose personal information?

Student Data. We disclose Student Data to third parties only as needed to provide the Products under the Agreement, as directed or permitted by the School or Authorized School User, and as required by law. Such disclosures may include but are not limited to the following:

  • to other Authorized School Users of the School entitled to access such data in connection with the Products;
  • to our service providers, subprocessors, or vendors who have a legitimate need to access such data in order to assist us in providing or supporting our Products, such as platform, infrastructure, and application software. We contractually bind such parties to protect Student Data in a manner consistent with those practices set forth in this Privacy Policy and in accordance with Applicable Laws. A list of Amplify subprocessors is available at https://www.amplify.com/subprocessors;
  • to comply with the law, respond to requests in legal or government enforcement proceedings (such as complying with a subpoena), protect our rights in a legal dispute, or seek assistance of law enforcement in the event of a threat to our rights, security, or property or that of our affiliates, customers, Authorized Users, or others;
  • in the event Amplify or all or part of its assets are acquired or transferred to another party, including in connection with any bankruptcy or similar proceedings, provided that successor entity will be required to comply with the privacy protections in this Privacy Policy with respect to information collected under this Privacy Policy, or we will provide the School with notice and an opportunity to opt out of the transfer of such data prior to the transfer; and
  • except as restricted by Applicable Laws or contracts with the School, we may also share Student Data with Amplify’s affiliated education companies, provided that such disclosure is solely for the purposes of providing Products and at all times is subject to this Policy.

Non-Student Data. Amplify discloses Non-Student Data for the purposes for which Student Data is used as set forth above. Amplify may also disclose Non-Student Data as otherwise required or permitted, or as disclosed at the time of collection.

5. Aggregate/De-identified data

Amplify may use de-identified or aggregate data for purposes allowed under FERPA and other Applicable Laws, to research, develop, and improve educational sites, services, and applications and to demonstrate the effectiveness of the Amplify Products. Amplify will not attempt to re-identify de-identified data. We may use aggregate information (which is information that has been collected in summary form such that the data cannot be associated with any individual) for analytics and reports. For example, our promotional materials may note the total number of students served by our programs in the prior year, but that information cannot be used to identify any one student. We may also share de-identified or aggregate data with research partners to help us analyze the information for product improvement and development purposes.

Records and information are de-identified when all personal information has been removed or obscured, such that the remaining information does not reasonably identify a specific individual. We de-identify Student Data in compliance with Applicable Laws and in accordance with the guidelines of NIST SP 800-122. Amplify has implemented internal procedures and controls to protect against the re-identification of de-identified Student Data. Amplify does not disclose de-identified data to its research partners unless that party has agreed in writing not to attempt to re-identify such data.

6. Data prohibitions, Advertising, Advertising limitations

Amplify will not:

  • sell Student Data to third parties;
  • use or disclose Student Data to inform, influence, or enable targeted advertising to a Student based on Student Data or information or data inferred over time from the Student’s usage of the Products;
  • use Student Data to develop a profile of a Student for any purpose other than providing the Products to a School or Authorized School User, or as authorized by a parent or legal guardian;
  • use Student Data for any commercial purpose other than to provide the Products to the School or Authorized School User, or as permitted by Applicable Laws.

7. External third-party services

This Privacy Policy applies solely to Amplify’s Products and practices. Schools and other Authorized Users may choose to connect or use our Products in conjunction with third-party services and Products. Additionally, our sites and Products may contain links to third-party websites or services . This Privacy Policy does not address, and Amplify is not responsible for, the privacy, information, or other practices of such third parties. Schools should carefully consider which third-party applications to include among the Products and services they provide to Students and vet the privacy and data security standards of those providers.

Authorized Users may be able to log in to our Products using third-party sign-in services such as Clever, ClassLink or Google. These services authenticate your identity and provide you with the option to share certain personal information with us, including your name and email address, to pre-populate our account sign-up form. If you choose to enable a third party to share your third-party account credentials with Amplify, we may obtain personal information via that mechanism. You may configure your accounts on these third-party platform services to control what information they share.

8. Security

Amplify maintains a comprehensive information security program and uses industry standard administrative, technical, operational, and physical measures to safeguard Student Data in its possession against loss, theft and unauthorized use, disclosure, or modification. Amplify performs periodic risk assessments of its information security program and prioritizes the remediation of identified security vulnerabilities. Please see https://amplify.com/security for a detailed description of Amplify’s security program.

