⭐️ Discover the Clayful difference, backed by proven research—learn about the impact of Clayful on student outcomes
Learn how we protect our community of students, educators, and families.
At Clayful, we prioritize the privacy and security of student data above all else, and we designed our product, processes, and practices to keep student safety at the forefront of our approach.
School districts and families partnering with Clayful can have complete confidence that their data is handled with the utmost care and integrity.
Clayful's practices fully support the requirements of FERPA.
Clayful is COPPA-compliant. Children under 13 must have guardian consent to chat with a Clayful Coach.
Identifiable student data is only accessible by supervisors & admins.
All data is collected and used for the purpose of supporting student safety.
Clayful never sells or rents your information to anyone, especially advertisers.
Chat data and identifiable data are stored in separate databases.
Learn how Clayful can support your students now.
Clayful requires staff data, student enrollment data, student demographic data, guardian contact information, and student home address information for safety purposes.
Clayful uses student data for the purpose of providing and improving its services and for sharing information in an emergency situation. Only Clayful supervisors & administrators have access to student data for the purposes of providing support in an emergency situation.
Clayful does not sell, license, or rent any student, educator, or guardian personal information. Clayful also does not engage in, inform, influence or enable advertising to students.
Data will be deleted upon user or guardian’s request, upon contract termination, or in the case of inactive accounts. Data is retained for the duration of the user’s use of the application and for a period of 90 days after the last interaction or as required by educational institutions’ policies and local regulations.
Clayful complies with the Children Online Protection Privacy Act (”COPPA”) and the Federal Education Rights and Privacy Act (”FERPA”), which allows a student’s school or legal guardian to access their data and request its deletion. Students are also free to choose to discontinue use of Clayful anytime and can delete their account at any point.
Yes. Student account information is password-protected for their privacy and security. We use Multi-Factor Authentication (MFA) and Two-Factor Authentication (2FA) for all users and company employees to provide an additional layer of protection against unauthorized access. Clayful also safeguards the security of information with physical, electronic, and managerial procedures, as well as using industry-standard SSL-encryption to enhance the security for data transmissions.
All data is encrypted via industry standard HTTPS/TLS (TLS 1.2 or higher) over public networks. Service Data is encrypted at rest in AWS using AES-256 key encryption.
Clayful data is stored securely by third-party service providers and all data is hosted on remote servers in the U.S. Clayful maintains HIPAA agreements with all data storage providers.
To request that your existing Clayful account be deleted, please follow the steps listed below:
For security reasons, we can’t delete an account for you unless you log into your account to request deletion. If you can’t remember your password, open the forgot your password page.
What happens after I request deletion?
It may take up to 10 business days to complete the deletion process once requested. During that time, you can continue to login and use Clayful. We'll let you know via email once your account has been deleted. If you decide to cancel your deletion request, you can do so by sending an email to help@clayfulhealth.com.
After your request is processed, your account will be deleted and you will no longer be able to login unless you sign up again.
Yes, Clayful carries Cyber Liability Insurance.
Yes; Clayful's practices fully support a school's FERPA requirements. Clayful is a “School Official” under FERPA.
Yes; Clayful is fully COPPA-compliant. Children under 13 must obtain parental consent before chatting with a Clayful coach. Schools and/or guardians consent to our collection, use, and disclosure of students’ information as described in this policy as required by COPPA.
Clayful operates as a pre-clinical service that does not provide health care services, and thus we are not bound by HIPAA regulations. However, we have chosen to adhere to HIPAA rules to ensure the highest level of data privacy for our users. The HIPAA “Privacy Rule” allows for the disclosure of protected health information (PHI) without patient consent in certain emergency or urgent situations. These provisions are designed to protect the health and safety of individuals or the public. In certain instances where we believe there might be a risk of imminent harm, Clayful will disclose certain information to protect individuals and ensure their safety.
