Leibniz.
Leibniz.

Privacy Policy

Effective Date: January 2025 · Last Updated: February 2026

1. Introduction

Leibniz Education Pty Ltd (“we,” “our,” or “us”) is committed to protecting your privacy while providing adaptive mathematics education services, including personalised practice, AI-assisted grading, and teacher analytics for secondary students. This Privacy Policy explains how we collect, use, store, and protect your information in accordance with the Australian Privacy Principles under the Privacy Act 1988 (Cth).

2. Information We Collect

2.1 Information You Provide

Account Information

  • Email address and full name (provided during account creation or via OAuth)
  • School association (assigned during school pilot provisioning)
  • Year level and course selection

Authentication is handled via Google or Microsoft SSO, or via email/password managed by Supabase Auth. Leibniz does not directly store passwords.

Educational Content

  • Typed answers and working steps
  • Uploaded handwritten work (images/PDFs)
  • Time spent on questions

2.2 Information Collected Automatically

Usage Data

  • Questions attempted and completion rates
  • Topics and difficulty levels accessed
  • Performance metrics and daily activity counts

Technical Data

  • IP address and device fingerprint (for rate limiting of free/guest users only; not collected for school-provisioned Pro users)
  • Session cookies for authentication

Server Logs

  • Request metadata (endpoints, timestamps) retained for 30 days
  • Does not include student answers or grades

2.3 Information from Third Parties

Google/Microsoft OAuth

  • Email address and name during sign-in flow

Payment Information (Individual Subscribers)

  • For individual paid subscribers, Stripe provides transaction and subscription status
  • Not used for school pilot users
  • We never directly handle credit card details

3. How We Use Your Information

To Provide the Service

  • Generate personalised questions
  • AI-powered grading for typed and handwritten work
  • Track progress and performance
  • Provide hints and solutions
  • Deliver class assignments and teacher reporting

To Improve the Platform

  • Analyse anonymised aggregate usage patterns
  • Calibrate question difficulty
  • Develop new content
  • Improve adaptive learning algorithms

For Security

  • Prevent abuse
  • Enforce usage limits
  • Detect fraudulent activity
  • Maintain service stability

For Communication

  • Transactional emails (password resets, account notifications) via Mailgun through Supabase Auth

4. Data Sharing and Disclosure

We DO NOT:

  • Sell your personal information to third parties
  • Use your data for advertising, marketing, or profiling
  • Share your data with other schools or organisations
  • Use student data to train AI models

Sub-Processors

We share data with the following sub-processors:

ProviderPurposeData SentRegionRetentionAI Training
SupabaseDatabase, authentication, file storageAll application dataSydney, AUPrimary data store; encrypted backups 7 daysN/A
VercelApplication hosting, server-side API routesRequest metadata, server logsSydney, AULogs: 30 daysN/A
OpenRouterAI grading inferenceQuestion text + student answer (identifiers not intentionally included)May be outside AUZero retention (stateless)Contractually prohibited
Google / MicrosoftOAuth authenticationEmail, name (sign-in flow)Global (auth flow only)Provider's existing dataN/A
MailgunTransactional email (via Supabase Auth)Recipient email addressUSPer provider policyN/A
StripePayment processing (individual subscribers only)Transaction and subscription dataGlobalPer Stripe's data policyN/A

Stripe is not used for school pilot users. No student learning data, answers, or grades are sent to any sub-processor other than the AI inference provider (for grading only) and Supabase (primary data store).

Teacher and School Access

For school pilot participants, teachers can view performance data (marks, accuracy, time spent, topic performance) for students enrolled in their own classes. School administrators can view data for their school only. This access is part of the educational service and is governed by the school's pilot agreement.

5. Data Retention

Retention Period

Data is retained for the duration of your use of the service to support ongoing learning and teacher reporting.

Deletion on Request

Full deletion is available on request. Deletion is comprehensive, with cascading removal across 30+ database tables including:

  • User account and profile
  • Role and access records
  • Class enrolments
  • All question attempts, submissions, and grades
  • Uploaded handwritten work (images and PDFs in storage)
  • Learning model data and AI-generated summaries
  • Provisioning records

Deletion Timeline

  • Production deletion is immediate upon request
  • Encrypted database backups are retained for 7 days, then auto-expire
  • Server request logs are retained for 30 days (metadata only, not answers or grades)

Self-Service Deletion

Students and teachers can delete their own accounts via the Settings page, which triggers the same comprehensive cascading deletion.

Anonymised Data

Irreversibly anonymised aggregate statistics (where no individual is identifiable) may be retained.

Data Required by Law

Notwithstanding the above, data that is required to be retained by applicable law or regulation will be kept for the minimum period required and then deleted.

6. Data Security

Encryption

  • In transit: TLS 1.2+ on all connections (browser-to-server and server-to-database)
  • At rest: AES-256 encryption on all stored data

Server-Side Only Architecture

The browser never directly accesses the database. All data access flows through authenticated, permission-checked server-side API routes. Database credentials are server-side secrets and never reach the client.

Database Security

  • Row-Level Security (RLS) enabled at the database layer as defence-in-depth
  • Pseudonymised UUIDs used in all analytical and learning data (not names or emails)
  • All database queries parameterised to prevent SQL injection

Vendor Access Controls

  • Production access restricted to 2 personnel (CEO and CTO)
  • Multi-factor authentication enforced on all infrastructure accounts
  • Database credentials and API keys rotated on a quarterly schedule
  • Audit logging via platform trails (Supabase database logs and Vercel access logs)

Incident Response

In the event of a confirmed data breach, affected schools will be notified within 24 hours in accordance with the Notifiable Data Breaches scheme under the Privacy Act 1988. Incident response includes immediate containment, root cause analysis, patching, and verification before restoring service.