In the event Amplify discovers or is notified that Student Data within our possession or control was disclosed to, or acquired by, an unauthorized party, we will investigate the incident, take steps to mitigate the potential impact, and notify the School in accordance with Applicable Laws.

Non-Student Data

Outside of Student Data, Amplify uses commercially reasonable administrative, technical, personnel, and physical measures to safeguard personal information in its possession against loss, theft, and unauthorized use, disclosure or modification.

9. Data Storage and Transfers

We are a United States Company, and our servers are hosted, managed, and controlled by us in the United States. If you are outside of the United States, we use industry standards to protect your data when it leaves your country of residence and your data will always be protected in accordance with this Privacy Policy, Applicable Laws and our Agreement regardless of the storage location.

Additionally, where we transfer your personal information to service providers outside of the United Kingdom (UK), European Economic Area (EEA), or other region that offers similar protections, we use specific appropriate safeguards to contractually obligate such service providers to protect personal information in accordance with Amplify’s commitment to privacy and security and applicable data protection laws.

If you have questions or wish to obtain more information about the international transfer of your personal information or the implemented safeguards, please contact us using the contact information below.

10. Data Retention / Deletion

Student Data

Upon request, we provide the School the opportunity to review and delete the personal information collected from Students. We will retain Student Data for the period necessary to fulfill the purposes outlined in this Privacy Policy and our Agreement with the School. We do not knowingly retain Student Data beyond the time period required to support the School or Authorized School User’s educational purpose, unless authorized by the School or Authorized School User. Upon request, Amplify will return, delete, or destroy Student Data stored by Amplify in accordance with applicable law and customer requirements. We may not be able to delete all data in all circumstances, such as information retained in technical support records, customer service records, back-ups, and similar business records. All such information will be protected in accordance with this Privacy Policy and our Agreement until it has been permanently deleted. Unless otherwise notified by the School, we will delete or de-identify Student Data after termination of our Agreement with the School.

Non-Student Data

Outside of Student Data, we keep personal information as long as it is necessary or relevant for the practices described in this Privacy Policy or as otherwise required by our Agreement with the School, if applicable. We determine the appropriate retention period for personal information on the basis of the amount, nature and sensitivity of the personal information being processed, the potential risk of harm from unauthorized use or disclosure of the personal information, whether we can achieve the purposes of the processing through other means, and on the basis of applicable legal requirements (such as applicable statutes of limitations).

11. What rights and choices do you have?

What Choices Do You Have?

Marketing/Advertising

As noted above, we do not use Student Data for marketing purposes and we do not direct marketing to Students. Amplify does not use third party cookies and similar technologies for advertising and marketing purposes on Student-facing portions of the Products. The choices below apply to Non-Student Authorized Users.

Opt-out of Marketing Communications. If you want to stop receiving promotional materials from Amplify, you can follow the unsubscribe instructions at the bottom of each email or email us at privacy@amplify.com. Amplify does not send marketing communications to Students.

Opt-out of Cookies and Similar Tracking Technologies. With respect to cookies, you may be able to reject cookies through your browser or device controls. Note that you have to opt-out of cookies on each browser or device that you use. If you replace, change, or upgrade your browser or device, or delete your cookies, you may need to use these opt-out tools again. Please be aware that disabling cookies may negatively impact your experience as some features may not work properly. To learn more about browser cookies, including how to manage or delete them, check the “Help,” “Tools,” or similar section of your browser.

What Rights Do You Have?

Individuals in the U.S.

  • What Rights Do You Have With Respect to Student Data?
    • Review and Correction. FERPA requires schools to provide parents with access to their children’s education records, and parents may request that the school correct records that they believe to be inaccurate or misleading.
    • If you are a parent or guardian and would like to review, correct, or update your child’s data stored in our Products, contact your School. Amplify will work with your School to enable your access to and, if applicable, correction of your child’s education records.
    • If you have any questions about whom to contact or other questions about your child’s data, you may contact us using the information provided below.
    • Other Privacy Rights? Please see section 3 of our supplemental disclosures: “Additional U.S. State Privacy Law Rights” for more information about your U.S. privacy rights

Individuals in the EU/UK

Please see section 4 of our supplemental disclosures: “Notice for European Economic Area and United Kingdom Customers” for more information about your EU/UK privacy rights.

12. COPPA

We do not knowingly collect personal information from a Child User unless and until a School or Educator, with the permission of the School, has authorized us to collect such information to provide the Products. Amplify relies on the School acknowledging that it is acting as the parent’s agent and consenting on the parent’s behalf to process personal information of Child Users in accordance with all applicable provisions of COPPA. To the extent COPPA applies to the information we collect, we process such information for educational purposes only, and no other commercial purpose, at the direction of the School and on the basis of the School’s authorization. If you are a parent or guardian and have questions about your child’s use of the Products and any personal information collected, please direct these questions to your child’s school.

Please refer to the Appendix–Supplemental Disclosures if you are a Home User.

13. Updates to this Privacy Policy

We may change this Privacy Policy in the future. For example, we may update it to comply with new laws or regulations, to conform to industry best practices, or to reflect changes in our product offerings. When these changes do not reflect material changes in our practices with respect to use and/or disclosure of Authorized Users’ personal information, including Student Data, such changes to the Privacy Policy will become effective when we post the revised Privacy Policy on our website. In the event there are material changes in our practices that would result in Authorized Users’ personal information being used in a materially different manner than was disclosed when the information was collected, with respect to Student Data, we will notify the School, and with respect to other information, we will notify you via email and provide an opportunity to opt out before such changes take effect.

14. Contact us

If you have questions about this Privacy Policy, please contact us at:

Email: privacy@amplify.com
Mail: Amplify Education, Inc.
55 Washington St.#800
Brooklyn, NY, 11201
Phone: (800) 823-1969
Attn: General Counsel

To report a security vulnerability, visit https://amplify.com/report-a-vulnerability/.

Appendix – Supplemental Disclosures

1. Mathigon and Amplify Classroom accounts

While our Products are geared towards Schools we do provide a limited opportunity for Home Users to use the Products at home—outside of the school context. We do not allow persons under the age of 13 (or those under the age of consent in any applicable jurisdiction) to register for an account with us outside the school context.

If you are a Home User, you are prohibited from collecting or providing any personal information from students or minors. You are permitted to access the platform for instructional purposes, but you may not enroll or roster minors, create accounts for minors, or input any personal information of minors into the Product.

Please note that most parts of Mathigon can be used without creating an account or providing any personal information that directly identifies you.

What Rights Do You Have? If you are a Child User who is 13 or older with a legacy Mathigon account (or the parent or guardian of a Child User with a legacy Mathigon account), you may request that we provide for your review, delete from our records, or cease collecting any Child User personal information. To the extent that you are unable to exercise these rights through self-service features within your account with us, please contact us by sending an email to: help@amplify.com and we will provide assistance.

2. U.S. Notice at Collection

Personal Information We Collect How We Use Personal Information

Student Data, which includes:

  • Roster Information
  • Demographic Data, such as race and national origin
  • School Records
  • Account Information
  • Schoolwork and Student Generated Content
  • Teacher Comments and Feedback
  • Device and Usage Data
  • To provide and improve our educational Products;
  • To support Schools’ and Authorized School Users’ activities;
  • To ensure secure and effective operation of our Products;
  • For purposes requested or authorized by the School or Authorized School Users, or as otherwise permitted by Applicable Laws;
  • For adaptive or personalized learning features of the Products; provided that Student Data is not disclosed;
  • For customer support purposes, to respond to the inquiries and fulfill the requests of the School and their Authorized School Users;
  • To enforce product access and security controls; and
  • To conduct system audits and improve protections against the misuse of our Products, or to detect and prevent fraud and other harmful activities.

Authorized Users, which includes:

  • Contact Information
  • Account Information
  • Survey Responses
  • Device and Usage Data
  • For the purposes for which Student Data is used as set forth above;
  • For marketing purposes in limited circumstances (e.g. to periodically send newsletters and other promotional materials), which will not be based on Student Data or directed to K–12 students;
  • For internal research and analytics; and
  • As otherwise required or permitted, or as we may notify you at the time of collection.

Some of the information described above may be considered “sensitive” under the laws of certain jurisdictions (i.e., account credentials and race/national origin) (“Sensitive Information”). We use Sensitive Information for necessary or reasonably expected purposes – specifically, to provide you with our Services (i.e., account credentials are used to allow account logins and race/national origin are used for the School’s reporting purposes when voluntarily provided by the School).

