Privacy Policy

1. Introduction

This Privacy Policy describes how Rowan Guardian™ ("the Service," "we," "us," or "our"), operated jointly by One Planet Education Network ("OPEN") and Cognosense AI, LLC ("Cognosense"), collects, uses, protects, and shares information when you use our website at www.rowanguardian.com and the Rowan Guardian application at askrowan.rowanguardian.com.

By using the Service, you agree to the practices described in this Privacy Policy. If you do not agree with these practices, please do not use the Service.

We have drafted this policy to be transparent, readable, and fair. Where legal language is necessary, we've tried to explain what it means in plain terms.

2. Your Data Ownership Rights

2.1 What You Own

All content you create, upload, or input into Rowan Guardian remains your exclusive property, including but not limited to:

• Garden and field configurations
• Plant and crop records
• Photographs and images you upload
• Sensor readings and environmental data
• Grow log and field journal entries
• Notes, observations, and custom labels
• AI conversation history
• Course progress and quiz results

2.2 Your Right to Export

You may export all of your data at any time in standard, portable formats including CSV and JSON. This right is unconditional — you do not need to provide a reason, and there is no waiting period. Export functionality is available directly within the application at no additional cost.

2.3 Your Right to Deletion

You may request deletion of your account and all associated data at any time. Upon receiving a deletion request:

• Your account will be deactivated immediately
• All personal data will be permanently deleted within 30 calendar days
• Anonymized, aggregated data that has already been incorporated into statistical models (see Section 5) is not subject to individual deletion, as it cannot be traced back to you
• We will confirm deletion in writing via email

3. Information We Collect

3.1 Information You Provide

• Account Information: Name or display name, email address, password (stored in hashed form only), and selected user role
• Profile Information: Location (optional, used for weather and climate features), growing zone, language preference
• Content: Gardens, plants, sensor readings, photos, grow log entries, and AI conversations as described in Section 2.1

3.2 Information Collected Automatically

• Usage Data: Pages visited, features used, interaction patterns, session duration, and device type — collected to improve the service experience
• Technical Data: Browser type, operating system, IP address (anonymized for analytics), and general geographic region
• Performance Data: Error reports and performance metrics to maintain service reliability

3.3 Information We Do NOT Collect

• Financial information or payment card details (payments, if any, are processed by third-party providers who maintain their own privacy policies)
• Government-issued identification numbers
• Biometric data
• Data from other applications or services on your device

4. How We Use Your Information

We use the information we collect for the following purposes:

• Service Operation: To provide, maintain, and improve the Rowan Guardian application and its features
• AI Responses: To generate personalized, context-aware recommendations for your specific plants, gardens, and growing conditions
• Weather & Climate: To provide location-relevant weather data and growing advice (requires optional location sharing)
• Communication: To send service-related notifications, security alerts, and (with your consent) educational content
• Analytics: To understand usage patterns and improve features, using aggregated and anonymized data only
• Safety & Security: To detect and prevent fraud, abuse, or security incidents

5. AI, Machine Learning & the Think First Protocol™

5.1 How AI Responses Work

When you ask Rowan a question, the Think First Protocol™ processes your query by combining it with your contextual data (sensor readings, plant information, grow log history) to generate a personalized response. This processing happens in real-time and is not stored for training purposes.

5.2 How Our AI Improves

Rowan Guardian's AI continuously improves through the following strictly controlled process:

• Solved Issue Patterns: When a plant health issue is successfully diagnosed and resolved, the general pattern (e.g., "yellowing leaves + low nitrogen + resolved with fertilizer adjustment") is extracted in a fully anonymized form
• Aggregated Insights: These anonymized patterns are aggregated across thousands of resolved cases to identify common correlations, improving diagnostic accuracy for all users
• Statistical Models: Regional and seasonal trends (e.g., "downy mildew frequency increases in humid subtropical zones during March") are compiled from aggregated data to enhance location-aware advice

5.3 What Is NEVER Used for Training

• Your name, email, or any personally identifiable information
• Your photographs or images in their original form
• Your specific garden configurations or locations
• Your AI conversation transcripts
• Your sensor data in individually attributable form
• Any data from student or child accounts (see Section 8)

5.4 Third-Party AI Models

Rowan Guardian utilizes Google's Gemini family of AI models for natural language processing. Your queries are processed through these models subject to Google's enterprise API terms, which prohibit Google from using API inputs or outputs for model training. We do not share your personal information with Google — only the contextual query necessary to generate a response.