7. Your Rights and Choices

Access (APP 12)

You can view your own data at any time through the platform. Students can see their own submissions, grades, and progress. Teachers can see performance data for students in their own classes.

Correction (APP 13)

You can update your profile information at any time. If you believe any data we hold about you is inaccurate, please contact us and we will correct it.

Deletion

You can request deletion of your data at any time via the Settings page or by contacting us. Deletion is comprehensive and removes all associated records across 30+ tables.

School Deletion

For school pilots, the school may request deletion of all school data at any time. Individual student or teacher records can also be deleted independently without affecting the rest of the school's data.

8. Cookies and Tracking

What We Use

  • Secure HTTP-only session cookies for authentication
  • Essential cookies only — not used for advertising or cross-site tracking
  • Session tokens validated server-side on every request

What We Do Not Use

  • No third-party advertising cookies
  • No social media tracking pixels
  • No behavioural tracking
  • No browsing history or location data collected

9. Children's Privacy

You must be at least 13 years of age to use the Service. For individual users under 18, parental or guardian consent is required.

Leibniz is designed for secondary school students, including those under 18. We take the following measures to protect children's privacy:

  • We do not collect data beyond what is necessary for the educational service
  • We do not track behaviour outside the platform
  • We do not use student data for profiling or marketing
  • We do not share data with social media or advertising networks
  • School pilot access is provisioned by the school (school provides consent for student participation)

10. International Data Transfers

Data Stored in Australia

All persistent data is stored exclusively in Sydney, Australia. No student data is replicated to overseas data centres.

Limited Cross-Border Processing

  • AI grading requests may be processed outside Australia (OpenRouter) — designed to exclude identifiers, stateless, zero retention by the provider
  • Transactional email via Mailgun (US) — only the recipient email address is sent
  • Google/Microsoft OAuth — global during sign-in flow only
  • Stripe payment processing (individual subscribers only) — global, per Stripe's data policy

These practices are aligned with APP 8 (Cross-border Disclosure of Personal Information) under the Privacy Act 1988.

11. Australian Privacy Principles

PrincipleHow Leibniz Complies
APP 3 (Collection)Only data necessary for the educational service is collected
APP 6 (Use/Disclosure)Data used only for stated educational purposes; not disclosed for marketing or commercial use
APP 8 (Cross-border)All persistent data stored in Australia; AI processing is stateless with no data retention
APP 11 (Security)Encrypted data (see Section 6), server-side only architecture, role-based authorisation
APP 12 (Access)Students can view their own data; teachers can view their class data
APP 13 (Correction)Users can update their profile information at any time

12. Changes to This Policy

We may update this Privacy Policy as the platform evolves. When we make material changes to our data handling practices, participating schools will be notified.

We encourage you to review this policy periodically. The “Last Updated” date at the top of this page indicates the most recent revision.

13. Contact Us

For privacy-related questions or concerns:

Leibniz Education Pty Ltd
ABN 18 692 154 162
36 Bangalla St, Warrawee 2074, NSW
Email: letterbox@leibniz.com.au
Website: leibniz.com.au

If you wish to make a complaint about how we have handled your personal information, please contact us at letterbox@leibniz.com.au. We will acknowledge your complaint within 5 business days, investigate the matter, and provide a written response within 30 days.

If you are unsatisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

Schools may request a Data Processing Agreement (DPA) by contacting us at the address above.

14. Specific Feature Disclosures

14.1 AI Grading

When you submit an answer (typed or handwritten), the question, its solution, and your response are sent to an AI provider via a server-side API call for grading. For handwritten submissions, the image or PDF of your work is sent for vision-based grading and OCR extraction.

  • Processing is stateless with no data retention by the AI provider
  • Identifiers are not intentionally sent (would only appear if you write your name in your submission). For AI-generated teacher summaries, the student's first name may be included for contextual reporting. No other identifiers (email, school, etc.) are sent.
  • Each request is completely independent — no conversation history or session memory
  • AI providers are contractually prohibited from using data for training

14.2 Adaptive Learning

Leibniz uses a statistical model to personalise question difficulty. This model operates on pseudonymised data (UUIDs, not names or emails) and stores only mathematical parameters representing estimated mastery per concept.

  • Any model tuning uses anonymised, aggregated data only
  • Schools may opt out of having their data included in aggregate analyses

14.3 Progress and Teacher Reporting

For class-assigned work, your progress is visible to your assigned teacher and school administrator (see Section 4). Anonymised aggregate statistics may be used to improve the platform (school opt-out available).

14.4 Device Fingerprinting

Device fingerprinting is used for free and guest users only to enforce daily question limits.

  • Not collected for school-provisioned Pro users
  • Data used for rate limiting only

14.5 School Pilot Provisioning

For school pilots, the onboarding process works as follows:

  • The school provides an email whitelist for students and teachers
  • On first login, the system matches the user's email, assigns the appropriate role, and activates Pro access
  • Teacher access is granted only to approved, school-provided addresses
  • Students can only join classes belonging to their own school — cross-school access is blocked

15. Data Protection Commitments

Our commitments are detailed throughout this policy. In summary: all persistent data is stored in Sydney, we never sell your data or use it to train AI models, deletion is comprehensive and immediate, and access is restricted to authorised personnel with MFA. For full details, see the relevant sections above.

This Privacy Policy is designed to be clear, comprehensive, and respectful of your privacy rights while enabling us to provide effective educational services.