Data Privacy + Security

Pixton is built for schools, with student privacy and data protection as core design principles—not add-ons.

We collect only the information needed to provide learning and classroom functionality, and we never sell student data or use it for advertising.

Student Privacy First

Pixton is designed specifically for K–12 use and complies with major student privacy laws, including COPPA, FERPA, CSPC, GDPR, and UK GDPR.

Our practices are independently reviewed through annual third-party audits to ensure ongoing compliance.

Clear Data Ownership & Control

• Schools and educators retain control over student data
• Student work is private by default and shared only when an educator or student chooses to share it
• Accounts use secure single sign-on (Google, Microsoft, or Clever); Pixton does not store passwords

Secure Infrastructure

• Data is encrypted in transit and at rest
• Hosted on secure cloud infrastructure with strict access controls
• Regular security testing, audits, and incident-response procedures are in place

Responsible Use of AI

Pixton uses AI in limited, carefully designed ways to support educators—never to replace professional judgment.

AI features:

• Do not train on student data
• Transmit only minimal, non-identifying information
• Always require human review and control

Policies, Agreements & Certifications

• Privacy Policy — How Pixton collects, uses, and protects classroom data
• iKeepSafe Privacy Audit — Independent verification of COPPA, FERPA, and CSPC compliance
• Data Processing Addendum (DPA) — GDPR and UK GDPR data processing terms for schools and districts
• Responsible Use of AI Statement — How Pixton uses AI safely, transparently, and without training on student data
• Data Flow Diagram — Visual overview of how data moves through Pixton’s systems
• Security Policy — Technical and organizational safeguards protecting Pixton data

If you have privacy, security, or compliance questions, please contact our Privacy Officer.