Privacy Policy

Current State: History Hack does not collect, store, or transmit any personally identifiable information (PII) from users. The application operates as a static website with a read-only content API. There are no user accounts, no login system, and no form submissions that capture personal data.

Browser Local Storage: History Hack uses your browser’s localStorage to save learning progress, quiz scores, and user preferences (such as language and accessibility settings). This data is stored entirely on your device, is never transmitted to our servers, and can be cleared at any time through your browser settings.

Content Data: Our API delivers read-only educational content including quiz questions, vocabulary terms, historical biographies, primary source excerpts, and fact cards. This is curriculum content, not user data, and contains no PII.

Future Authentication: When user accounts and single sign-on (SSO) are implemented, this section will be updated to describe exactly what authentication data is collected, how it is used, and how it is protected. We will not implement any authentication system without updating this privacy policy first.

Because History Hack currently collects no PII, there is no personal data to use. Browser localStorage data is used solely to provide a personalized learning experience on your device, such as tracking which quizzes you have completed and saving your preferred language setting.

We do not use any user information for:

• Targeted advertising or marketing
• Building user profiles or behavioral analytics
• Selling or renting to third parties
• Any purpose unrelated to the educational service

TroopToTeacher Technologies does not share, sell, rent, or disclose any user data to third parties. Because we collect no PII, there is no user data to share.

Our infrastructure is hosted on Microsoft Azure. Azure provides the computing and hosting services but does not access, process, or use any user data for its own purposes. Azure’s role is limited to infrastructure hosting.

TroopToTeacher Technologies is committed to compliance with the Family Educational Rights and Privacy Act (FERPA, 20 U.S.C. § 1232g; 34 CFR Part 99). When used in a school setting:

• We act as a “school official” with a legitimate educational interest under FERPA.
• We will not disclose education records or student information without prior written consent from the school or parent/guardian, except as permitted under FERPA.
• We use any student data solely for the educational purpose for which it was disclosed to us.
• We maintain strict data security practices as described in this policy.
• We will comply with all school and parent requests regarding access to and deletion of student records.

Current FERPA Advantage: Because History Hack currently collects zero student PII, there are no education records to protect. All learning progress remains in the student’s browser localStorage and is never transmitted to our servers. This represents the strongest possible FERPA posture for an educational technology provider.

History Hack is designed for high school students in grades 9–12, typically ages 14 and older. The service is not directed at children under 13 years of age, and we do not knowingly collect personal information from children under 13, in accordance with the Children’s Online Privacy Protection Act (COPPA, 15 U.S.C. §§ 6501–6506; 16 CFR Part 312).

If we learn that we have inadvertently collected personal information from a child under 13, we will promptly delete that information. If you believe a child under 13 has provided us with personal information, please contact us at trooptoteacher31@gmail.com.

TroopToTeacher Technologies complies with the Tennessee Student Online Personal Protection Act (TCA § 49-1-708). Specifically, we certify that:

• We do not engage in targeted advertising directed at students based on any information acquired through the use of our service.
• We do not use information gathered through the service to create a profile about a student except in furtherance of educational purposes.
• We do not sell student information.
• We do not disclose student information except as required by law or as authorized by the school or parent/guardian.
• We implement and maintain reasonable security procedures and practices to protect student information.
• We will delete student information within a reasonable timeframe upon request from the school or when it is no longer needed for its educational purpose.

Infrastructure: History Hack is hosted on Microsoft Azure, an enterprise-grade cloud platform. The static web application is served via Azure Static Web Apps (global CDN). The content API runs on Azure App Service, and content data is stored in Azure SQL Database.

Encryption: All data in transit is encrypted using TLS 1.2 or higher. Azure SQL Database provides transparent data encryption (TDE) for data at rest.

Access Controls: Access to infrastructure and data is restricted to authorized personnel only. We use Azure’s built-in role-based access control (RBAC) and follow the principle of least privilege.

Data Residency: All infrastructure is being migrated to United States Azure regions to comply with district data residency requirements.

Educational content data (quiz questions, vocabulary, historical content) is retained for the duration of the service. This is curriculum content, not student data.

Browser localStorage data is retained on the user’s device until the user or their school IT administrator clears it. TroopToTeacher Technologies has no access to or control over localStorage data.

When user accounts are implemented, student data will be retained only for the duration of the school’s subscription or contractual relationship. Upon termination of the relationship or upon request, student data will be securely deleted within 30 days. See our Data Disposal Policy for details.

History Hack contains no advertising of any kind. We do not display ads, use tracking pixels, or engage in any form of behavioral advertising. Student data is never used for marketing purposes.

History Hack uses the following third-party services:

We do not use any analytics services, error tracking services, social media widgets, or advertising networks. No third-party scripts are loaded that track user behavior.

Parents, guardians, and schools have the right to:

• Request access to any student data we hold (currently: none)
• Request correction of inaccurate student data
• Request deletion of student data
• Refuse to allow further collection of student data
• Receive a copy of this privacy policy

To exercise any of these rights, contact us at trooptoteacher31@gmail.com. We will respond to all requests within 10 business days.

In the event of a data breach involving student information, TroopToTeacher Technologies will:

• Notify affected schools within 72 hours of discovering the breach
• Notify the Tennessee Attorney General as required by state law
• Provide details of the breach including: what data was involved, how the breach occurred, what remediation steps are being taken, and what affected parties should do
• Cooperate fully with school and law enforcement investigations

We may update this privacy policy from time to time. If we make material changes, we will notify schools and update the “Last Updated” date at the top of this page. We encourage schools and parents to review this policy periodically.

Material changes to how we collect, use, or share student data will not be made without prior notice to and consent from the school or district.

For questions about this privacy policy or our data practices, contact: