Khan Academy Privacy Policy

This is Khan Academy's privacy policy, explaining how the free educational nonprofit collects and uses personal information including your name, age, learning progress, device data, and AI tutoring conversation logs. The most important thing to know is that if your child is under 13, Khan Academy requires parental consent before collecting their data, and parents can request deletion of their child's account and personal information at any time by contacting privacy@khanacademy.org. If you want to review or delete your child's data, contact Khan Academy directly at privacy@khanacademy.org.

This document is Khan Academy's Privacy Policy, governing the collection, use, and disclosure of personal information from users of its free educational platform, operating under a nonprofit model with legal bases including consent and legitimate interest, with specific COPPA-compliant provisions for children under 13. The policy creates obligations for Khan Academy to provide parental access and deletion rights for child data, maintain data security, and restrict use of student data to educational purposes, while users are obligated to provide accurate information and parents must authorize child accounts. A notable provision permits sharing of user data with third-party service providers, advertising partners, and affiliates, and the policy explicitly states that Khanmigo AI interactions may be reviewed by staff — an uncommon disclosure that raises transparency but also surveillance considerations. The policy engages COPPA (16 C.F.R. Part 312), FERPA, CCPA/CPRA (Cal. Civ. Code §1798.100 et seq.), GDPR for international users, and the FTC Act Section 5; material compliance considerations include the adequacy of verifiable parental consent mechanisms, the lawful basis for processing EU user data, and the scope of data sharing with third-party analytics and advertising vendors in the context of a platform primarily serving minors.