Privacy Policy

Last updated: January 30, 2026

1. Information We Collect

AccredLeap collects information necessary to provide our accreditation document preparation services. This includes:

  • Account information: Name, email address, institutional affiliation, and role when you create an account.
  • Institutional data: Information provided during AI-guided interviews, uploaded documents (including faculty CVs), and generated accreditation narratives.
  • Usage data: How you interact with our platform, including pages visited, features used, and collaboration activity.
  • Technical data: Browser type, device information, and IP address for security and performance purposes.

2. How We Use Information

We use the information we collect to:

  • Provide and improve our accreditation document preparation services.
  • Generate AI-powered narrative drafts based on your interview responses and institutional data.
  • Enable real-time collaboration between your team members.
  • Send service-related notifications (review assignments, approval requests, system updates).
  • Maintain platform security and prevent unauthorized access.

We do not sell your data to third parties. Institutional data is never used to train AI models. Your accreditation documents remain your property.

3. Data Security

We implement industry-standard security measures to protect your data, including:

  • Encryption in transit (TLS 1.3) and at rest (AES-256).
  • SOC2-compliant security practices and infrastructure.
  • Institutional data isolation -- each institution's data is logically separated using row-level security policies.
  • Regular security audits and vulnerability assessments.
  • Role-based access controls ensuring team members only access authorized data.

4. Data Retention

We retain your institutional data for as long as your account is active. Upon account termination, we will delete your data within 90 days, unless retention is required by law. You may request data export at any time before account closure.

5. Your Rights

You have the right to:

  • Access and export your institutional data at any time.
  • Request correction of inaccurate personal information.
  • Request deletion of your account and associated data.
  • Opt out of non-essential communications.

6. Third-Party Services

AccredLeap uses third-party services to provide our platform, including cloud hosting (Supabase, Vercel), AI processing (Anthropic), and email delivery. These providers are contractually bound to protect your data and process it only as instructed.

7. Contact Us

If you have questions about this privacy policy or our data practices, please contact us at privacy@accredleap.com.