Privacy Policy

Effective Date: May 1, 2026 · Last Updated: May 1, 2026

1. Introduction

Elevorra Group LLC (“Elevorra,” “we,” “us,” or “our”) operates the Elevorra Institutional Intelligence Platform (“Platform”), a B2B SaaS service designed for independent higher education consultants and consulting firms. This Privacy Policy explains how we collect, use, disclose, and protect information in connection with your use of the Platform.

By accessing or using the Platform, you agree to the practices described in this Privacy Policy. If you do not agree, please do not use the Platform.

2. FERPA Notice & Student Data

Elevorra is a consulting analytics tool used by higher education professionals. The Platform may process institutional data that, in certain contexts, could be derived from or relate to student educational records subject to the Family Educational Rights and Privacy Act (FERPA), 20 U.S.C. § 1232g.

  • Consultant Responsibility: You, as the Platform user, are responsible for ensuring that any data you upload or connect to Elevorra complies with applicable FERPA requirements and any institutional data sharing agreements you have in place with the institutions you serve.
  • Aggregate & De-identified Data: Elevorra is designed to work with aggregate, de-identified, or publicly available institutional metrics (e.g., IPEDS data, enrollment totals, composite financial ratios). We do not knowingly collect personally identifiable student-level records.
  • School Official Exception: If your consulting engagement qualifies you as a “school official” under FERPA with a legitimate educational interest, and the institution has determined that Elevorra is used under the school official exception, your use of the Platform must comply with FERPA's use and re-disclosure limitations.
  • No Secondary Use: Elevorra will not use any institutional data uploaded by clients for purposes other than providing the Platform services to that client.

3. Information We Collect

3.1 Account Information

When you register for the Platform, we collect: name, email address, firm/organization name, job title, and billing information (processed by our payment provider; we do not store raw card numbers).

3.2 Institutional Data You Provide

You may upload or connect institutional data, including enrollment figures, financial metrics, accreditation status, athletic program data, and other institutional health indicators. This data is processed solely to provide scoring, analytics, and reporting services to you.

3.3 Usage Data

We automatically collect log data including IP address, browser type, pages visited, features used, timestamps, and error logs. This is used to operate, maintain, and improve the Platform.

3.4 Demo Requests

If you submit a demo request, we collect your name, firm, role, estimated number of institutions served, and how you heard about Elevorra. This information is used solely to respond to your inquiry.

4. How We Use Your Information

  • To provide, operate, and improve the Platform and its features
  • To process transactions and send billing-related communications
  • To respond to support requests and demo inquiries
  • To generate aggregate, anonymized analytics about Platform usage (never individually identifiable)
  • To send product updates and service announcements (you may opt out)
  • To comply with legal obligations

5. Data Sharing & Disclosure

We do not sell your personal information or client institutional data. We may share information with:

  • Service Providers: Supabase (database), Vercel (hosting), payment processors, email delivery providers — all bound by data processing agreements.
  • AI Providers: AI-generated insights may send anonymized or aggregated data snippets to AI model providers (e.g., OpenAI). Personally identifiable institutional records are not sent.
  • Legal Requirements: We may disclose information if required by law, court order, or to protect our legal rights.
  • Business Transfers: In the event of a merger, acquisition, or asset sale, user data may be transferred. We will notify affected users in advance.

6. Data Retention

We retain account data for the duration of your subscription plus 90 days following termination, unless you request earlier deletion. Institutional data uploaded to the Platform is retained until you delete it or terminate your account. Aggregate usage logs are retained for up to 24 months.

7. Security

We implement industry-standard security measures including TLS encryption in transit, AES-256 encryption at rest, Row-Level Security (RLS) enforced at the database layer, and regular security audits. However, no system is perfectly secure. You are responsible for maintaining the confidentiality of your login credentials.

8. Your Rights

Depending on your jurisdiction, you may have rights to: access, correct, or delete your personal data; withdraw consent; request data portability; or lodge a complaint with a supervisory authority. To exercise these rights, contact us at privacy@elevorragroup.com.

9. Cookies

The Platform uses authentication session cookies necessary for login and security. We do not use third-party advertising or tracking cookies. You can configure your browser to block cookies, but some Platform features may not function correctly without them.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or a prominent notice in the Platform at least 14 days before taking effect. Continued use of the Platform after changes constitutes acceptance.

11. Contact

Elevorra Group LLC
Email: privacy@elevorragroup.com
Support: support@elevorragroup.com