Privacy Policy

Our full privacy policy is in preparation. In the meantime, the most important things to know:

• Korus stores data in U.S.-based cloud infrastructure. AI and ML processing is performed by providers operating under U.S.-only data residency commitments.
• Student identity data is stored under strict access controls and separated from response data in normal operations.
• All access to the Korus platform requires SAML 2.0 SSO authentication. There is no anonymous or unauthenticated access.
• Korus is FERPA-compliant. A Data Processing Agreement (DPA) and Business Associate Agreement (BAA) are available for institutional customers.
• Korus does not sell customer data to any third party.

For the full privacy policy, DPA, BAA, or any other documentation, contact team@heykorus.com. See also our Trust & Security page.