Privacy Policy
Logger by Glyphholm
Last Updated: July 2, 2026
1. Introduction
Logger is operated by Glyphholm LLC, a Missouri limited liability company ("Glyphholm," "we," "us," or "our"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application.
Please read this Privacy Policy carefully. If you do not agree with our policies and practices, please do not use our Service.
2. Information We Collect
A. Information You Provide Directly
- Account Registration: Email address, password (hashed)
- Profile Data: Names of children, school years, curriculum information
- Usage Data: Classes, assignments, grades, attendance records, test scores, learning entries
- Optional Information: Curriculum choices, subject preferences, transcripts, learning styles
B. Automatically Collected Information
- Device Information: Browser type, IP address, operating system
- Server Logs: Request timestamps and pages accessed, recorded in standard web server and Cloudflare logs for security, debugging, and abuse prevention
- Session Information: Login timestamps, session duration
C. Payment Information
Stripe Payment Processing: We use Stripe to process payments. Stripe collects and processes payment information (credit card details). We do not store raw payment card data on our servers. See Stripe's Privacy Policy for details.
3. How We Use Your Information
We use collected information for:
- Providing and maintaining the Logger service
- Processing your subscription payments
- Improving and personalizing your experience
- Communicating updates, features, or support requests
- Detecting and preventing fraud or security issues
- Complying with legal obligations
4. Data Storage and Security
Storage Locations
- Application Data: Stored on our Vultr VPS server (USA)
- User Credentials: PostgreSQL database with encrypted passwords
- Learning Records: JSON file-based storage with daily automated backups
- Payment Data: Processed by Stripe; we retain only transaction IDs
Security Measures
- HTTPS encryption for all data in transit
- Encryption at rest (AES-256) for stored learning records
- File-level access controls (root ownership)
- Daily automated backups (30-day retention on the server); an encrypted off-site copy is kept for disaster recovery
- No data mining or selling to third parties
Data Breach Notification
In the event of a data breach affecting your personal information, we will notify affected users without undue delay by email to the address on your account, and will notify regulators or other authorities where required by applicable law. Our notice will describe, to the extent known, what happened, the information involved, and steps you can take.
5. Data Retention and Deletion
We Keep
- Account data and learning records while your subscription is active
- Deleted account data for 30 days (retention period for recovery)
- Backups for 30 days after deletion
We Delete
- All personal data 30 days after account deletion request
- Payment information after subscription cancellation (except transaction records required by law)
- Session tokens and cookies upon logout
You Can Request
- Export of all your data (JSON format)
- Deletion of your account and all associated data
- Contact: [email protected]
6. Children's Privacy (COPPA Compliance)
Logger is designed for homeschooling parents/guardians to track their own children's education. Accounts are created and controlled by an adult parent or guardian.
- Parent-Controlled Accounts: Only an adult parent/guardian may create a Logger account. Children do not create their own independent accounts.
- Supervised Child Logins: A parent may optionally create a supervised login for their own child. These logins are created, managed, and deletable only by the parent. A child using such a login may add their own learning entries and journal notes under the parent's account and supervision; all of that data belongs to and is controlled by the parent.
- Information About Children: A child's name, learning records, and grades are provided or entered under the direction and supervision of the parent/guardian.
- No Marketing: We do not market to children or collect any child's data for advertising.
- Parent Access & Control: The account owner can view, manage, export, and delete all children's data and any child logins at any time.
If we become aware that a child has created an independent account without parental consent, we will delete that account.
7. Information Sharing You Control
We do not sell your data or share it for advertising. Beyond the service providers listed below, your information is disclosed only when you choose to share it:
- Transcript Share Links: You may generate a shareable link to a student's transcript. Anyone who has the link can view a snapshot of that transcript without logging in, so treat the link as public and share it only with people you trust (for example, a college admissions office).
- Snapshot, Not Live Data: A share link shows a frozen copy of the transcript as it existed when the link was created. It does not expose your account, your login, other students, or any of your other records.
- Revocable Anytime: You can revoke a share link at any time from within the app — including while your account is in read-only mode. Generating a new link automatically revokes the previous one, and links expire automatically after one year.
8. Third-Party Services
We use the following third-party services:
| Service |
Purpose |
Data Shared |
| Stripe |
Payment processing |
Email, transaction amount, payment method ID |
| Cloudflare |
CDN/security |
IP address, request headers |
| Vultr |
Web hosting |
All application data |
9. Your Rights
You have the right to:
- Access: Request a copy of your personal data
- Correction: Update inaccurate information
- Deletion: Request deletion of your account and data
- Export: Download your data in JSON format
- Opt-out: Unsubscribe from non-essential email communications
To exercise these rights, contact: [email protected]
10. California Privacy Rights (CCPA)
If you are a California resident, you have the right to:
- Know what personal information is collected
- Know whether it is sold or disclosed
- Delete personal information we collected
- Opt-out of the sale or sharing of personal information
We do not sell or share your personal information.
11. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes by email or by posting the updated policy with a new "Last Updated" date.
12. Contact Us
For privacy concerns or requests, contact: