Last update
October 3, 2025
Privacy Policy
Effective upon publication.
This Privacy Policy describes how CanopyLAB LLC, 30 N Gould St, STE R, Sheridan, WY 82801, USA (“CanopyLAB,” “we,” “us,” “our”), collects, uses, stores, and protects personal data when individuals or organizations access or use the CanopyLAB and xLAB platforms, websites, and related services (“Services”). By accessing or using the Services, you agree to the practices described in this Privacy Policy.
1. Personal Data We Collect
We collect the following categories of personal data: 1.1 Information you provide directly • name • email address • username • profile details • organization or institution affiliation • course contributions, assignments, messages, and uploaded content • communication with support or customer service • feedback, survey responses, and preferences 1.2 Information collected automatically • IP address • device and browser information • activity logs • usage analytics • timestamps, clicks, and interactions • session cookies and authentication tokens 1.3 Information from organizations If your account is created or managed by your employer, school, or organization, they may provide data such as: • enrollment lists • roles and access rights • training history • class or group assignments 1.4 Children’s data Users must be at least 13 years old to create an account. Where users are under 18, the responsible school or organization is responsible for obtaining any required parental consent under COPPA or local laws. We do not knowingly collect data from children without proper authorization.
2. How We Use Personal Data
We process personal data to: • operate, maintain, and secure the Services • provide access and account management • deliver courses, community features, and training tools • support communication and collaboration • personalize learning experiences • provide analytics to organizations and instructors • improve and optimize platform functionality • respond to support requests • comply with legal obligations • protect platform integrity and prevent misuse We do not sell personal data.
3. Legal Basis for Processing (GDPR)
For users in the EU/EEA, we process personal data under the following legal bases: • performance of a contract (providing the Services) • legitimate interests (security, analytics, service improvement) • compliance with legal obligations • consent (cookies, certain analytics, AI features where required)
4. AI Processing
The Services may use artificial intelligence for features such as recommendations, automated feedback, text generation, summarization, and analytics. AI-generated content may be inaccurate or incomplete. Users must review all outputs before relying on them. Personal data may be processed by AI-systems only as permitted under applicable law. We may use anonymized or aggregated data to improve AI-systems. We do not use identifiable personal data to train third-party foundation models.
5. Cookies and Tracking Technologies
We use cookies and similar technologies for: • authentication • session management • analytics • security • platform functionality Details are provided in our Cookie Policy. Users in regions requiring consent (including the EU) can manage preferences via the cookie banner.
6. Sharing of Personal Data
We may share personal data with: 6.1 Subprocessors We use third-party service providers for hosting, email delivery, analytics, and AI-processing. A current list of Subprocessors is maintained at canopylab.com/legal. 6.2 Organizations and instructors If you use the platform through a school, employer, or organization, administrators and instructors may access your profile, activity, and course data. 6.3 Legal and compliance purposes We may disclose personal data: • when required by law • to comply with court orders or government requests • to protect the rights, safety, or security of users or the platform We do not sell personal data.
7. International Transfers
As a U.S.-based company with global cloud infrastructure, personal data may be processed in the United States, the EU/EEA, or other regions where approved Subprocessors operate. When transferring data outside the EU/EEA, we use: • Standard Contractual Clauses (SCCs) • Transfer Impact Assessments • supplementary technical and organizational measures • adequacy decisions, where applicable We will not transfer data to any country lacking adequate protection without appropriate safeguards.
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
9. Your Rights
Depending on your location, you may have the right to: • access your personal data • correct inaccurate information • request deletion • restrict or object to processing • request data portability • withdraw consent • lodge a complaint with a supervisory authority Organizations using the platform for their learners or employees may manage rights requests directly. We assist Controllers in fulfilling rights requests as required by the DPA. California residents have rights under the California Consumer Privacy Act (CCPA/CPRA), including the right to know, delete, and correct personal information.
10. Data Security
We implement technical and organizational security measures, including encryption, access controls, monitoring, and secure development practices. No system is entirely secure, but we take reasonable steps to protect personal data.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
12. Accounts Managed by Organizations
If you access the Services through an organization, that organization may: • manage your account • view your activity • add or remove users • manage permissions • export or delete your data In such cases, the organization acts as the Data Controller under GDPR.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Material changes will be announced through the platform or via email. Continued use of the Services after changes take effect constitutes acceptance.
14. Contact
Questions regarding this Privacy Policy or data practices may be sent to: info@canopylab.com For GDPR inquiries or Data Subject Rights requests: info@canopylab.com For mailing purposes: CanopyLAB LLC 30 N Gould St, STE R Sheridan, WY 82801 USA
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
Last update
October 3, 2025
Privacy Policy
Effective upon publication.