6. Data Sharing & Third Parties

6.1 Limited Sharing

We may share information only in the following limited circumstances:

• Service Providers: With trusted vendors who help us operate the Service (e.g., cloud hosting, email delivery), bound by strict data processing agreements that prohibit them from using your data for any other purpose
• Legal Requirements: When required by law, court order, or governmental regulation, or to protect the rights, safety, or property of our users, OPEN, Cognosense, or the public
• With Your Consent: When you explicitly authorize sharing (e.g., sharing a grow log with a teacher, exporting data to a research partner)
• Business Transfer: In the event of a merger, acquisition, or sale of assets, your data will remain subject to these privacy protections, and you will be notified before any transfer occurs

6.2 Sub-User & Team Data

If you are part of a team (e.g., a commercial farm with worker accounts, or a classroom with student accounts), the team administrator may have visibility into activity data relevant to the team's shared gardens and fields. Administrators cannot access private conversations, personal account settings, or data in personal (non-shared) gardens.

7. Data Security

We implement industry-standard security measures to protect your data, including:

• Encryption in Transit: All data transmitted between your device and our servers is encrypted using TLS 1.2 or higher
• Encryption at Rest: All stored data is encrypted using AES-256 encryption
• Access Controls: Employee access to user data is restricted on a need-to-know basis with audit logging
• Password Security: Passwords are hashed using bcrypt and are never stored in plain text
• Regular Audits: We conduct periodic security reviews and vulnerability assessments

While we strive to protect your data, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security, but we commit to promptly notifying affected users in the event of a data breach, in accordance with applicable laws.

8. Children's Privacy & School Mode

Rowan Guardian offers a "School Mode" designed for users ages 5–12. We take the privacy of minors seriously and maintain additional protections:

• Student accounts are created and managed by a parent/guardian or a verified teacher
• Student accounts collect minimal personal information — typically only a first name or nickname and grade level
• Student data is never used for AI training, analytics, or marketing of any kind
• Students cannot share data publicly or communicate with users outside their classroom team
• AI responses in School Mode use age-appropriate language and content filtering
• A parent or teacher may request export or deletion of a student's data at any time

We comply with the Children's Online Privacy Protection Act (COPPA) in the United States and equivalent regulations in other jurisdictions. If you believe a child under 13 has provided personal information without proper consent, please contact us immediately at the address below.

9. Cookies & Local Storage

Rowan Guardian uses the following browser technologies:

• Session Cookies: Essential for maintaining your login state and security. These expire when you close your browser or after a period of inactivity
• Preference Cookies: To remember your chosen role, theme, reading level, and other settings
• Local Storage: To cache application data for offline functionality and faster load times

We do not use third-party advertising cookies or tracking pixels. We do not participate in cross-site tracking or ad networks.

10. International Data Transfers

Rowan Guardian is operated from the United States. If you access the Service from outside the United States, your information may be transferred to and processed in the United States or other countries where our service providers maintain facilities.

For users in the European Economic Area (EEA), United Kingdom, or other jurisdictions with data protection laws, we rely on Standard Contractual Clauses and other legally approved mechanisms to ensure adequate protection of your data during international transfers.

11. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

• Access: Request a copy of all personal data we hold about you
• Correction: Request correction of inaccurate or incomplete data
• Deletion: Request deletion of your personal data (see Section 2.3)
• Portability: Export your data in machine-readable formats (see Section 2.2)
• Restriction: Request that we limit how we process your data
• Objection: Object to specific types of processing
• Withdrawal of Consent: Withdraw consent for optional data processing at any time

To exercise any of these rights, contact us at the address provided in Section 14. We will respond within 30 days of receiving your request. We will never charge a fee for exercising your privacy rights.

12. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. Specifically:

• Active Accounts: Data is retained for the duration of your account's active status
• Deleted Accounts: All personal data is permanently deleted within 30 days of an account deletion request
• Inactive Accounts: Accounts with no login activity for 24 months will receive a notification before any action is taken. Data will not be deleted without prior notice
• Legal Requirements: Certain records may be retained longer if required by applicable law

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make changes:

• We will update the "Last Updated" date at the top of this page
• For material changes that affect your rights or how we use your data, we will provide prominent notice via email and/or an in-app notification at least 30 days before the changes take effect
• You will have the opportunity to review changes and export your data before they take effect
• Continued use of the Service after changes take effect constitutes acceptance of the updated policy

14. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal data, you may contact us at:

We aim to respond to all privacy-related inquiries within 5 business days and to resolve all data requests within 30 calendar days.

15. Governing Entities & Liability

Rowan Guardian™ is provided as a joint initiative of:

• One Planet Education Network — responsible for educational content, curriculum alignment, school partnerships, and the Think First Protocol™ methodology
• Cognosense AI, LLC — responsible for AI infrastructure, application development, data processing, and technical operations

Both entities share responsibility for compliance with this Privacy Policy and applicable data protection laws. Either entity may be contacted regarding privacy matters, and both are jointly committed to upholding the data protection standards described herein.

This Privacy Policy shall be governed by and construed in accordance with the laws of the United States. Any disputes arising from this policy shall be resolved through good-faith negotiation before escalation to binding arbitration.