Privacy Policy

Last Updated: January 2026

alohaai LLC (“alohaai,” “we,” “us,” or “our”) is committed to protecting your personal information. This Privacy Policy outlines how we collect, use, share, and protect personal information when you use our pilot classroom translation platform (“Bridge Translation”).

1. Scope and Definitions

This policy applies to all teachers, students, and school administrators who participate in the Bridge Translation pilot program.

“Personal Information” means information that identifies or may reasonably identify an individual.

2. Information We Collect

During the pilot program, we collect only the minimal information necessary to provide access and functionality, including:

• Authentication data via Firebase, including login email and password, for teacher and administrator access.
• Temporary session data via Firebase, such as selected language, transcripts, and active session settings for cross-device synchronization.
• Translation fragments may be cached in encrypted storage to improve performance and reduce redundant translation API calls. These fragments do not contain personally identifiable information.

We do not store or retain transcripts, recordings, or classroom content at this stage.

We do not record “non-specific user” data for students.

We do not use cookies, web beacons, or tracking technologies for advertising or behavioral profiling. Any technical cookies or logs used are strictly necessary for core application functionality, security, and performance.

3. How We Use Information

We use temporary session information only to:

• Provide real-time translation during active classroom sessions.
• Maintain security and prevent misuse.
• Improve platform reliability and pilot performance.

All data is processed securely and is not shared with third parties, except as described below.

4. Data Retention and Ownership

Data Retention & Deletion

Authentication data (such as email and encrypted credentials) is retained only while an account remains active. Cached translation fragments are encrypted and stored solely to improve performance and reduce repeated translation costs. Session data is processed transiently and permanently deleted at the end of each live classroom session.

Teachers and administrators may request deletion of their account and associated authentication data at any time; such data will be permanently deleted within a reasonable timeframe, except where retention is required by law.

Future versions may offer optional transcript storage only with explicit school and user consent.

Data Ownership

alohaai LLC retains ownership of all software, source code, user interface, design elements, and other intellectual property associated with Bridge Translation. Schools and users retain ownership of their data.

Bridge Translation processes user and school data solely as necessary to provide application functionality and does not claim ownership over such data.

5. Third-Party Services

Bridge Translation uses the following third-party services:

• Firebase (Google LLC) – authentication and temporary session data
• DeepL API – real-time language translation
• GitHub – source code management
• Cloudflare Workers – serverless backend processing and error logging
• Vercel – frontend hosting and deployment

The above third-party providers are contractually bound by their own Data Processing Agreements (or equivalent contractual terms), privacy policies, and applicable laws to process data only as necessary to provide the service and to maintain appropriate security and confidentiality safeguards consistent with this Privacy Policy.

We may update our use of third-party service providers from time to time. Any material changes will be reflected in this Privacy Policy with an updated “Last Updated” date.

6. Security

We maintain reasonable, industry-standard technical and organizational safeguards to protect against unauthorized access, disclosure, or misuse of data. These safeguards include:

• Encryption in transit (HTTPS/TLS) for all data exchanged between users and our servers.
• Encryption at rest for authentication data stored by Firebase and cache data stored in Cloudflare Workers.
• Access controls, including role-based restrictions for teacher and administrator accounts.
• Automatic session data deletion, removing temporary translation data at the end of each live session.

In the event of a data breach affecting personal information, we will follow relevant state code requirements and promptly notify the affected school or district.

7. Advertising

Bridge Translation does not display advertisements and does not engage in targeted advertising. We do not permit third-party advertisers or ad networks to collect data through our service.

8. Children’s Privacy

Bridge Translation is intended for use in K–12 educational settings under teacher supervision.

We comply with all applicable student privacy and education laws, including:

• FERPA (Family Educational Rights and Privacy Act)
• COPPA (school-consent exception)
• CIPA (Children’s Internet Protection Act)
• PPRA (Protection of Pupil Rights Amendment)
• ADA accessibility requirements, including maintaining an accessible interface for students and staff
• GDPR (General Data Protection Regulation), where applicable

We also comply with any additional student data privacy requirements applicable in the state where the school or district operates.

We do not collect personal information from children outside of school-authorized use. Schools and teachers act as the consenting agent for student participation during the pilot.

9. Contact

For privacy concerns or data requests, contact us at alohaai.co@gmail.com.

10. Updates

We will notify users of material changes to this Privacy Policy by updating the “Last Updated” date and, when appropriate, providing notice within the application or via email prior to the change becoming effective.