We do not sell or share your personal information, as described in California law.

We retain your personal information for as long as reasonably necessary for the purposes disclosed in the chart above. Additional information about our retention of Student Data and personal information from other Authorized Users can be found in Section 10 of this Privacy Policy.

Please see the Additional U.S. State Privacy Law Rights section of this appendix for information about your privacy rights pursuant to applicable U.S. law.

Notice of Financial Incentive

From time to time, to support our services, we offer opportunities to complete surveys and questionnaires. As an incentive for completing the survey or questionnaire, you can voluntarily provide personal information as an entry into a raffle drawing or to obtain other benefits, discounts, offers, or deals that may constitute a financial incentive under California law (“Financial Incentive”). The categories of personal information required for us to provide the Financial Incentives include: contact information and any other information that you choose to provide when you complete the survey.

Participation is voluntary and you can opt out at any time before the survey is complete. We do not allow students to participate in our surveys.

The value of the personal information we collect in connection with our Financial Incentives is equivalent to the value of the benefit offered.

3. Additional U.S. State Privacy Law Rights

Note for Requests Relating to Student Data: Because Amplify provides the Products to Schools as a “School Official,” we collect, retain, use, and disclose Student Data only for or on behalf of the School for educational purposes, including the purpose of providing the Products specified in our Agreement with the School and for no other commercial purpose. Accordingly, we act as a “service provider” for the School with respect to School Data. We work with the School to support and assist them in addressing privacy requests relating to School Data. Please reach out to your School directly if you wish to exercise any privacy rights that may be available to you.

For all other requests: With respect to Amplify Data, individuals residing in certain U.S. states have the following rights, regarding your personal information (each of which is subject to various exceptions and limitations):

  • Access. You have the right to request, up to two times every 12 months, that we disclose to you the categories of personal information collected about you; the categories of sources from which the personal information is collected; the categories of personal information sold or shared; the business or commercial purpose for collecting, selling, or sharing the personal information; the categories of third parties with whom personal information was shared; and the specific pieces of personal information collected about you.
  • Correction. You have the right to request that we correct inaccurate personal information collected from you.
  • Deletion. You have the right to request that we delete the personal information that we maintain about you. Even after the deletion of your account, some personal information may remain on our servers, such as in technical support logs, server caches, data backups, or email conversations. These will be automatically deleted after a reasonable amount of time, unless we are legally required to retain information for longer, or unless there is a legitimate business reason (e.g. security and fraud prevention or financial record-keeping). We are not required to delete any information which has been aggregated or de-identified in accordance with Section 5.
  • No Discrimination. You have the right not to be discriminated against for exercising these rights.
  • Appeals. You have a right to appeal decisions concerning your ability to exercise your consumer rights.

See Submitting Requests section below for details on submitting a request to exercise these rights.

4. Notice for European Economic Area (EEA) and United Kingdom (UK) Customers

As detailed at the beginning of our Privacy Policy (under the section titled “Our Role”), Amplify operates primarily as a processor that collects personal information on behalf of the School, and we act as a controller in limited circumstances where we offer Products outside the school context.

If you represent a School in the EEA or the UK, please note that we process personal information in accordance with this Privacy Policy, our Acceptable Use Policy, and our standard Data Protection Agreement, which sets out our responsibilities when it comes to our processing activities. Schools must send an email to privacy@amplify.com to enter into that DPA.

Lawful Basis for Processing

We rely on the following lawful bases for our processing activities:

