Go to the landing page Open the Web App

Privacy Policy

How KenAI collects, uses, protects and shares personal data.

Effective date: 08/04/2026  ·  Last updated: 08/04/2026

1. Who we are

KenAI is a digital learning product that helps users move through structured tracks, unit chats, submissions, and artifacts toward measurable educational outcomes. The service is designed as a managed learning process rather than a general-purpose chat product.

For the purposes of this Privacy Policy, “KenAI”, “we”, “us”, and “our” mean the legal entity that operates the KenAI service made available to you through the website, app, or other official KenAI surface you use.

This Privacy Policy explains what personal data we collect, how we use it, how long we keep it, when we share it, what rights you have, and how you can contact us about privacy matters.

2. Scope of this Policy

This Policy applies to personal data processed through the KenAI website, apps, learning workspace, registration flows, support channels, marketing channels, and related services.

It covers data about website visitors, registered users, learners, parents or guardians where relevant, and people who contact us or subscribe to updates.

It does not apply to third-party sites, apps, or services that are not operated by KenAI, even if they are linked from our service.

3. Core privacy commitments

We aim to process personal data lawfully, fairly, and transparently; collect only what is reasonably needed; use data for clear purposes; keep data accurate where reasonably possible; protect it with appropriate safeguards; and retain it only for as long as justified by the purpose and legal requirements.

We also apply product-level data minimisation. In KenAI’s architecture, durable progress state, artifacts, and resumability data are separated from unnecessary raw history and should not be used as a general-purpose container for personal information.

4. Personal data we collect

4.1 Account and profile data

This may include your name or display name, email address, login credentials or authentication identifiers, language, locale, timezone, and account preferences.

Where the product supports saved preferences, we may also process settings such as detail level, feedback style, or other product configuration choices.

4.2 Learning and product-use data

This includes selected tracks, modules, units, current and completed steps, submitted units, timestamps, pace snapshots, PASS/FAIL submit results, reopen or improve events, and related progress state.

Because KenAI is built around tracked progression rather than an open-ended chat, we may also process artifact metadata, version history, current version pointers, and concise progress summaries needed to let users resume the correct step.

4.3 Content you provide

We process messages you send, answers you type, files and links you upload, drafts you save, submissions you make, artifacts you create, and any feedback or support messages you choose to provide.

4.4 Device, security, and technical data

This may include IP address, device type, operating system, browser or app version, log data, session data, crash and diagnostic data, and identifiers reasonably needed for security and fraud prevention.

4.5 Usage analytics and event data

We may collect event data such as page views, registration steps, track selection, unit opens, draft saves, submit clicks, submit outcomes, resume events, feature usage, and notification interactions.

4.6 Communications and billing data

If you contact us, we process your support and correspondence records. If you purchase paid services, we may process limited billing and transaction data such as plan, payment status, country, and transaction reference. Full payment card data is typically handled by specialised payment providers, not stored by KenAI.

4.7 Marketing and cookie-related data

Where applicable, we may process newsletter subscription data, campaign attribution data, and cookie, SDK, pixel, or similar technology data, subject to the consent and notice rules that apply in the relevant market.

5. Special note about sensitive data

Please do not upload unnecessary sensitive personal data into KenAI, including health information, government ID numbers, passwords, payment card data, private keys, access codes, or similar highly sensitive information, unless we explicitly request it for a lawful and necessary reason. If you upload such data by mistake, contact us and we will review the request in line with applicable law and our retention and backup constraints.

6. How we use personal data

6.1 To provide and operate KenAI

We use personal data to create accounts, authenticate users, operate tracks and unit chats, save progress, process submissions, store and update artifacts and versions, generate progress summaries, and deliver the features that make the service resumable and usable.

6.2 To personalize the learning experience

We may use preferences, usage patterns, and progress data to adapt pacing, propose next steps, remember settings, support optional reminders, and make the product more relevant to the user’s current state.

6.3 To support quality, safety, and integrity

We use data to debug and improve the service, monitor reliability, detect misuse, maintain learning integrity, operate PASS/FAIL submit gates, investigate fraud or abuse, and enforce product rules and terms.

6.4 To communicate with you

We use contact and account data to send service notices, security alerts, support responses, billing messages, and product notifications you have requested or enabled.

6.5 To improve the service and measure product performance

We use analytics and event data to understand activation, retention, completion, feature quality, support needs, and where users get stuck so that we can improve the product responsibly.

6.6 To comply with law and defend legal rights

We may process and retain data where necessary to comply with legal obligations, respond to lawful requests, establish or defend claims, or protect the rights, property, and safety of users, KenAI, or others.

6.7 To market our services

Where permitted, we may use contact and engagement data to send relevant updates, educational content, or product offers. You can opt out of marketing communications at any time.

7. Legal bases for processing

7.1 Contract

We process personal data where it is necessary to create and maintain your account, deliver the KenAI service you requested, process your submissions, maintain your progress state, and provide related support.

7.2 Legitimate interests

We may process data where necessary for legitimate interests such as service security, reliability, analytics, fraud prevention, product improvement, and the protection of our legal rights, provided those interests are not overridden by your rights and freedoms.

7.3 Consent

We rely on consent where required or where we choose to structure a feature on a consent basis, for example certain marketing communications, optional cookies or tracking technologies, and certain optional notification or reminder settings.

7.4 Legal obligation

We may process data where necessary to comply with tax, accounting, consumer protection, sanctions, disclosure, or other legal obligations.

8. Children and young users

KenAI may be used by learners, including teenagers, in some tracks and markets. Where the service is offered directly to children and the chosen legal basis is consent, we will apply the parental authorisation rules that apply in the relevant country or region. We aim to provide age-appropriate explanations, collect no more data than is reasonably necessary, and avoid unnecessary profiling or marketing practices that are not appropriate for younger users.

