{"component": "clause", "props": {"groups": [{"snippet": "[Box 30]", "samples": [{"hash": "czTSL1xiz4F", "uri": "/contracts/czTSL1xiz4F#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 33.1604024921, "published": true}, {"hash": "bDK2nGlsLjF", "uri": "/contracts/bDK2nGlsLjF#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 31.6083150741, "published": true}, {"hash": "fhHKWvoRB2q", "uri": "/contracts/fhHKWvoRB2q#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 30.3792370307, "published": true}], "size": 12, "snippet_links": [], "hash": "640e50ee3f66a5b849067138da829b46", "id": 1}, {"snippet": "\u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587/privacy-policy/ \u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587/terms-of-service/ [Box 30]", "samples": [{"hash": "94iIdIoB3fc", "uri": "/contracts/94iIdIoB3fc#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.8572606561, "published": true}], "size": 4, "snippet_links": [], "hash": "ab0761a35b2c6f7bf5b3e4649867f113", "id": 2}, {"snippet": "The data is encrypted at rest in the database. Teacher credentials may be stored in Scholastic\u2019s systems and external systems, such as Google or Clever. Student credentials are encoded and are reversible to support features like login sheets that teachers can print out.", "samples": [{"hash": "jIR64ODOQkF", "uri": "/contracts/jIR64ODOQkF#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 30.2834291654, "published": true}, {"hash": "407QYJg5p5Z", "uri": "/contracts/407QYJg5p5Z#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 30.2834291654, "published": true}, {"hash": "1rcYt3YDGGw", "uri": "/contracts/1rcYt3YDGGw#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 30.2834291654, "published": true}], "size": 3, "snippet_links": [{"key": "the-database", "type": "definition", "offset": [33, 45]}, {"key": "teacher-credentials", "type": "clause", "offset": [47, 66]}, {"key": "external-systems", "type": "definition", "offset": [109, 125]}, {"key": "support-features", "type": "clause", "offset": [207, 223]}], "hash": "67511b6ce2a04c00596fc7c9619a9ec5", "id": 3}, {"snippet": "All stored data is encrypted at rest. [Box 30]", "samples": [{"hash": "cwluHWOuS5F", "uri": "/contracts/cwluHWOuS5F#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.8572606561, "published": true}, {"hash": "95wfDMLm6Fa", "uri": "/contracts/95wfDMLm6Fa#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.8572606561, "published": true}], "size": 2, "snippet_links": [{"key": "stored-data", "type": "clause", "offset": [4, 15]}], "hash": "43ad9ff1c6dfe85bda8b2064971f2286", "id": 4}, {"snippet": "Apex Learning takes the confidentiality of student data very seriously. We are committed to ensuring compliance with applicable federal and state laws. Accordingly, Apex Learning has adopted and incorporated certain NIST and CIS standards, guidelines, and best practices into its cyber security framework. Further, Apex Learning is currently taking the steps necessary to obtain SOC 2 certification so that Apex Learning will become SOC 2-compliant.", "samples": [{"hash": "IugK9G2gK3", "uri": "/contracts/IugK9G2gK3#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 31.7304809142, "published": true}, {"hash": "2fFnQPAKBl3", "uri": "/contracts/2fFnQPAKBl3#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 31.7304809142, "published": true}], "size": 2, "snippet_links": [{"key": "student-data", "type": "definition", "offset": [43, 55]}, {"key": "applicable-federal-and-state-laws", "type": "clause", "offset": [117, 150]}, {"key": "best-practices", "type": "clause", "offset": [256, 270]}, {"key": "cyber-security-framework", "type": "definition", "offset": [280, 304]}, {"key": "soc-2", "type": "definition", "offset": [379, 384]}], "hash": "a241741a78b64e727eb5a6a540701da8", "id": 5}, {"snippet": "As described in Imagine Learning's Privacy Policy (\u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587\u2587/privacy/policy) [Box 30] Imagine Learning\u00ae (hereafter \u201cwe\u201d, \u201cus\u201d, \u201cour\u201d) hereby informs you that we share the following information with the following third parties: \u2022 Our products and services are hosted in Amazon Web Services (AWS) and Microsoft Azure. Both providers are certified and compliant with a number of standards, including FERPA, ISO 27001, NIST 800, SOC II, and many others (for details, please visit \u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587\u2587/compliance/ and \u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587\u2587/en-us/trustcenter/compliance, respectively). In providing our products and services to you, PII and non-PII is stored and processed in these environments. \u2022 We provide Lexile assessment tools within our Imagine Language & Literacy product, and we have partnered with MetaMetrics\u00ae to provide this service. If a school or district participates in these in-product assessments, we are obligated to provide MetaMetrics\u00ae with non-PII information regarding how many Imagine Learning users have completed an assessment. No directory or otherwise personally-identifiable information is shared. \u2022 \u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587 provides Imagine Learning with centralized logging services. Although efforts are made to reduce the amount of PII stored, some identifying information is required to make troubleshooting and audit trails possible. Logs are retained for a rolling window of 30 days and purged thereafter. It should also be noted that the actual servers hosting this service are running in AWS (with its accompanying compliance and safeguards), and that we control the access keys. \u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587 is not authorized to access the data without our permission.", "samples": [{"hash": "j2Dln1zDjvU", "uri": "/contracts/j2Dln1zDjvU#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.8052506721, "published": true}, {"hash": "hmPPBuY4DPE", "uri": "/contracts/hmPPBuY4DPE#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.8052506721, "published": true}], "size": 2, "snippet_links": [{"key": "privacy-policy", "type": "definition", "offset": [35, 49]}, {"key": "third-parties", "type": "clause", "offset": [230, 243]}, {"key": "our-products-and-services", "type": "clause", "offset": [247, 272]}, {"key": "amazon-web-services", "type": "clause", "offset": [287, 306]}, {"key": "microsoft-azure", "type": "definition", "offset": [317, 332]}, {"key": "of-standards", "type": "clause", "offset": [391, 403]}, {"key": "iso-27001", "type": "definition", "offset": [422, 431]}, {"key": "we-provide", "type": "clause", "offset": [716, 726]}, {"key": "assessment-tools", "type": "definition", "offset": [734, 750]}, {"key": "to-provide", "type": "definition", "offset": [839, 849]}, {"key": "a-school", "type": "clause", "offset": [867, 875]}, {"key": "participates-in", "type": "definition", "offset": [888, 903]}, {"key": "information-regarding", "type": "clause", "offset": [988, 1009]}, {"key": "identifiable-information", "type": "definition", "offset": [1109, 1133]}, {"key": "identifying-information", "type": "definition", "offset": [1286, 1309]}, {"key": "audit-trails", "type": "clause", "offset": [1350, 1362]}, {"key": "access-keys", "type": "clause", "offset": [1609, 1620]}, {"key": "the-data", "type": "clause", "offset": [1661, 1669]}], "hash": "cd2ce29d209434c38d608d9444837b3c", "id": 6}, {"snippet": "Our Privacy Policy can be viewed online at \u2587\u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587\u2587/privacy-policy.html", "samples": [{"hash": "3yxQ5fl7ZwS", "uri": "/contracts/3yxQ5fl7ZwS#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.4439181515, "published": true}, {"hash": "3r0K6gNvzPP", "uri": "/contracts/3r0K6gNvzPP#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.4439181515, "published": true}], "size": 2, "snippet_links": [{"key": "our-privacy-policy", "type": "definition", "offset": [0, 18]}], "hash": "00e2534c2e95f44f76d3f4ef94bbe346", "id": 7}, {"snippet": "Encryption of data in motion and in rest. Enforcing strong passwords for all users, especially employees. Access controls to limit the risk each level of access protects. Training on applicable laws.", "samples": [{"hash": "chyE2TEvPaq", "uri": "/contracts/chyE2TEvPaq#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 30.9267105467, "published": true}, {"hash": "bMjCppGRRzg", "uri": "/contracts/bMjCppGRRzg#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 30.9267105467, "published": true}], "size": 2, "snippet_links": [{"key": "encryption-of-data", "type": "clause", "offset": [0, 18]}, {"key": "in-motion", "type": "clause", "offset": [19, 28]}, {"key": "all-users", "type": "clause", "offset": [73, 82]}, {"key": "access-controls", "type": "definition", "offset": [106, 121]}, {"key": "the-risk", "type": "definition", "offset": [131, 139]}, {"key": "level-of-access", "type": "clause", "offset": [145, 160]}, {"key": "applicable-laws", "type": "definition", "offset": [183, 198]}], "hash": "a8c1b2141b3b5257f8d198632d6a468c", "id": 8}, {"snippet": "See information about Amplify's information security program at \u2587\u2587\u2587\u2587://\u2587\u2587\u2587.\u2587\u2587\u2587\u2587\u2587\u2587\u2587.\u2587\u2587\u2587/security", "samples": [{"hash": "71yWqYBnQG4", "uri": "/contracts/71yWqYBnQG4#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 29.6538346219, "published": true}], "size": 1, "snippet_links": [{"key": "information-security-program", "type": "definition", "offset": [32, 60]}], "hash": "aff0a4e80c2991cef16744f02ac34ff8", "id": 9}, {"snippet": "Passwords and Employee Access Security Technology - SSL Security Protocols Back-ups Employee Training [Box 26] [Box 27] [Box 28] [Box 29] [Box 30]", "samples": [{"hash": "cIxQMn5Y7ki", "uri": "/contracts/cIxQMn5Y7ki#additional-data-security-measures", "label": "Data Privacy Agreement", "score": 28.8572606561, "published": true}], "size": 1, "snippet_links": [{"key": "security-technology", "type": "clause", "offset": [30, 49]}, {"key": "security-protocols", "type": "definition", "offset": [56, 74]}, {"key": "employee-training", "type": "clause", "offset": [84, 101]}], "hash": "815fc0484ab4d97aab09eeb5ffc22c86", "id": 10}], "next_curs": "CmoSZGoVc35sYXdpbnNpZGVyY29udHJhY3RzckYLEhZDbGF1c2VTbmlwcGV0R3JvdXBfdjU2IiphZGRpdGlvbmFsLWRhdGEtc2VjdXJpdHktbWVhc3VyZXMjMDAwMDAwMGEMogECZW4YACAA", "clause": {"size": 87, "children": [["authorized-use", "Authorized Use"], ["data-transfer", "Data Transfer"], ["insurance", "Insurance"]], "parents": [["data-provisions", "Data Provisions"], ["assignment", "Assignment"], ["timing-of-return-or-disposition", "Timing of Return or Disposition"], ["signatures", "Signatures"], ["duties-of-lea", "Duties of Lea"]], "title": "Additional Data Security Measures", "id": "additional-data-security-measures", "related": [["security-measures", "Security Measures", "Security Measures"], ["safeguard-measures", "Safeguard Measures", "Safeguard Measures"], ["safety-measures", "Safety Measures", "Safety Measures"], ["security-safeguards", "Security Safeguards", "Security Safeguards"], ["bilateral-safeguard-measures", "Bilateral Safeguard Measures", "Bilateral Safeguard Measures"]], "related_snippets": [], "updated": "2025-07-07T12:36:22+00:00", "also_ask": [], "drafting_tip": null, "explanation": "The \"Additional Data Security Measures\" clause outlines specific requirements or protocols that a party must implement to enhance the protection of sensitive data beyond standard security practices. This may include obligations such as encryption of data at rest and in transit, regular security audits, multi-factor authentication, or prompt notification of security incidents. By detailing these extra safeguards, the clause ensures a higher level of data protection, addressing potential vulnerabilities and reducing the risk of data breaches or unauthorized access."}, "json": true, "cursor": ""}}