Security & Trust

We built The Little Learning Grove with the security expectations of schools and districts in mind. Here's how we protect your data.

How We Protect Your Data

Encryption Everywhere

All data encrypted in transit (TLS/HTTPS). Data at rest encrypted with AES-256 by our database provider.

Row-Level Security

Every teacher’s data is isolated at the database level. You can only access your own lessons, templates, and sessions.

No Student Data

We handle curriculum and lesson plans only. Teachers never input student names, grades, or personally identifiable information.

Secure Infrastructure

Data hosted on Supabase (AWS infrastructure) with compute on Railway. Both maintain SOC 2 compliance.

Authentication

Passwords hashed with bcrypt. Sessions use signed JWT tokens with short expiration windows.

Data Ownership & Deletion

Your data belongs to you. Delete your account and all associated data at any time — no retention, no lock-in.

AI & Your Content

How We Use AI Responsibly

Lesson text is generated by Google Gemini and images by OpenAI DALL-E. Per each provider's terms, your content is not used to train their models. Generated lessons, images, and PDFs belong to you.

Questions?

If you're a district administrator evaluating The Little Learning Grove or have security questions, we'd love to hear from you.

Get in Touch