Parents or guardians who believe that a child has provided personal data to KenAI unlawfully may contact us using the public privacy or support contact shown on the service. See also our Teen Privacy Notice.

9. Notifications, reminders, and proactivity

KenAI may provide reminders, resume prompts, retention prompts, or other state-driven nudges tied to the next relevant step in a user’s learning flow. Where these features are enabled, we may process notification preferences, quiet hours, consent status, mute periods, frequency caps, and records of sent reminders and interactions. We do not use these service reminders as a substitute for separate marketing consent where marketing consent is required.

10. External resources and third-party links

KenAI may recommend third-party learning resources or link to third-party sites in a controlled way. If you use those resources, the third party may process personal data under its own privacy policy. Unless explicitly stated otherwise, KenAI is not responsible for third-party privacy practices outside services it operates directly.

11. Cookies, pixels, and similar technologies

We may use cookies, local storage, pixels, SDKs, or similar technologies to keep you signed in, remember settings, secure the service, measure performance, understand product usage, and improve marketing efficiency. Where non-essential technologies require consent, we will ask for it through an appropriate consent mechanism. You can also manage cookie preferences through the relevant browser or device settings and any cookie controls made available on our service.

12. AI-supported features

KenAI uses AI-supported systems to help provide tutoring, routing, summaries, feedback, artifact support, progress assistance, and workflow continuity. These systems may process user-provided content and relevant product-use data in order to deliver the service. Unless specifically stated otherwise, KenAI is not intended to make solely automated decisions that produce legal or similarly significant effects about users.

13. When we share personal data

We do not sell personal data. We may share personal data with the following categories of recipients where reasonably necessary and subject to contractual, technical, and organisational safeguards:

  • Service providers and processors, such as hosting, infrastructure, analytics, authentication, customer support, communications, payment, monitoring, and security vendors.
  • Professional advisers, such as auditors, insurers, lawyers, and accountants.
  • Authorities or other recipients where disclosure is required by law or reasonably necessary to protect rights, safety, or security.
  • A buyer, investor, financing party, or successor entity in connection with a merger, financing, acquisition, restructuring, or sale of assets, subject to appropriate confidentiality and notice obligations.
  • Other parties where you direct us to share data or where the sharing is clearly requested by your actions.

14. International data transfers

KenAI may process or store personal data in countries outside your own country, including outside the EEA or UK. Where required, we will rely on an appropriate transfer mechanism, such as an adequacy decision, standard contractual clauses, or another lawful mechanism, together with supplementary safeguards where needed.

15. Data retention

We keep personal data only for as long as reasonably necessary for the purposes described in this Policy, including to provide the service, maintain integrity and support records, comply with law, resolve disputes, and enforce agreements. Retention periods vary by data category, system function, and legal requirement.

15.1 Account and profile data

Kept while the account remains active and for a limited period afterward where needed for security, legal, audit, or fraud-prevention purposes.

15.2 Learning data, progress state, submissions, and artifacts

Kept for as long as needed to maintain resumability, user history, supportability, integrity review, and user access to the learning record, unless deletion is requested and no overriding legal or operational basis requires continued retention.

15.3 Support and communications data

Kept for as long as needed to resolve the issue and for a reasonable follow-up period afterward.

15.4 Billing and transaction records

Kept for the period required by tax, accounting, anti-fraud, and related legal obligations.

15.5 Analytics data

Kept for a limited period and, where feasible, reduced, aggregated, or pseudonymised.

15.6 Backups and security logs

May persist for limited rolling periods required for resilience, recovery, and security monitoring.

16. Security

We use appropriate technical and organisational measures to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure, and unauthorised access. These measures may include access controls, encryption in transit and where appropriate at rest, environment separation, monitoring, logging, backup and recovery controls, role-based permissions, vendor review, and incident response procedures. No service can be completely secure, but we work to reduce risk appropriately.

17. Your rights

Depending on the law that applies to you, you may have the right to access, correct, delete, restrict, object to, or port certain personal data, and to withdraw consent where processing is based on consent. You may also have the right to lodge a complaint with a supervisory authority. We may ask you to verify your identity before acting on a request.

18. Marketing choices

You can opt out of marketing emails by using the unsubscribe link in the message or by contacting us through the contact details provided on the service. Service messages about your account, security, billing, or active learning workflow may still be sent where necessary.

19. Deleting your account and content

You may request deletion of your account and associated personal data, subject to legal obligations, fraud-prevention needs, security requirements, backup constraints, and the possibility that some information will be retained in de-identified or aggregated form. Because KenAI stores progress state and artifacts as part of the service, deletion may remove access to submissions, versions, progress history, and related learning records.

20. No guarantee of outcomes

KenAI is a learning product, not an employment, admissions, or certification service.

KenAI does not guarantee employment, internship placement, income or hiring outcomes. It helps you build structured job-ready artifacts and practise applied skills.

KenAI does not guarantee grades, employment, admission or certification outcomes. For international school tracks, KenAI prepares students through structured learning tracks; exams are taken through approved schools or exam centres. KenAI does not issue Cambridge, Pearson or other official qualifications.

21. Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in our services, legal requirements, or processing practices. If we make a material change, we will provide an appropriate notice through the service or another reasonable channel.

22. Contacting us

KenAI is a product of D4 Teams Solutions OÜ, Sepapaja 6, 15551 Tallinn, Estonia. Registry code: 16086731, VAT ID: EE102406234.

For privacy matters and data requests, contact us at info@eduken.ai.