This Privacy Policy describes how CanopyLAB LLC, 30 N Gould St, STE R, Sheridan, WY 82801, USA (“CanopyLAB,” “we,” “us,” “our”), collects, uses, stores, and protects personal data when individuals or organizations access or use the CanopyLAB and xLAB platforms, websites, and related services (“Services”). By accessing or using the Services, you agree to the practices described in this Privacy Policy.
1. Personal Data We Collect
We collect the following categories of personal data: 1.1 Information you provide directly • name • email address • username • profile details • organization or institution affiliation • course contributions, assignments, messages, and uploaded content • communication with support or customer service • feedback, survey responses, and preferences 1.2 Information collected automatically • IP address • device and browser information • activity logs • usage analytics • timestamps, clicks, and interactions • session cookies and authentication tokens 1.3 Information from organizations If your account is created or managed by your employer, school, or organization, they may provide data such as: • enrollment lists • roles and access rights • training history • class or group assignments 1.4 Children’s data Users must be at least 13 years old to create an account. Where users are under 18, the responsible school or organization is responsible for obtaining any required parental consent under COPPA or local laws. We do not knowingly collect data from children without proper authorization.
2. How We Use Personal Data
We process personal data to: • operate, maintain, and secure the Services • provide access and account management • deliver courses, community features, and training tools • support communication and collaboration • personalize learning experiences • provide analytics to organizations and instructors • improve and optimize platform functionality • respond to support requests • comply with legal obligations • protect platform integrity and prevent misuse We do not sell personal data.
3. Legal Basis for Processing (GDPR)
For users in the EU/EEA, we process personal data under the following legal bases: • performance of a contract (providing the Services) • legitimate interests (security, analytics, service improvement) • compliance with legal obligations • consent (cookies, certain analytics, AI features where required)
4. AI Processing
The Services may use artificial intelligence for features such as recommendations, automated feedback, text generation, summarization, and analytics. AI-generated content may be inaccurate or incomplete. Users must review all outputs before relying on them. Personal data may be processed by AI-systems only as permitted under applicable law. We may use anonymized or aggregated data to improve AI-systems. We do not use identifiable personal data to train third-party foundation models.
5. Cookies and Tracking Technologies
We use cookies and similar technologies for: • authentication • session management • analytics • security • platform functionality Details are provided in our Cookie Policy. Users in regions requiring consent (including the EU) can manage preferences via the cookie banner.
6. Sharing of Personal Data
We may share personal data with: 6.1 Subprocessors We use third-party service providers for hosting, email delivery, analytics, and AI-processing. A current list of Subprocessors is maintained at canopylab.com/legal. 6.2 Organizations and instructors If you use the platform through a school, employer, or organization, administrators and instructors may access your profile, activity, and course data. 6.3 Legal and compliance purposes We may disclose personal data: • when required by law • to comply with court orders or government requests • to protect the rights, safety, or security of users or the platform We do not sell personal data.
7. International Transfers
As a U.S.-based company with global cloud infrastructure, personal data may be processed in the United States, the EU/EEA, or other regions where approved Subprocessors operate. When transferring data outside the EU/EEA, we use: • Standard Contractual Clauses (SCCs) • Transfer Impact Assessments • supplementary technical and organizational measures • adequacy decisions, where applicable We will not transfer data to any country lacking adequate protection without appropriate safeguards.
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
9. Your Rights
Depending on your location, you may have the right to: • access your personal data • correct inaccurate information • request deletion • restrict or object to processing • request data portability • withdraw consent • lodge a complaint with a supervisory authority Organizations using the platform for their learners or employees may manage rights requests directly. We assist Controllers in fulfilling rights requests as required by the DPA. California residents have rights under the California Consumer Privacy Act (CCPA/CPRA), including the right to know, delete, and correct personal information.
10. Data Security
We implement technical and organizational security measures, including encryption, access controls, monitoring, and secure development practices. No system is entirely secure, but we take reasonable steps to protect personal data.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
12. Accounts Managed by Organizations
If you access the Services through an organization, that organization may: • manage your account • view your activity • add or remove users • manage permissions • export or delete your data In such cases, the organization acts as the Data Controller under GDPR.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Material changes will be announced through the platform or via email. Continued use of the Services after changes take effect constitutes acceptance.
14. Contact
Questions regarding this Privacy Policy or data practices may be sent to: info@canopylab.com For GDPR inquiries or Data Subject Rights requests: info@canopylab.com For mailing purposes: CanopyLAB LLC 30 N Gould St, STE R Sheridan, WY 82801 USA
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
Last update
October 3, 2025
Privacy Policy
Effective upon publication.
This Privacy Policy describes how CanopyLAB LLC, 30 N Gould St, STE R, Sheridan, WY 82801, USA (“CanopyLAB,” “we,” “us,” “our”), collects, uses, stores, and protects personal data when individuals or organizations access or use the CanopyLAB and xLAB platforms, websites, and related services (“Services”). By accessing or using the Services, you agree to the practices described in this Privacy Policy.
