Skip to main content
Trust & Compliance

Built for regulated educational environments.

We make our compliance documents publicly available so your procurement team can move faster.

FERPA Compliant
COPPA Compliant
WCAG 2.1 AA Target
IDA-Aligned Methodology

Compliance Documents

Download or review our standard compliance materials. For entity-specific agreements — including district-issued DPAs — contact us at [email protected].

Accessibility Conformance Report (VPAT)

Available WCAG 2.1 AA

VPAT® 2.5Rev — WCAG Edition · March 2026

Our Voluntary Product Accessibility Template documents EduFlip's conformance with WCAG 2.1 Level AA. Self-evaluated against all Level A and Level AA criteria. This report will be updated with each major product release.

View Accessibility Conformance Report

Standard Data Privacy Agreement

Available FERPA · COPPA

Template v1.0 · Updated 2026

Our standard DPA outlines how EduFlip collects, processes, stores, and protects student and user data in compliance with FERPA, COPPA, and applicable state law. Many districts use their own form — we're happy to review either.

Download Standard DPA (PDF)

Privacy Policy

Available

v1.0 · Updated 2026

Full privacy policy covering data collection, use, retention, and user rights for all platform roles: students, practitioners, district administrators, and family users.

View Privacy Policy

Terms of Service

Available

v1.0 · Updated 2026

Platform terms governing use by districts, clinics, homeschool families, and individual practitioners.

View Terms of Service

Student Data Privacy Addendum

In Progress SDPC

National DPA Template · Pending — Q2 2026

EduFlip is preparing to sign the Student Data Privacy Consortium (SDPC) National Data Privacy Agreement, which streamlines district procurement by providing a standardized, state-accepted DPA framework. Many districts and state agencies accept the SDPC National DPA in lieu of individual agreements.

SDPC signing is in progress. Contact us for current status.

Security Practices Overview

Available

v1.0 · Updated 2026

A summary of EduFlip's technical security posture for procurement review.

  • AES-256-CBC field-level encryption at rest for all PII
  • TLS/HSTS encryption in transit with 1-year max-age
  • Database-per-tenant isolation for physical data separation
  • Four-tier RBAC with field-level access gates
  • Comprehensive audit logging with 7-year retention
  • Automated breach detection and security incident tracking
  • Content Security Policy, X-Frame-Options, and Permissions-Policy headers

State Dyslexia Law Alignment

EduFlip's curriculum and reporting are designed to meet the structured literacy and dyslexia screening requirements in the following states. Full alignment documentation is available upon request.

Texas

  • Texas Dyslexia Handbook
  • HB 1886
  • SB 160

Arkansas

  • Act 1023 (Dyslexia Law)

Mississippi

  • Dyslexia Legislation HB 1031

Tennessee

  • Tennessee Dyslexia Resource Guide

Colorado

  • READ Act
  • Comprehensive Literacy Plan

South Carolina

  • READS Act

Additional state alignments in development. Contact us if your state is not listed. See our full state alignment page for detailed requirement mapping.

Our Accessibility Commitment

EduFlip is designed for students with dyslexia and language-based learning differences. Accessibility is not an afterthought — it is central to our product design. Our target is WCAG 2.1 Level AA conformance across all learner-facing interfaces.

Our platform-level accessibility design choices include:

  • High-contrast, dyslexia-friendly typography and color choices throughout
  • Screen reader compatibility for all instructional content
  • Keyboard-navigable interfaces for all core practitioner and learner flows
  • PWA architecture designed for low-connectivity environments
  • Minimal cognitive load UI, informed by VAKT (Visual-Auditory-Kinesthetic-Tactile) principles
  • OpenDyslexic font option available as a user preference
  • All interactive touch targets meet the 44x44px WCAG minimum

Our full Accessibility Conformance Report (VPAT® 2.5Rev, WCAG Edition) will be published with the product launch. For accessibility questions, contact [email protected].

Student Data Privacy

No Data Selling

EduFlip does not sell, rent, or monetize student or user data. Period.

FERPA & COPPA Compliant

All data practices comply with FERPA and COPPA. Students under 13 are never tracked for commercial purposes. Verifiable parental consent is enforced for COPPA-applicable users.

District Control

Districts retain ownership of their student data. Data is available for export and deletion upon request. Database-per-tenant isolation ensures physical data separation.

Secure by Default

All data is encrypted in transit and at rest. Access is role-based across Practitioner, CALT, Location, and District tiers with field-level access controls.

Need Entity-Specific Documentation?

Many districts and state agencies use their own DPA or ACR request forms. We're prepared to review, respond to, and execute any standard education procurement agreement. Reach out to start the conversation.

Contact Compliance Team →

VPAT® is a registered service mark of the Information Technology Industry Council (ITI). · EduFlip.org · [email protected]