Skip to Content

HonestIQ Data Privacy & Compliance Statement

Effective Date: 06/14/2025


At HonestIQ, protecting student and institutional data is central to our mission. Our platform is designed to uphold the highest privacy and security standards, ensuring compliance with both FERPA (U.S.) and GDPR (EU/International) requirements.




1. Our Role

  • Institutions (Controllers): Own and control all student and staff data.
  • HonestIQ (Processor/School Official): Processes data only under the direction of the institution, with a legitimate educational interest, and never for unrelated or commercial purposes.




2. How We Use Data

HonestIQ processes education-related data to:

  • Provide academic integrity detection and analytics.
  • Support grading workflows, appeals, and dispute resolution.
  • Generate institutional reports on course and program outcomes.
  • Maintain platform security, monitoring, and fraud prevention.


We do not sell, monetize, or share personal data with unauthorized third parties.




3. Privacy Rights Protected

HonestIQ supports the privacy rights guaranteed under both FERPA and GDPR, including:

  • Access & Review: Students, parents (where applicable), and staff may access their data.
  • Correction: Institutions may correct or update inaccurate records.
  • Deletion: Data may be deleted or returned at the institution’s request.
  • Restriction & Objection (GDPR): European data subjects may restrict or object to processing where applicable.
  • Portability (GDPR): Individuals may request export of their personal data.




4. Security Measures

We employ strict technical and organizational safeguards, including:

  • Encryption of data in transit and at rest.
  • Role-based access controls.
  • Regular audits and monitoring.
  • Secure hosting with leading cloud providers.




5. Data Transfers

Where data is transferred internationally (e.g., EU to U.S.), HonestIQ uses Standard Contractual Clauses (SCCs) or equivalent safeguards to ensure lawful transfer and GDPR-level protection.




6. Breach Notification

In the event of a security incident involving personal data, HonestIQ will promptly notify the institution and provide details required under FERPA and GDPR obligations.




7. Institutional Control

Institutions remain the owners of all student and staff records. HonestIQ acts only on institutional instructions and provides full transparency to support audits, compliance reviews, or regulatory inquiries.




8. Commitment to Compliance

By partnering with HonestIQ, institutions can be assured that:

  • We operate in full compliance with FERPA for U.S. schools.
  • We align with GDPR for EU and international partners.
  • We continuously review and update our practices to meet evolving global privacy standards.