Who We Are
Jasmine Lantern is a voice AI assistant that answers common parent calls, routes inquiries, and covers after-hours/attendance workflows for schools. We help schools improve communication while reducing administrative burden on front office staff.
Questions About This Policy?
Privacy Questions: [email protected]
Security Questions: [email protected]
General Support: [email protected]
Phone: (773) 207-8914
Our Role (Controller vs. Processor)
For School Use:
The school/district is the data controller. Jasmine Lantern acts as a data processor/service provider under the school's direction and contractual terms (e.g., NDPA/DPA).
For Our Website and Marketing:
Jasmine Lantern is the controller of information you submit (e.g., demo requests, webinar registrations).
What We Collect and Why (School Use)
We process only what is needed to deliver and improve the service, as instructed by the school:
- Contact information (parent/guardian/staff names, phone numbers, email addresses) to route calls and send confirmations/notifications
- Call/audio data (call metadata, audio streams, transcripts) to answer, route, and improve responses; to provide audit trails; and to detect abuse or quality issues
- Attendance/after-hours notes the school asks Lantern to capture and deliver
- Technical data (device/connection info, logs, diagnostics) for reliability and security
- Opt-in/opt-out records for SMS/voice compliance (e.g., STOP/HELP requests)
Legal/Compliance Framework for K-12
SOPPA (Illinois) and FERPA:
We process student data only as directed by the school, for school purposes. We sign the Illinois NDPA (or district-provided addendum) upon request.
COPPA:
When Lantern interacts with children, we do so as the school's operator under school authorization and direction.
International Transfers:
For EEA/UK transfers we can offer SCCs/UK IDTA via our DPA if applicable.
Security
We use industry safeguards designed to protect data:
- Encryption in transit (TLS) and at rest
- Least-privilege access controls
- Multi-factor authentication (MFA) for staff
- Comprehensive logging and monitoring
- Production and customer data are logically separated
- Access is restricted and audited
Security questions and vendor security profile: [email protected]. We will provide our current subprocessor list and security overview upon request.
Breach/Incident Notice
If we become aware of a security incident affecting school data, we will notify the school without undue delay, and no later than 30 calendar days from confirmation of the incident, providing known details and remediation steps, consistent with contract and law.
Data Retention & Deletion (School Use)
Retention is configurable by the school and documented in the NDPA/DPA. Defaults (unless the school sets different terms):
- Audio recordings: up to 30 days
- Transcripts and call logs: up to 12 months
- Diagnostic logs: up to 12 months
Upon contract termination or written request, we delete or return data and then delete residual copies from backups on our standard schedule (typically within 30–60 days), subject to legal holds.
Sub-processors
We use vetted providers (e.g., telephony, cloud hosting, analytics strictly for service operation). A current list is available upon request. We require confidentiality, security, and data protection obligations from all sub-processors.
SMS and Voice Compliance
- We honor STOP to opt out and HELP for assistance
- Message and data rates may apply
- Schools are responsible for obtaining any required consent for contacting parents/guardians and for the content/instructions they provide to Lantern
Cookies & Website Analytics
Our marketing site may use essential cookies and limited analytics to improve the site. We do not use student data for advertising. You can manage cookies via your browser settings.
Children's Privacy
Lantern interacts with students only under school authorization and does not directly market to students. Requests to access/delete a student's information should come through the school, and we will assist the school in fulfilling the request.
Your Choices & Rights
Schools can request access, correction, export, and deletion consistent with FERPA/SOPPA and contract terms by emailing [email protected] (and referencing district/school name). For website/demo submissions, you may request access/deletion directly at the same address.
Changes to This Policy
We may update this policy. Material changes will be posted with a new "Last updated" date. Continued use after an update means you accept the revised policy.
Contact Information
Email: [email protected]
Phone: (773) 207-8914
Mail: Jasmine Lantern, Attn: Privacy
4922 N Albany Ave, Suite G
Chicago, IL 60625