Achieve3000 Literacy Solutions

Thumbnail
Show Overview
Audience
Parents, Teachers, Students
Good To Know
Used with Under 13
Privacy Policy
Policy length: 5,600 words
No. of policies: 2
Time to read: 46 minutes

App Overview

Achieve3000 provides a cloud-based service for nonfiction reading and writing that maps student work to that student's reading level. The terms of Achieve3000 specify that users can access "interactive services" that include chat rooms and online bulletin boards. The terms also specify that Achieve3000 does not rent or sell data to third parties. In addition, Achieve3000 may work with business partners to improve their services and that these business partners may receive aggregate or anonymized data. Achieve3000 also makes reasonable efforts that include physical, administrative, and technical safeguards to keep data secure. The terms do not contain details on encryption, if data is encrypted at transit, or if data is encrypted at rest. As noted in the Security section and in the terms, accounts are only available via participating schools, districts, or educational agencies. The terms also specify that schools and districts often sign a "School District Agreement" that contains additional provisions governing the use of the service.
Safety
What's This?
Evaluating Safety takes into consideration best practices that protect a user's physical and emotional health.
The terms of Achieve3000 specify that users can access "interactive services" that include chat rooms and online bulletin boards. Use of these interactive services is governed by a code of conduct that is included in the terms. Achieve3000 is not obligated to monitor any social interactions, but may monitor interactions at their discretion. The terms also specify that the code of conduct is based on state and federal laws, and Achieve3000 states that they have "the right at all times to disclose information it deems necessary to satisfy any applicable law."
Privacy
What's This?
Evaluating Privacy takes into consideration best practices that protect the disclosure of a user's personal information.
The terms specify that Achieve3000 does not rent or sell data to third parties. The terms also state that Achieve3000 can work with business partners to improve their services and that these business partners can also receive aggregate or anonymized data. However, the terms do not specify limits placed on partners receiving this data.

The terms also state that the service can be connected with third party providers such as Facebook or Google, and that Achieve3000 can receive information from these services. However, the terms do not provide details about what information could be collected from these services. The terms also state that Achieve3000 may allow third-party service providers to place and read their own cookies, web beacons, and similar technologies to collect information. Lastly, the terms do not list third-party service providers, the data they can collect, or the ways in which that data can be used.
Security
What's This?
Evaluating Security takes into consideration best practices that protect the integrity and confidentiality of a user's data.
Achieve3000's terms of use specify that student data should be provided in an "electronic form (.CSV comma separated values or .XLS Excel format) regarding each student who will utilize each Service." The pre-set sample rosters used to generate these lists include fields for student IDs, student first and last name, email address, password, gender, and grade level.

The terms also state that Achieve3000 makes reasonable efforts that include physical, administrative, and technical safeguards to keep data secure. However, the terms do not contain details about encryption, if data is encrypted in transit, or if data is encrypted at rest. The terms do not contain details about regular security audits and do not contain details on any data breach notification practices.
Compliance
What's This?
Evaluating Compliance takes into consideration best practices of companies that collect personal information from children or students and the legal obligations for the privacy and security of that information.
As noted in the Security section and in the terms, accounts are only available via participating schools, districts, or educational agencies. The terms also specify that schools and districts often sign a "School District Agreement" that contains additional provisions governing the use of the service. The contents of different School District Agreements are outside the scope of this evaluation as they are not publicly available, and can vary between districts. Ideally, these agreements would be publicly available, consistent across districts, and address requirements and responsibilities under FERPA and COPPA.

The privacy evaluations have been designed with the help and support of a consortium of schools and districts across the United States. These evaluations are designed to streamline making an informed decision about the potential privacy implications of educational technology used to support teaching and learning. The bars in the evaluations are not a measure of absolute safety or risk rather, they suggest areas to be considered and examined as part of using the application.

Our core evaluation criteria are freely available, and will remain freely available. People are encouraged to read the questions we use and the information security primer we released. Vendors are encouraged to use our questions and the information security primer to self-evaluate. You can also learn more about our evaluation process.

Please be in touch with any questions or feedback.

Common Sense is the nation‘s leading independent non-profit organization dedicated to empowering kids to thrive in a world of media and technology.

Families, educators, and policymakers turn to Common Sense for unbiased information and trusted advice to help them learn how to harness the positive power of media and technology for all kids.

Privacy Policy