Privacy Policy
Last updated: May 5, 2026
MATCHA is designed to minimize disclosure of personal information while providing educational integrity, document authoring, support, billing, AI, and cloud services. This policy explains how MATCHA Technologies collects, uses, discloses, protects, and retains personal information through MATCHA Writer, the MATCHA public website, MATCHA Dashboard, MATCHA Cloud, support services, billing services, and related online services. More detailed information regarding how MATCHA Writer collects and shares information in independent as well as course-link usage can be found on our Data Protection and Privacy Page .
Information we collect
We collect personal information you or your organization provide, information generated while using MATCHA, and limited technical information from browsers, devices, and integrations:
- Account and contact information, such as name, email address, organization, role, authentication details, and account settings.
- Organization, course, activity, proctoring, accommodation, roster, student identification numbers, access, policy, and dashboard configuration data.
- Documents, activity files, work histories, browsing histories, reports, submissions, settings, support messages, uploaded attachments, and other content you choose to create, store, synchronize, process, or submit through MATCHA.
- Billing and purchase information, such as plan, credit, invoice, payment status, tax, transaction, and payment-processor identifiers. We do not intentionally store full payment card numbers on MATCHA systems.
- Support and diagnostic information, such as support chat transcripts, ticket details, route or page context, error reports, logs, screenshots or files you attach, and diagnostic details you choose to send.
- Technical and usage information, such as IP address, approximate location derived from network information, device and browser type, operating system, app version, identifiers, event timestamps, feature usage, page views, cookie or local-storage preferences, and security or anti-abuse signals.
How we use information
We use personal information for the purposes reasonably needed to provide, secure, support, bill for, and improve MATCHA services.
- Provide accounts, dashboard access, activities, document authoring, MATCHA Cloud, submissions, certificates, support, billing, AI features, and related services.
- Authenticate users, manage organizations and permissions, enforce settings, prevent abuse, investigate security issues, and protect MATCHA, users, and institutions.
- Process payments, invoices, credits, subscriptions, taxes, renewals, cancellations, failed payments, disputes, and support requests.
- Generate, analyze, synchronize, export, restore, display, and support documents, files, activity histories, reports, and other content at your direction or that of your instructor.
- Operate support tools, AI support assistants, diagnostic workflows, error monitoring, analytics, product improvement, quality assurance, and administrative reporting.
- Comply with legal obligations, enforce agreements, respond to lawful requests, and resolve disputes.
AI and automated services
Some MATCHA services use AI model providers or automated systems to provide requested features, support answers, document assistance, analysis, diagnostics, or related functionality. Content and context you submit to those features may be processed by MATCHA and service providers for the purpose of delivering, securing, debugging, and improving the requested service. You should not submit sensitive or regulated information unless the applicable MATCHA service and your agreement with MATCHA are appropriate for that information.
MATCHA Cloud and connected storage
MATCHA Cloud and dashboard integrations may store, synchronize, transmit, retrieve, and process documents, activity files, work histories, browsing histories, certificates, reports, settings, submissions, and related content. If you connect or your instructor connects third-party storage providers, learning management systems, identity providers, or other integrations, MATCHA may exchange information with those providers as needed to perform the integration you or your organization configure.
How we disclose information
We do not sell or rent personal user data. We disclose personal information only as needed for the purposes described in this policy, as directed by you or your organization, or as required by law.
- To service providers that help us host, secure, store, analyze, debug, support, email, process payments, provide AI functionality, operate cloud infrastructure, and run business systems.
- To organizations, administrators, instructors, proctors, support staff, or other authorized users according to the roles, settings, activities, submissions, and permissions configured for the relevant MATCHA service.
- To third-party integrations you or your organization enable, such as cloud storage, learning management, identity, payment, analytics, support, and communication providers.
- To comply with law, legal process, security obligations, enforceable requests, investigations, or to protect rights, safety, and integrity.
- In connection with a merger, acquisition, financing, reorganization, sale of assets, or similar business transaction, subject to appropriate protections for personal information.
Google Analytics and cookies
We use Google Analytics on the MATCHA public site and MATCHA Dashboard to understand site and product usage and improve MATCHA services. Google Analytics may use cookies, identifiers, or similar technologies to collect usage information from your browser or device. We configure Google consent settings to deny advertising storage, ad user data, and ad personalization.
Google receives and processes information collected through Google Analytics as described in How Google uses information from sites or apps that use our services . Where required, we ask for your consent before using analytics cookies. You can accept or decline analytics cookies in the cookie banner, and you can also use the Google Analytics opt-out browser add-on .
Storage, retention, and deletion
We keep personal information for as long as reasonably needed for the purposes described in this policy, including to provide services, maintain accounts, support users, preserve activity and submission records, comply with legal and accounting obligations, resolve disputes, enforce agreements, secure systems, and maintain backups. Retention periods can vary based on the type of information, organization settings, user actions, legal requirements, and the service involved.
We may keep de-identified, aggregated, diagnostic, security, and usage information that does not reasonably identify an individual. Backup, security, and archival copies may persist for a limited period after deletion from active systems.
Security
We use administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, use, disclosure, alteration, and loss. These safeguards may include access controls, encryption in transit, provider security controls, monitoring, logging, backups, and separation of environments. No online service, storage system, or transmission method is completely secure.
International processing
MATCHA is based in Canada, and our service providers may process and store information in Canada, the United States, and other countries where they operate. Those countries may have privacy laws that differ from the laws where you live.
Students, institutions, and children
MATCHA is often used in educational settings. When an institution, instructor, administrator, or organization configures MATCHA for students or other end users, that organization may control important decisions about access, activities, submissions, retention, and notices. Organizations are responsible for providing any notices, consents, authorizations, policies, and legal basis required for their use of MATCHA.
MATCHA does not knowingly invite children to create public-site accounts or purchase services directly from MATCHA. If you believe a child has provided personal information directly to MATCHA without appropriate authorization, contact us so we can review the request.
Your choices and rights
Depending on where you live and how you use MATCHA, you may have rights to request access to, correction of, deletion of, portability of, or restrictions on certain personal information. You may also be able to withdraw consent where processing is based on consent, subject to legal, contractual, security, and operational limits.
You can manage some information directly through MATCHA services, your organization, your browser, your device, or connected third-party providers. You can accept or decline analytics cookies where a consent banner is shown. For other privacy requests, contact us at contact@matchatech.io. We may need to verify your identity or route institution-controlled requests to the appropriate organization.
Changes to this policy
We may update this policy from time to time. The updated version will be posted on this page with an updated date. If changes materially affect how we handle personal information, we will provide additional notice where required by law.
Contact
Questions or privacy requests may be sent to contact@matchatech.io.