Privacy Policy

Account information: name, email address, password hash, profile image, organization role, and email verification status.

Authentication data: session tokens, IP address, user agent, and OAuth tokens when you sign in with Google.

Content you submit: documents, prompts, instructions, and feedback you provide to generate courses, podcasts, slides, videos, posters, mindmaps, certificates, and other learning artifacts.

Generated content: AI-produced text, audio, images, and video derived from your inputs and stored in your account.

Billing information: organization subscription tier, Stripe customer identifier, and usage records. Card details are processed by Stripe and never stored on our servers.

Technical data: error reports, performance metrics, and AI model usage traces required to operate the service.

Provide, maintain, and improve the JanaLearn platform and its features.

Generate the learning content you request using AI providers.

Authenticate users, manage organizations, and enforce permissions.

Process payments, manage subscriptions, and track usage against plan limits.

Send transactional emails (verification, password reset, billing notices).

Detect, prevent, and respond to abuse, fraud, and security incidents.

Comply with legal obligations.

We share data with the following processors strictly to operate the service:

Anthropic, OpenAI, OpenRouter — large language model inference for content generation.

OpenAI — text-to-speech synthesis.

HeyGen — AI avatar video rendering.

Black Forest Labs (FLUX), Unsplash, Pexels — image generation and stock imagery.

Presenton — slide deck rendering.

AWS S3 / Cloudflare R2 — object storage for generated assets.

Stripe — subscription billing and payments.

Resend — transactional email delivery.

Google — OAuth sign-in.

Langfuse — AI request tracing for cost and quality observability.

Sentry — error and performance monitoring.

Neon — managed PostgreSQL database hosting.

Content you submit may be sent to third-party AI providers for inference. We do not allow these providers to use your inputs to train their models where their policies offer such an opt-out.

AI-generated outputs may contain inaccuracies. You are responsible for reviewing generated content before relying on or distributing it.

We retain a copy of your prompts and outputs to display them in your account and to support cost accounting and abuse prevention.

We use a single preference cookie (NEXT_LOCALE) to remember your language choice for one year.

We use authentication cookies to keep you signed in.

We do not use third-party advertising or cross-site tracking cookies.

Account and content data are retained for as long as your account is active.

Session records are retained until expiry or sign-out.

Billing records are retained as required by tax and accounting law.

You may request deletion of your account and associated content at any time by contacting support.

Subject to your jurisdiction (including GDPR for EEA/UK residents and CCPA for California residents), you may have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing.

To exercise these rights, contact us at the email below. We will respond within the timeframes required by applicable law.

Our infrastructure and subprocessors operate in multiple regions, including the United States and the European Union. Where required, we rely on Standard Contractual Clauses or equivalent safeguards for cross-border transfers.

We use encryption in transit (TLS), encryption at rest for stored data, scoped access controls, and audit logging. No system is perfectly secure; if we become aware of a breach affecting your data, we will notify you without undue delay.

JanaLearn is not directed to children under 13 (or under 16 in the EEA). We do not knowingly collect data from children. If you believe a child has provided us with personal information, contact us and we will delete it.

We may update this Privacy Policy from time to time. Material changes will be communicated by email or in-app notice. The "Last updated" date above reflects the current version.