Privacy Policy
Last updated July 9, 2026
TutorLM is software that helps tutors run SAT and ACT preparation for their students. Tutors are our customers; many of the students they teach are minors, and we built the product around that fact. This policy explains what information TutorLM collects, how it is used, and the choices tutors, students, and parents or guardians have. It is short on purpose — we would rather you actually read it.
Who this policy covers
This policy applies to tutors who create TutorLM accounts, to the students they enroll (who are often minors), to the parents and guardians who provide consent for those students, and to visitors of this site.
Information we collect
We collect only what running the tutoring workflow requires:
- Tutor accounts — your name and email address. Passwords are handled by our authentication provider; we never see or store the password itself.
- Student records a tutor enters — the student's name, exam (SAT or ACT), target and actual scores, test dates, and session notes.
- Parent/guardian details — a name and email address, used to request and record consent.
- Consent records — the typed signature, the signer's relationship to the student, the version of the consent form agreed to, and a timestamp.
- Practice activity — each answer a student gives, whether it was correct, and how long it took. This is what drives mastery tracking.
- Study materials and notes stored for a student, along with mathematical representations of them (embeddings) used to retrieve relevant context.
- Service logs — which AI tasks ran, for whom, and what they cost. We do not write students' personal information to logs.
- Cookies — only the cookies needed to keep you signed in. We use no advertising or cross-site tracking cookies, and no third-party analytics.
What we never do
Some commitments are absolute:
- We do not sell personal information — anyone's, ever.
- We do not share personal information for advertising, and we show no ads.
- We do not use student data to train or improve AI models, and our AI provider is barred from doing so under the terms we use it on (see “How AI is used” below).
- We do not profile students for any purpose other than the tutoring itself.
- We do not knowingly collect more information than teaching requires.
Children's privacy (COPPA)
Most students on TutorLM are under 18, and some are under 13. A student's access cannot become active until a parent or legal guardian has reviewed our consent form and provided consent; we record the consent version, signature, and timestamp, and a guardian's consent covers only the version they agreed to. A parent or guardian may at any time review the information we hold about their child, request corrections, request deletion, refuse further collection, or withdraw consent entirely — withdrawal ends the student's use of the service. To exercise any of these rights, contact us at elliottpwanderson@gmail.com.
How AI is used, and what the AI provider sees
TutorLM uses a large language model (currently Google's Gemini models, accessed through the paid tier of the Gemini API) to draft study plans, explanations, and practice hints for a tutor's review. Three things keep that safe:
- Each request includes only the minimum a task needs — never a student's full file, and never more identifying detail than the task requires.
- Under the paid-tier terms we use, Google does not use our prompts or the model's responses to train or improve its models, and retains them only for a limited period for abuse monitoring.
- A student's mastery record is computed from the answers they actually gave. The model never decides how a student is doing.
Service providers we rely on
TutorLM runs on a small set of providers, each of which processes data only to provide its service to us:
- Supabase — database, authentication, and file storage.
- Vercel — application hosting.
- Google — AI model provider (paid Gemini API).
- Resend — transactional email, used to deliver consent requests and sign-up links.
Security
Every student's records are isolated at the database layer with row-level security: a tutor can only ever read their own students, and that rule is enforced by the database itself, not just by application code. Data is encrypted in transit and at rest. Administrative access keys are restricted to server-side code and never reach a browser. No system can be guaranteed completely secure, but the design here assumes the sensitivity of minors' data from the ground up.
Data retention and deletion
We keep personal information for as long as the tutor's account is active and the student is enrolled. When a tutor removes a student or deletes their account, or a guardian requests deletion, we delete the associated personal information within 30 days. We may retain information that has been de-identified so it no longer identifies any person. [Specific post-relationship retention periods pending business/legal input.]
Your rights
Tutors may access, correct, or delete their account information by contacting us. Parents and guardians have the rights described in the children's-privacy section above. Depending on where you live (including California), state law may give you additional rights over personal information; contact us and we will honor them.
Changes to this policy
If we change this policy, we will update the date at the top. If a change materially affects how we handle students' information, we will notify tutors and guardians, and where the change touches what a guardian consented to, we will ask for fresh consent before it applies to their student.
Contact us
Questions about this policy or about your — or your child's — information: elliottpwanderson@gmail.com.