Privacy Policy

Common Core Kingdom, LLC DBA MagiCore is dedicated to protecting your privacy. If you have any questions or concerns about how your Personal Data is used, please contact us at info@magicorelearning.com, and we will be happy to assist you.

By using this website and our services, you agree to the processing of your Personal Data as outlined in this Privacy Policy.

Definitions

Personal Data: This is any information that can be used to identify you personally. It includes things like your name, email address, billing details, and other pieces of information that can point to you as an individual.

Processing: This refers to anything that’s done with your Personal Data—whether it’s collecting it, storing it, using it, or sharing it. Basically, anytime your data is handled, it’s being “processed.”

Data Subject: That’s you, the person whose data is being collected and processed. It could also be a student or anyone else whose personal information we work with.

Controller: This is the company (in this case, Common Core Kingdom, LLC DBA MagiCore) that decides how and why your Personal Data is being used.

Processor: A third party that helps us handle your data. For example, a company that stores data on our behalf would be a Processor.

Consent: This is when you give us permission to handle your Personal Data. It needs to be clear and something you agree to—no hidden terms or vague language.

Cookies: Small text files saved on your computer or device when you visit a website. Cookies help the site remember things about you, like what’s in your shopping cart or your preferences, so your experience is smoother.

Student Personal Information: This is any personal data we collect from students, such as their names, login details, assignments, and responses to learning activities. We protect this information carefully under laws like COPPA and FERPA.

FERPA: The Family Educational Rights and Privacy Act is a U.S. law that protects the privacy of student education records. It gives students and parents rights over how those records are used and shared.

COPPA: The Children’s Online Privacy Protection Act protects kids under 13 by requiring parental consent before we collect or use their personal information in most cases.

Data Breach: This is when personal information is accidentally or unlawfully accessed by someone who shouldn’t have it. If this happens, we take steps to notify the right people and prevent further harm.

Encryption: A way of scrambling data so that only authorized people can read it. This helps keep your information safe when it’s being transmitted or stored.

Service Providers: These are companies that help us run our business, like those that host our website or store data for us. They’re required to keep your data safe and follow strict privacy rules.

End Users: These are the people using our services—this could be students, teachers, or anyone else interacting with our tools.

Data Protection Principles

We follow these principles to ensure your Personal Data is handled securely and responsibly:

• Lawful, Fair, and Transparent Processing: We only process your Personal Data when we have legal grounds to do so. We are always clear and upfront about how we process your data.
• Purpose Limitation: We only collect and process Personal Data for specific and legitimate purposes.
• Data Minimization: We collect only the minimal amount of Personal Data necessary for each purpose.
• Storage Limitation: We keep your Personal Data only for as long as necessary for the purposes it was collected.
• Data Accuracy: We strive to ensure that your Personal Data is accurate and up-to-date.
• Data Security and Confidentiality: We take appropriate measures to ensure the integrity and confidentiality of your Personal Data.

Your Rights as a Data Subject

You have the following rights regarding your Personal Data:

1. Right to Information: You have the right to know if we are processing your Personal Data, what data we have, where we got it, and why we are processing it.
2. Right to Access: You can request access to your Personal Data at any time, including a copy of the data we have collected about you.
3. Right to Rectification: If any of your Personal Data is inaccurate or incomplete, you can ask us to correct or update it.
4. Right to Erasure (“Right to be Forgotten”): In certain circumstances, you can request the deletion of your Personal Data from our records.
5. Right to Restrict Processing: Under certain conditions, you can request that we limit the processing of your Personal Data.
6. Right to Object: You can object to the processing of your Personal Data in certain cases, such as direct marketing.
7. Right to Object to Automated Processing: You have the right to object to decisions made based solely on automated processing, including profiling.
8. Right to Data Portability: You can request that your Personal Data be transferred to you or another organization in a machine-readable format.
9. Right to Lodge a Complaint: If you believe we are mishandling your Personal Data, you have the right to file a complaint with a supervisory authority.
10. Right to Withdraw Consent: You can withdraw any consent you have given us for processing your Personal Data at any time.

Data We Collect

We collect Personal Data in several ways:

1. Information You Provide to Us: This includes details such as your name, email address, billing address, and any other information you give us when you use our services, create an account, or make a purchase.
2. Information Automatically Collected: When you use our site, certain data may be collected automatically, including your IP address, browser type, and activity on our site (such as your shopping history). We may use cookies and similar technologies to track this information.
3. Information from Our Partners: We may receive information from trusted partners, with their confirmation that they have the legal right to share this data.
4. Publicly Available Information: In some cases, we may gather information about you from publicly accessible sources.

How we use your Personal Data

We use your Personal Data for the following purposes:

1. To Provide Services and Fulfill Obligations

We process your Personal Data to:

• Identify you when you create an account or make a purchase.
• Deliver products and services to you.
• Communicate with you about your account, services, or orders (including sending updates or invoices).

2. For Legitimate Business Interests

We may process your Personal Data to:

• Send you personalized updates, news, and offers (unless you’ve opted out).
• Analyze customer behavior to improve our products and services.
• Conduct surveys to measure customer satisfaction.

3. With Your Consent

When you give us permission, we may use your data to:

• Send you newsletters or promotional offers.
• Process your data for any other purpose you’ve agreed to.

4. To Comply with Legal Obligations

We may need to process your data to:

• Fulfill legal requirements, such as tax reporting.
• Retain data as required by law (e.g., keeping billing information for accounting purposes).

5. For Additional Purposes

If we need to process your data for purposes not listed here, we will:

• Ensure the new purpose is related to the original reason we collected your data.
• Make sure your rights and interests are not harmed.
• Put safeguards in place to protect your data.

Who We Share Your Data With

We only share your Personal Data with trusted third parties, and only for the purposes described below:

• Service Providers: We may share your data with third-party service providers (e.g., payment processors, hosting services) who help us operate our business. These providers are bound by contracts that protect your data.
• Business Partners: If you consent, we may share your data with carefully selected business partners for marketing or promotional purposes.
• Legal Compliance: We may disclose your data if required by law or to protect the rights, property, or safety of our company or others.
• Internal Use: Our employees and contractors may access your data if necessary to perform their duties. Any employee or contractor with access to your Personal Data receives training on data security and is bound by data security and confidentiality agreements.

How We Secure Your Data

We take data security seriously and use a variety of measures to protect your Personal Data:

• Encryption: We use secure protocols (like HTTPS) and encrypt sensitive data in transit and at rest.
• Access Control: Only authorized personnel can access your data. Access is restricted to necessary personnel, and passwords are encrypted and hidden from all personnel.
• Firewalls: We use firewalls to detect and prevent unauthorized access.
• Regular Monitoring: We continuously monitor our systems for vulnerabilities and perform regular security assessments.

Despite our best efforts, no system is 100% secure, and we cannot guarantee the security of your data. In the event of a data breach, we will notify you and relevant authorities as required by law.

Children

We do not target children with our services; however, certain products and services are intended to be used by customers with End Users under the age of 18 and/or under the age of 13. For the privacy of student users, please see the “STUDENT PRIVACY” section of this Privacy Policy.

When using the Services, the parties acknowledge that (a) Customer Data may include personally identifiable information from education records that are subject to FERPA (“FERPA Records”) and (b) to the extent that Customer Data includes FERPA Records, MagiCore will be considered a “School Official” (as that term is used in FERPA and its implementing regulations) and will comply with FERPA. “FERPA” means the Family Educational Rights and Privacy Act (20 U.S.C. 1232g) and the Family Educational Rights and Privacy Act Regulations (34 CFR Part 99), as amended or otherwise modified from time to time.

If Customer allows End Users under the age of 13 to use the Services, Customer consents as required under the Children’s Online Privacy Protection Act (“COPPA”) to the collection and use of personal information in the Services from such End Users (to the extent COPPA is applicable in Customer’s jurisdiction). Customer will provide or obtain parental consent for the collection and use of personal information in any third party links that Customer intends to enable or use before allowing any End Users under the age of 18 to access or use External Content.

MagiCore Academy complies with the Children’s Online Privacy Protection Act (COPPA).

Parents’ Bill of Rights for Data Privacy and Security

Compliant with Education Law 2-D

As a parent or guardian, you have the following rights regarding your child’s educational data and information:

1. Right to Privacy
   Your child’s personally identifiable information (PII) cannot be sold or released for any commercial purposes.
2. Right to Security
   Data stored or transmitted by educational institutions will be protected using encryption, firewalls, and password protection in compliance with state and federal laws.
3. Right to Access
   Parents have the right to inspect and review the complete contents of their child’s educational records, including any personal information collected.
4. Right to Correction
   If you believe that any information in your child’s records is inaccurate, misleading, or violates your child’s privacy rights, you have the right to request that the records be corrected.
5. Right to Notification of Breaches
   In the event of a data breach involving your child’s PII, you or your child’s teacher will be notified in accordance with applicable laws and regulations.
6. Right to Transparency
   A list of all student data elements collected by the State Education Department is available for public review. Parents have the right to obtain a copy of this list by contacting the State Education Department.
7. Right to Confidential Contracts
   Educational agencies must ensure that any third-party contractors who receive student PII adhere to data protection and security requirements under the law. The contracts must outline the specific purposes for which data is used.
8. Right to Information on Data Sharing
   You have the right to know which entities your child’s information is shared with and for what educational purposes. Data will only be shared with authorized entities in compliance with the law.
9. Right to Report Concerns
   Parents can contact the educational agency or the New York State Education Department to file complaints about potential breaches of student data.

Cookies and Other Technologies

We use cookies and similar technologies to improve your experience on our site. Cookies help us remember your preferences, track End User activity, and personalize content. You can control cookie settings through your browser, though disabling cookies may affect your experience on our site.

Types of cookies we use:

• Necessary Cookies: These are essential for core functionality, like logging into your account.
• Functionality Cookies: These improve the site by remembering your preferences.
• Analytics Cookies: These help us understand how you use our website so we can improve it.
• Advertising Cookies: These allow us to show you relevant ads and track the effectiveness of our marketing campaigns.

We also use Google Analytics to track site traffic. If you prefer, you can opt out of Google Analytics tracking by visiting the Google Analytics opt-out page.

You can remove cookies stored in your computer via your browser settings. Alternatively, you can control some 3rd party cookies by using a privacy enhancement platform such as optout.aboutads.info or youronlinechoices.com. For more information about cookies, visit allaboutcookies.org.

Student Privacy Policy

Through our Services, we provide a suite of student interactive tools, such as Magicore Academy (“Student Tools”), for use by Members of our Services who have appropriate authority from their school, school district, or other educational institution (“Teachers” and “schools” respectively). Our Student Tools allow a Teacher to exchange schoolwork, provide assignments and assessments, and receive responses from their students (“Student Users”) for a range of educational purposes. These exchanges may involve Student Personal Information. “Student Personal information” as used in this Policy has the same meaning given under applicable data privacy laws such as “Personal Information” as defined under the Children’s Online Privacy and Protection Act (COPPA). We are committed to protecting the privacy of all the Student Users we serve. This Student Privacy Policy (“Policy”) describes how we, Common Core Kingdom, LLC DBA MagiCore (“MagiCore”, “we”, “us, “our”), treat Student Personal Information. By clicking “I accept,” or by registering to use or using a Student Tool, the registrant (“you”) agrees to our collection and use of Student Personal Information in accordance with this Policy, and you represent and warrant that you are a Teacher, and that you have the authority to bind your school under this Policy. Capitalized terms used but not defined herein shall have the meanings assigned in our Terms of Service or Privacy Policy as applicable.

How Student Users may Access our Services. You may use our Student Tools with Student Users if (i) you use them in an education setting, (ii) the use is permitted by your school, and (iii) you are a Teacher authorized to provide consent for your Student Users to use our Student Tools, and to disclose Student Personal Information to us.  Once we have these assurances, we collect Student Personal Information from your Student Users only after you have created a Student Account and invited the Student User to use a Student Tool. More specifically, we permit a Student User to access our Services only through a Student Tool, and a Student User is permitted to access the Student Tool only after you initiate that access by creating a student account and sharing the login details with the Student User. If we find that anyone under the age of 18 has accessed or attempted to access our Services other than as permitted herein, we will remove those individuals and any personal information they may have provided from our system.

COPPA. COPPA requires operators of online services that collect personal information from individuals under the age of 13 to obtain “parental consent” and to comply with certain rules with regard to how personal information collected from such individuals is processed, secured, and disclosed. COPPA permits schools and teachers using such online services in the education setting to act as the parent and provide consent to the operator of an online service to collect personal information from students who may be under the age of 13, for the use and benefit of the learning environment. When a Teacher connects with Student Users through Student Tools, we collect certain information (“Student Information”) — which may include Student Personal Information. We have adopted this Policy and the processes and protocols described herein to ensure that we’re meeting the requirements of COPPA, as applicable.

FERPA. Student Information may include information considered to be an education record subject to the Family Educational Rights and Privacy Act (“FERPA”). To the extent that FERPA applies to any Student Information we may receive as a result of your or your Student Users’ use of the Student Tool, MagiCore acts as a “school official” (as that term is used in FERPA).

Limited Use. Our Student Tools are intended to create interactive learning experiences between students and teachers and deepen student engagement with their learning materials, not to sell anything to students.

• No Ads. We do not display, place, or allow any third-party ads on any Student Tools or other parts of our Services enabled for use by Student Users.
• No Commercial Profiling. We do not use Student Personal Information to create profiles of Student Users for non-educational commercial purposes.
• No Targeted Advertising. We do not use Student Personal Information in order to track and display ads to Students on other websites they may visit.
• No Location Tracking. We do not use technology that enables us to track a Student User’s precise location or movements.

What Information We Collect: When a Student User interacts with our Service through a Student Tool, we may collect the following information.

• Information you and your Student Users provide to us directly: We collect information that you and your Student Users provide to us directly, including.
  • Authentication information: To ensure secure access to our Services, we may require Student Users to create and use login credentials (that may include, for example, an email address and/or a username and password).
  • Name or Nickname: In order for you to identify and distinguish between different Student Users, we may ask a Student User to enter their nickname, first name, or full name, or you may add student names directly, by inputting them yourself or by importing or creating a class roster. You may use initials or an alias to further protect your students’ information.
  • Response information: Using a Student Tool, Student Users can provide responses to questions, add content to materials shared by their Teacher, or otherwise enter or provide information to their Teacher (“Responses”). Such Responses may include text, drawings, answers to multiple choice questions, and other materials or uploads, including video, audio, and other content or formats as the Student Tool may allow. 
  • Teacher Feedback and Corrections. You may review and mark student Responses correct or incorrect (“Corrections”). Corrections will be stored within the teacher portal for review/reference. 

• Information collected automatically: We also collect certain information automatically about a Student User’s device and browser while they use our Services. Where this information includes Student Personal Information, we protect it as such under this Policy.
  • Device and system information: We may collect the IP address associated with that Student User’s use of the Services, and browser and device information (such as device type, browser version, and operating system) for security and performance monitoring purposes. We collect this information to ensure that our Services are working and properly configured for different devices and browser types. We do not use a Student User’s IP address or device information to identify or track their precise location or movements.
  • Authentication Cookies: We store authentication cookies in order to enable our Services to identify and properly authenticate each returning user and ensure that users are only able to access their own information, and for anonymous session tracking so we understand overall usage.

