Privacy Policy.

Who we are

CohortLedger is software operated by Ravencord Inc., a Delaware C-corporation headquartered in Brentwood, Tennessee. We provide operations and ESA-compliance software for independent microschools, learning pods, and homeschool co-ops in the United States. This policy describes how we collect, use, share, and protect personal information when you use CohortLedger.

What we collect

We collect three categories of information.

Operator account information

The person running the school provides: name, email, school name and address, the US state the school operates in, payment method (handled by Stripe), and any documents the operator uploads to support ESA vendor registration or quarterly state reporting.

Family information

For each enrolled family the operator records: family name, primary contact, email, phone number, the ESA program the family is enrolled in, and the payment platform that program uses (for example ClassWallet, Odyssey, Step Up, Student First, or EMA).

Student records

For each student the operator records: first and last name, grade level, family relationship, enrollment date, attendance entries, the ESA program assigned to that student, and per-quarter funding amounts and statuses. We do not store child photos. We do not collect biometric data. We do not collect social security numbers. We do not collect health records.

How we use it

We use this information solely to deliver the service you are paying for. Specifically:

• Service delivery: rendering the dashboard, generating invoices, tracking attendance, and surfacing compliance deadlines.
• Billing: charging the operator’s subscription through Stripe and recording family payments the operator marks as received.
• Compliance reporting: producing dated records you can hand to a state ESA program reviewer or attach to a quarterly state report.
• Support: responding when you write to us.
• Security: detecting and preventing fraud, abuse, and unauthorized access.

We do not use student records for advertising. We do not use student records to train AI models. We do not sell any data to anyone.

How we store it

Data is encrypted in transit using TLS. Data is encrypted at rest in our database. Infrastructure is hosted in the United States. Production access is limited to a small number of authorized Ravencord employees through audited role-based controls.

Who we share it with

We share information only with the limited set of service providers necessary to operate CohortLedger:

• Stripe processes operator subscription payments and out-of-pocket family balances the operator chooses to collect through CohortLedger. Stripe receives only what it needs to charge a card or bank account.
• Our hosting provider stores encrypted data on our behalf. The hosting provider does not access content.
• State ESA payment platforms (ClassWallet, Odyssey, Step Up, Student First, EMA) receive only what the operator actively submits to them. We do not push data to these platforms automatically.

We do not share with third-party advertisers. We do not embed third-party advertising trackers in the dashboard. We have no arrangements that would allow any party to use student records for marketing.

Operator and family rights

Operators can access, correct, export, and delete their own account and family records at any time inside the dashboard. Families with questions about their own information should contact the school (which is the controller of that information). CohortLedger will honor verified deletion or correction requests routed through the school, subject to state record-retention rules that may require retention of attendance or funding records for a defined period after the end of the school year.

Student data and US privacy law

CohortLedger acts as a service provider on behalf of the school. The school is the controller of student records. Our practices are designed to align with COPPA (Children’s Online Privacy Protection Act) and FERPA-style principles for student record handling, including data minimization, purpose limitation, and no use of student records for marketing or profiling. See our Children’s Privacy page for details specific to children under 13, and our Data Processing Addendum for the contractual terms available to schools that operate in states with stricter student data privacy laws (including California, Colorado, Connecticut, Utah, Texas, Virginia, plus state-specific student data privacy statutes).

Cookies and analytics

We use a small number of session and security cookies necessary for the dashboard to function. We use anonymous, aggregated analytics to understand which screens operators use. We do not use behavioral advertising cookies. See our Cookies Policy for the full list.

Data retention

We retain account, family, and student data while the operator’s subscription is active and for a defined retention period after cancellation, so a school can recover records during audit. After that period, we delete or anonymize records unless state record-retention rules require longer retention. Specific retention windows are documented in the DPA.

Breach notification

If a security event affects personal information CohortLedger holds, we will notify the affected operator without undue delay and within any timelines required by applicable US state law. We will provide the facts the operator needs to fulfill any notification obligations to the families they serve.

Changes to this policy

We will publish changes here, with a revised effective date and a plain-English summary of what changed. Material changes will be announced by email to active operators.

Contact us about privacy

Email privacy@cohortledger.com or write to Ravencord Inc., Brentwood, Tennessee, United States. We respond within two business days.