V2.0 MCP Server with AI Intelligence is now available!See Changes
Back to Home

Privacy Policy

Last Updated: May 2025

Introduction

At Notioc, we are committed to protecting your privacy and maintaining the security of your academic information. This Privacy Policy explains how we handle information when you use our Canvas MCP (Model Context Protocol) Server, documentation website, and related services ("Services").

Privacy-First Architecture

Our Core Privacy Principle

The Notioc Canvas MCP Server is designed to run entirely on your local machine. Your Canvas data, course materials, and academic information never leave your computer when using our MCP server.

How Our MCP Server Works

  • Local Processing: All Canvas API calls and data processing happen on your machine
  • Direct API Integration: Your Canvas data goes directly from Canvas to your local MCP server
  • No Cloud Storage: We do not store, transmit, or have access to your Canvas data
  • Your API Keys: You provide and control your own Canvas API tokens and third-party service keys

Information We Collect

Website Analytics (Optional)

  • Basic website usage analytics (page views, referrers)
  • Technical information (browser type, device type)
  • No personally identifiable information is collected

Information We Do NOT Collect

  • Canvas course content, assignments, or grades
  • Student personal information or academic records
  • Canvas API tokens or authentication credentials
  • AI conversation logs or prompts
  • File contents processed by the MCP server

Third-Party Services

Our MCP server may integrate with third-party services that you configure:

  • Canvas LMS: Direct API calls using your provided API token
  • LlamaParse (Optional): Document parsing service - data sent directly from your machine
  • Claude Desktop: AI assistant integration - conversations happen locally

You control which third-party services to use and provide your own API keys. We recommend reviewing the privacy policies of any third-party services you choose to integrate.

Data Security

  • Local Security: Your academic data remains on your local machine
  • Open Source: Our MCP server code is open source for security review
  • No Central Database: We do not maintain servers with user data
  • Secure API Calls: All Canvas API calls use HTTPS encryption

Your Responsibilities

As a self-hosted solution, you are responsible for:

  • Securing your Canvas API tokens and other credentials
  • Maintaining the security of your local machine
  • Complying with your institution's Canvas usage policies
  • Understanding the privacy implications of AI services you choose to use

Children's Privacy

Our services are intended for users who are at least 18 years old or have reached the age of majority in their jurisdiction. If you are under 18, please ensure you have permission from a parent or guardian before using our services, and consider having them review this privacy policy.

Updates to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by posting the new Privacy Policy on this page and updating the "Last Updated" date.

Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: [email protected]
GitHub: notioc-canvas-mcp-server