How We Use This Information: We collect and process Student Personal Information only for educational purposes and to serve the needs of Teachers and Student Users, as follows: 

• Fulfill requests and provide the Service. We use Student Personal Information for purposes of (i) permitting Teachers to identify and communicate with specific Student Users, to review and reply to (or grade) their Responses, and to track their progress; (ii) permitting Student Users to receive assignments directed to them, to provide individual (or collective) Responses to these assignments, and to participate in projects via the Student Tools; and (iii) permitting both Teachers and Student Users to interact as identified individuals, using the Student Tools, for educational purposes. 
• Data ownership. All Student Information submitted or uploaded to or collected by our Student Tools remains the property of the school and/or Student User (as the case may be). You grant us a limited license to use Student Information for purposes of providing, maintaining, supporting, and securing our Services. 
• Secure Access. We use authentication information, which may include Student Personal Information, for security purposes to ensure that Teachers and Student Users access only the Student Information and Student Personal Information they are permitted to access.
• Site Security and Operations. We may use Student Personal Information for operational purposes, and site and user security purposes, as set out below.

Use of Aggregated and De-Identified Information. We may use and share de-identified, aggregated, anonymous usage and/or other information that does not constitute Student Personal Information about the use of our Student Tools by Teachers and Student Users, in the manner permitted by applicable law including to understand usage, demonstrate effectiveness, make recommendations, and inform future development and improvements.

Who We Share Information With. We do not sell Student Personal Information, and we only share Student Personal Information in the following ways: 

• Within the classroom or school. Student Tools enable Teachers to interact with Student Users for sharing, completing, and receiving educational instruction and assignments electronically. Teachers will have access to all Student Information including Student Users’ engagement with the Student Tool, the name or nickname, and other profile information about Student Users, and Responses. If Student Users collaborate on a Response, collaborating Student Users will be able to see each other’s names and added Response information. 
• MagiCore staff. Certain employees and/or contractors may have access to Student Personal Information from time to time. We limit access to those who need access to this information to do their work and they are contractually obligated via data security agreements not to use or share this information for any other purpose.
• Service Providers. In order to provide our Services, including our Student Tools, we engage the services of third-party service providers who, among other services, may host, store, transmit, and/or otherwise process information for us (“Service Providers”). We choose Service Providers who have agreed to maintain reasonable security and privacy controls, and, when available, our Service Providers are contractually obligated to protect the security and confidentiality of Student Personal Information consistent with this Policy.
• Safety, security, and law enforcement requirements. We may disclose Student Personal Information, in response to valid requests from law enforcement bodies, such as a court order, subpoena, or other official request for information. We may disclose Student Personal Information to Service Providers and as needed to other third parties for purposes of protecting the safety and security of Teachers, Student Users, and others, and for the security of our systems, including the detection and prevention of fraud and violations of law. 

Security. The security of Student Personal Information is very important to us. We maintain, consistent with accepted industry practice, administrative, technical, and physical safeguards reasonably designed to protect against unauthorized use, disclosure of, or access to Student Personal Information, such as:

• Password Protection. Access to Student Personal Information requires authentication to our Service with the Student User’s or Teacher’s login credentials. We set minimum password requirements to help further prevent unauthorized access. You can help keep your information secure by keeping those login credentials confidential and choosing a strong password.
• Encryption. Data entered into our Student Tools is encrypted in transit using transport layer security (TLS). We utilize one-way encryption for all teacher passwords. 
• Data Access. In order to minimize the impact of any unauthorized access to Student Tools, Student Data (except for Student Name and a list of assignments) cannot be accessed from the Student Tools. Data like Responses and Corrections are only available to the Teacher using the Teacher login.
• Location. Our Servers are located in the United States.
• Firewalls. We utilize industry-standard firewalls to detect and protect against malicious traffic.
• Incident Response. We maintain an incident response plan consistent with industry standards and comply with federal and state law requirements in the event of a data breach, which includes, as applicable, direct notification of impacted users by email or other means as may be required.
• Periodic Assessment and Vulnerability Monitoring. We engage in continuous monitoring for vulnerabilities and conduct periodic vulnerability testing to ensure the security of our Student Tools.

