‍

Socratic AI — Privacy Policy

‍

Effective Date: Jan 5th 2026

Last Updated: March 31st 2026

‍

This Privacy Policy explains how Socratic Technologies Inc. (“we,” “us,” or “our”) collects, uses, and protects your information when you use the Socratic AI mobile application and related services (the “App”). By using the App, you acknowledge that you have read and understood this Privacy Policy.

Our Terms of Use are available at https://getsocratic.ai/terms-of-use

‍

1. Who This Policy Applies To

‍

This policy applies to individual users of the App — medical students, healthcare trainees, residents, clinicians, and educators. If your access is provided by an institution, your institution’s agreement with us also governs how we handle data related to their license.

The App is for users 18 and older in the United States. We do not knowingly collect personal information from anyone under 13. See Section 9 for our children’s privacy commitment.

‍

2. Information We Collect

‍

Information you provide

Account data: Name, email address, institution or organization name, and role (admin, educator, learner) — provided when your institution provisions your account.
Content you submit: Prompts, responses, and inputs you provide during AI simulations, clinical exercises, and assessments. This is educational content only. Do not submit real patient information.

Information collected automatically

Usage data: Which features you use, simulation sessions started and completed, assessment scores, time spent on activities, and learning progress.
Technical data: IP address, device type, operating system, app version, session identifiers, and crash or diagnostic reports.

‍

3. How We Use Your Information

‍

We use the information we collect to:

Provide the App — deliver AI-powered simulations, generate educational feedback, and operate all platform features.
Generate AI assessments and feedback — the App uses automated AI systems to produce assessment scores, competency evaluations, and learning feedback. These AI-generated outputs are advisory only. You or your institution may request human review of any AI-generated assessment that affects your academic standing by contacting support@getsocratic.ai.
Improve the platform — analyze usage patterns to fix bugs, improve reliability, and develop new features.
Communicate with you — send account-related notices, respond to support requests, and notify you of material changes to these policies.
Ensure security — detect and prevent fraud, abuse, and unauthorized access.
Comply with legal obligations — respond to lawful requests and meet regulatory requirements.

‍

4. How We Share Your Information

‍

We do not sell your personal information. We share it only in the following circumstances:

‍With your institution. If your access is provided through a university, medical school, hospital, or other organization, that institution can view your usage activity, assessment scores, and learning progress for their learners. This is a core function of the platform. Your institution’s own privacy policies govern how they use that information.

‍With AI providers. Content you submit to the App is processed by third-party AI model providers that power our platform.

With service providers. We share data with vendors who help us operate the App — including cloud infrastructure, analytics, and customer support tools.

With your institution’s integrated systems. If your institution connects the App to a learning management system (such as Canvas or Blackboard), relevant data may be shared with that system as configured by your institution.

‍For legal reasons. We may disclose information if required by law, court order, or to protect the rights, safety, or property of Socratic AI, our users, or the public.

‍In a business transfer. If Socratic Technologies Inc. is acquired, merged, or transfers its assets, your information may transfer as part of that transaction. We will notify you via email or in-app notice before your information becomes subject to a materially different privacy policy.

‍

5. What We Do Not Do

‍

We want to be explicit about practices we do not engage in:

We do not sell your personal information to any third party.
We do not use your data for targeted advertising or share it with advertising networks.
We do not process real patient health information. Submitting protected health information (PHI) is prohibited under our Terms of Use.
We do not track you across other apps or websites.

‍

6. Data Retention

‍

We retain your information for as long as your account is active under your institution’s subscription. Account closure and deletion requests are managed by your institution’s administrators. Once your account is closed or deletion is requested by your institution, we delete or de-identify your personal information within 30 days, except where:

Your institution’s agreement requires us to retain records for a longer period (for example, for accreditation documentation).
Applicable law or compliance requires retention.
The information is needed to resolve an open dispute or enforce our agreements.

Aggregated, de-identified data that cannot identify you may be retained indefinitely.

‍

7. Data Security

‍

We protect your data using industry-standard security measures, including:

Encryption in transit using TLS 1.2 or higher
Encryption at rest using AES-256
Access controls limiting who within our team can access personal data
All data stored and processed in the United States

No system is perfectly secure. If you become aware of a security issue, please contact us at security@getsocratic.ai.

‍

8. Your Rights and Choices

‍

You have the right to:

Access the personal information we hold about you
Correct inaccurate information in your account
Delete your personal data — request deletion by emailing privacy@getsocratic.ai
Object to certain uses of your data

California residents have additional rights under the CCPA/CPRA, including the right to know, delete, correct, and opt out of the sale of personal information. We do not sell personal information. To exercise your California rights, contact privacy@getsocratic.ai.

Responding to requests. We respond to verified requests within 45 days. We may need to verify your identity before processing your request.

If your access is through an institution, some rights — such as access to your educational records — must be exercised through your institution under applicable law, including the Family Educational Rights and Privacy Act (FERPA). Where FERPA applies, your institution controls access to, and correction of, education records held on their behalf. Contact your institution’s registrar or privacy office for those requests.

‍

9. Children’s Privacy

‍

The App is not directed at children under 13. We do not knowingly collect personal information from anyone under 13. If you are a parent or guardian and believe your child has provided us with personal information, contact us immediately at privacy@getsocratic.ai. We will delete the information promptly.

‍

10. Third-Party Links and Services

‍

The App may connect to third-party services such as learning management systems. This policy does not cover those services. Review their privacy policies before using them.

‍

11. Changes to This Policy

‍

We may update this policy from time to time. We will notify you of material changes by email or in-app notice. The “Last Updated” date at the top of this page reflects the most recent revision. Continued use of the App after the effective date constitutes acceptance.

‍