FERPA Compliance

FERPA permits schools to disclose educational records without consent to "school officials" who have a "legitimate educational interest" in the records. 34 CFR § 99.31(a)(1). Guiden qualifies as a school official under this exception because:

• We perform services and functions that would otherwise be performed by school employees (AI-assisted tutoring, grading assistance, learning analytics)
• We are under the direct control of the school with respect to the use and maintenance of educational records
• We use educational records only for the purpose for which the school contracted with us
• We do not re-disclose educational records to unauthorized parties

Our legitimate educational interest in student educational records is limited to:

• Providing AI-assisted tutoring and academic guidance
• Generating assignment grades and feedback for teacher review
• Computing learning analytics (KPIs) to help teachers understand student reasoning patterns
• Enforcing usage policies set by the school
• Maintaining the security and integrity of the educational records we hold

Access to student records within Guiden is role-based: teachers may only access records of students enrolled in their classrooms. Administrators access records only for legitimate institutional management purposes. We do not access student records for any purpose outside the educational mission.

We do not disclose student educational records to any third party without written authorization from the school, except as required by law or permitted by FERPA. Specifically, we do not share student records with:

• Other schools or educational institutions (without authorization)
• Marketing or advertising companies
• Data brokers or analytics companies
• Any person without a legitimate educational interest as defined by the school

When student chat messages are sent to OpenAI's API for processing, this does not constitute a re-disclosure under FERPA because:

• The content transmitted to OpenAI is limited to chat message content and contextual metadata (grade level as integer, subject name) — no student identifiers are included
• OpenAI processes this data as a subprocessor under our direction and does not use it independently
• This processing is integral to providing the educational service

We may be required to disclose educational records pursuant to:

• A court order or lawfully issued subpoena (we will notify the school before disclosure if legally permitted)
• A health or safety emergency posing imminent danger to the student or others
• State and local education authorities in connection with audits, evaluations, or reporting requirements

Schools have the right to inspect and review all student educational records held by Guiden on their behalf. Upon written request from an authorized school official, we will provide complete access to the requested records within 10 business days.

If a school believes that student educational records held by Guiden are inaccurate, misleading, or violate a student's privacy rights, the school may request that we amend the records. We will respond to such requests within 10 business days.

Schools retain full control over the disclosure of student educational records. Schools may direct us to share records with specific parties (e.g., parents, other authorized school officials) by submitting a written request.

Schools and eligible students may file complaints regarding alleged FERPA violations with the U.S. Department of Education's Student Privacy Policy Office (SPPO):