Information Retention and Choices. 

• How long we keep Student User information: We retain Student Personal Information only as long as necessary to provide the Services related to the Student Tool. Except for earlier disposal in response to a valid deletion request or because we otherwise determine that that data is no longer necessary for the provision of the Services, Student Personal Information will be retained for as long as the Teacher associated with such Student User is an active Member of our Services, and for some time thereafter as needed to fulfill our legal obligations.
• Access, deletion, and correction requests: In accordance with COPPA and to support schools’ FERPA obligations, we facilitate parental requests for access to, correction of, and (as applicable) deletion of Student Information. Parents wishing to make such requests should contact their child’s teacher or school to begin that request, and we’ll work with the school to fulfill that request. We allow Teachers to access, correct, or delete Student Information as needed.

Student Data Deletion: When a Teacher elects to delete Student Data from MagiCore Academy, such deletion will be permanent and irreversible. Deleted Student Data cannot be recovered, restored, or accessed by the Teacher, MagiCore Academy, or any third party. Teachers are solely responsible for ensuring that no open or pending requests under the Family Educational Rights and Privacy Act (“FERPA”) or other applicable laws exist that would require access to the Student Data prior to deletion. By initiating deletion, the Teacher acknowledges and agrees that MagiCore Academy shall have no liability for any loss of Student Data resulting from such action and that the Teacher assumes full responsibility for confirming the appropriateness of the deletion.

Student Data Privacy Agreements.

MagiCore is a signatory to the Student Data Privacy Consortium’s (SDPC) National Data Privacy Agreement (NDPA). Schools in Massachusetts, Maine, Illinois, Missouri, Nebraska, New Hampshire, New York, Ohio, Rhode Island, Tennessee, Vermont, and Virginia participate in the NDPA, and MagiCore is explicitly listed by the SDPC as Approved for Use in these states. If your school is located in one of these states and requires an executed Student Data Privacy Agreement, your administrator can log in to their Student Data Privacy Consortium account to complete Exhibit E and add the district to the existing NDPA.

MagiCore is a signatory to the Montana Data Privacy Agreement. Schools in Montana can execute the Optional Exhibit A Part II of the Montana Data Privacy Agreement to become a Subscribing LEA and accept the General Offer Terms.

MagiCore is a signatory to the California Standard Student Data Privacy Agreement [CA-NDPA] per Education Code 49073.1. Schools in California can add the district to the existing NDPA.

If you are not located in one of these states and require a Student Data Privacy Agreement, please email info@magicorelearning.com. We have standing Data Privacy Agreements with many states that are not part of the multi-state alliance and can facilitate individual agreements as needed.

Links to Web Properties Not Owned by MagiCore: The Student Tools may contain links to content, pages, videos, or other web properties that are not owned or otherwise controlled by MagiCore (“External Content”). For example, the Student Tools may contain a link to a YouTube video. Teachers are responsible for monitoring External Content and providing parental consent for any collection and use of personal information that may occur when Students access External Content. 

Other. 

• Modifications to this Policy. We may make changes to this Student Privacy Policy from time to time. For any material changes, we’ll notify you in advance via email and/or through on-site notifications. Your continued use of the Services after email notice of a change signifies your consent and agreement to the updated Policy. In some cases, we provide notice only via on-site notifications in which cases we will incorporate a mechanism to capture your express consent to the updated Policy.
• Successors. As part of a merger, acquisition, bankruptcy, or other transaction in which a third party assumes control of our business (in whole or in part), we may transfer the data we have collected to the third party. In such an event, we’ll notify you in advance of that change so you can make an informed choice. In addition, any purchasing company will have to adhere to the terms of this Policy including notifying you before making material changes.

Contact Information

info@magicorelearning.com

Changes to this Privacy Policy

We reserve the right to make changes to this Privacy Policy.
The last modification was made on December 16, 2025.

Site maintained by ShelleyWeb.com