1. Personal Data We Collect
We collect the following categories of personal data: 1.1 Information you provide directly • name • email address • username • profile details • organization or institution affiliation • course contributions, assignments, messages, and uploaded content • communication with support or customer service • feedback, survey responses, and preferences 1.2 Information collected automatically • IP address • device and browser information • activity logs • usage analytics • timestamps, clicks, and interactions • session cookies and authentication tokens 1.3 Information from organizations If your account is created or managed by your employer, school, or organization, they may provide data such as: • enrollment lists • roles and access rights • training history • class or group assignments 1.4 Children’s data Users must be at least 13 years old to create an account. Where users are under 18, the responsible school or organization is responsible for obtaining any required parental consent under COPPA or local laws. We do not knowingly collect data from children without proper authorization.
2. How We Use Personal Data
We process personal data to: • operate, maintain, and secure the Services • provide access and account management • deliver courses, community features, and training tools • support communication and collaboration • personalize learning experiences • provide analytics to organizations and instructors • improve and optimize platform functionality • respond to support requests • comply with legal obligations • protect platform integrity and prevent misuse We do not sell personal data.
3. Legal Basis for Processing (GDPR)
For users in the EU/EEA, we process personal data under the following legal bases: • performance of a contract (providing the Services) • legitimate interests (security, analytics, service improvement) • compliance with legal obligations • consent (cookies, certain analytics, AI features where required)
4. AI Processing
The Services may use artificial intelligence for features such as recommendations, automated feedback, text generation, summarization, and analytics. AI-generated content may be inaccurate or incomplete. Users must review all outputs before relying on them. Personal data may be processed by AI-systems only as permitted under applicable law. We may use anonymized or aggregated data to improve AI-systems. We do not use identifiable personal data to train third-party foundation models.
5. Cookies and Tracking Technologies
We use cookies and similar technologies for: • authentication • session management • analytics • security • platform functionality Details are provided in our Cookie Policy. Users in regions requiring consent (including the EU) can manage preferences via the cookie banner.
6. Sharing of Personal Data
We may share personal data with: 6.1 Subprocessors We use third-party service providers for hosting, email delivery, analytics, and AI-processing. A current list of Subprocessors is maintained at canopylab.com/legal. 6.2 Organizations and instructors If you use the platform through a school, employer, or organization, administrators and instructors may access your profile, activity, and course data. 6.3 Legal and compliance purposes We may disclose personal data: • when required by law • to comply with court orders or government requests • to protect the rights, safety, or security of users or the platform We do not sell personal data.
7. International Transfers
As a U.S.-based company with global cloud infrastructure, personal data may be processed in the United States, the EU/EEA, or other regions where approved Subprocessors operate. When transferring data outside the EU/EEA, we use: • Standard Contractual Clauses (SCCs) • Transfer Impact Assessments • supplementary technical and organizational measures • adequacy decisions, where applicable We will not transfer data to any country lacking adequate protection without appropriate safeguards.
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
8. Data Retention
We retain personal data for as long as an account is active or as required to provide the Services. After termination, data is retained only as long as necessary to comply with legal obligations or as outlined in the Data Processing Agreement. Data deletion timelines are: • user account data: deleted within 90 days after termination • backups: deleted within 180 days • logs: retained for security and audit purposes for up to 12 months, unless longer retention is legally required
9. Your Rights
Depending on your location, you may have the right to: • access your personal data • correct inaccurate information • request deletion • restrict or object to processing • request data portability • withdraw consent • lodge a complaint with a supervisory authority Organizations using the platform for their learners or employees may manage rights requests directly. We assist Controllers in fulfilling rights requests as required by the DPA. California residents have rights under the California Consumer Privacy Act (CCPA/CPRA), including the right to know, delete, and correct personal information.
10. Data Security
We implement technical and organizational security measures, including encryption, access controls, monitoring, and secure development practices. No system is entirely secure, but we take reasonable steps to protect personal data.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
12. Accounts Managed by Organizations
If you access the Services through an organization, that organization may: • manage your account • view your activity • add or remove users • manage permissions • export or delete your data In such cases, the organization acts as the Data Controller under GDPR.
13. Changes to This Privacy Policy
We may update this Privacy Policy periodically. Material changes will be announced through the platform or via email. Continued use of the Services after changes take effect constitutes acceptance.
14. Contact
Questions regarding this Privacy Policy or data practices may be sent to: info@canopylab.com For GDPR inquiries or Data Subject Rights requests: info@canopylab.com For mailing purposes: CanopyLAB LLC 30 N Gould St, STE R Sheridan, WY 82801 USA
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
11. Third-Party Links
The Services may include links to external websites not controlled by CanopyLAB. We are not responsible for their privacy practices.
Re‑imagining what it
means to learn.
Re‑imagining what it
means to learn.