  • Consent;
    • We obtain your consent to use cookies to collect and process device and usage data to understand how individuals use our Products.
  • Pursuant to a contract for use of our Products;
    • We process School Data to provide our Products (e.g., to create, authenticate and manage your account, to verify your identity, to manage our Products) pursuant to the Agreement between us and the School, as required in order for us to perform our obligations.
  • To comply with our legal obligations;
    • We process all categories of personal information that we collect to ensure the safety and security of our Products where we are complying with security requirements under data protection and cyber and information security law.
    • We process all categories of personal information that we collect to comply with our legal obligations which includes, for example, to access, retain or share certain personal information where we receive a valid request from a government body, law enforcement body, judicial body regulator or similar, to deal with legal claims and prospective legal claims, and to ensure we are complying with applicable laws.
  • When we have a legitimate interest in doing so, which is not outweighed by the risks to the individual.
    • We process all categories of personal information that we collect to support the provision, effective management, and improvement of our Products where such activities are not strictly required under our contract. This is in our legitimate interests to ensure that we are providing the best possible service.
    • We process all categories of personal information that we collect to ensure the safety and security of our services where this is important but not required under the data protection law or cyber and information security laws. This is in our legitimate interests to ensure the security of our services and systems, to prevent threats, abuse or fraudulent or unlawful activity, to promote safety and security and to ensure our Products are used in accordance with our terms and conditions.
    • We process the contact information of Non-Student Authorized Users to manage our relationship, including to respond to queries or otherwise communicate with you in relation to our Products and the operation of our business where this is not strictly required under a contract with you. This is in our legitimate interests to communicate with and resolve queries from users of our Products and to ensure that we are providing the best possible service.

We process the contact information and survey data of Non-Student Authorized Users for internal research and marketing purposes in limited circumstances (e.g. to periodically send newsletters and other promotional materials), which will not be based on Student Data or directed to Students. This is in our legitimate interests to understand our customers and prospective customers, understand how our products and services are perceived in the market, to promote our products, and to grow and develop our business.

Your Data Subject Rights

Note for Requests Relating to School Data: Amplify acts as processor to its School customers with respect to all School Data. We work with our School customers to support and assist them in addressing privacy requests relating to School Data. Please reach out to your School directly if you wish to exercise any privacy rights that may be available to you.

For all other Requests With respect to Amplify Data, you have the following rights if you are in the EEA or UK, subject to certain exceptions:

  • Right of access: You have the right to ask us for confirmation on whether we are processing your personal information and access to that personal information.
  • Right to correction: You have the right to have your personal information corrected.
  • Right to erasure: You have the right to ask us to delete your personal information.
  • Right to withdraw consent: You have the right to withdraw consent that you have provided.
  • Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a supervisory authority.
  • Right to restriction of processing: You have the right to request the limiting of our processing under limited circumstances.
  • Right to data portability: You have the right to receive the personal information that you have provided to us, in a structured, commonly used, and machine-readable format, and you have the right to transmit that information to another controller, including to have it transmitted directly, where technically feasible.
  • Right to object: You have the right to object to our processing of your personal information

See Submitting Requests section below for details on submitting a request to exercise these rights.

5. Submitting Requests

To exercise any of the rights described in sections 2 and 3 of this appendix, email us at privacy@amplify.com and specify which privacy right you intend to exercise. We may require additional information from you to allow us to confirm your identity. The verification steps will vary depending on the sensitivity of the personal information and whether you have an account with us. Please note that your rights may not apply in all cases. For example, we may need to retain your personal information to comply with our legal obligations, resolve disputes, prevent fraud and enforce our agreements. We will inform you if we are not able to fully respond to your requests. You may designate an authorized agent to make a request on your behalf. When submitting the request, please ensure the authorized agent identifies himself/herself/itself as an authorized agent and can show written permission from you to represent you. We may contact you directly to confirm that you have authorized the agent to act on your behalf or confirm your identity.

Complaints

If you have any issues, you have the right to lodge a complaint with an EEA or UK supervisory authority. We would, however, appreciate the opportunity to address your concerns before you approach a data protection regulator and would welcome you directing an inquiry first to us. To do so, please contact us by email at privacy@amplify.com or by mail at Amplify Education, Inc., 55 Washington St.#800, Brooklyn, NY, 11201.

6. Google APIs

Amplify uses Google’s Application Programming Interface (API) Services to enable Authorized Users to log in to Amplify, import classes and rosters from Google Classroom, create assignments in Google Classroom, and copy, edit, and publish Amplify content using Google Slides. Amplify will use and transfer information received from Google’s API in accordance with Google API Service User Data Policy, including the Limited Use requirements.

Update History:

Update: 6/13/2025: This Policy has been updated to align with product updates and to provide additional context for authorized educational use of Amplify’s Products.

Update 6/27/2024: The Policy has been updated to include an explanation regarding Google APIs in the Appendix — Supplemental Disclosures section.

Update 6/30/2023: This Privacy Policy has been updated to address new state law data privacy requirements.