Terms of Service & Data Governance
Last Updated: November 20, 2025
Service: SISLMS by NAS (Student Information & Learning Management System)
Provider: NAS (Neeraj's AI Services)
1. Service Scope and Architecture
This Terms of Service agreement governs your use of the SISLMS by NAS application, operated by Neeraj's AI Services (NAS). This service is provided solely for educational, administrative, and data governance functions as authorized by the school administration.
Platform Disclosure (Headless NAS Protocol)
This application operates on a secure, multi-platform technology stack. NAS acts as the Data Controller and manages the security of all third-party vendors listed below.
| Vendor / Platform | Role | GNA Protocol Status |
|---|---|---|
| Cursor | Primary coder and AI technology | Development Tool |
| Supabase | Primary Database and Authentication Backend (DB-as-Truth) | Fully Controlled and Secured |
| Vercel | Front-End Hosting and Deployment (Git-as-Truth) | Fully Controlled and deployed from GitHub |
| Make | External Logic and Automation (e.g., scheduled notifications) | Future Use |
| Bubble | External Logic and Specialized Dashboards | Future Use |
2. Data Retention and Disposition (Wisconsin Legal Mandate)
NAS strictly adheres to the data retention mandates of the State of Wisconsin for public educational records.
Minimum Retention Period (Wis. Stat. ยง 16.61)
We are legally required to retain all public educational records for a period of not less than seven (7) years from the date of creation, as mandated by State Public Records Law.
Data Destruction Protocol
When data is required to be permanently destroyed (e.g., after the 7-year minimum period):
- NAS and the school district must adhere to the 60-day written notification process to the Wisconsin State Historical Society before the final destruction of public records.
- All data destruction procedures must comply with Wisconsin state law.
- Written confirmation of data destruction will be provided to the school district.
3. Data Ownership and Security
Data Ownership
All student data and educational records entered into the SISLMS by NAS platform are and shall remain the property of the student and the school district.
NAS acknowledges that it has no ownership rights to student data. The school district and students retain full ownership and control of all educational records.
Security Standard (RLS)
All access to data is secured by Row-Level Security (RLS) policies applied directly to the Supabase database. Access is strictly controlled based on the user's verified role (Admin, Teacher, Guardian).
- RLS policies are enforced at the database level, ensuring security even if application code has vulnerabilities
- Users can only access data they are authorized to view based on their role and school assignment
- All data access is logged and auditable
Prohibited Actions
Users are strictly forbidden from:
- Attempting to bypass RLS security policies
- Performing unauthorized data scraping or extraction
- Sharing login credentials with unauthorized persons
- Accessing data outside of their authorized scope
Any such attempt is considered a material breach of these terms.
4. Account Termination
NAS reserves the right to suspend or terminate any user account that:
- Violates RLS policies
- Attempts unauthorized data access
- Violates the spirit of these terms
- Engages in any activity that compromises system security
5. Governing Law
These Terms are governed by the laws of the State of Wisconsin, U.S.A.
6. Contact Information
For questions about these Terms of Service:
Dr. Neeraj Agrawal, Founder & CEO
NAS (Neeraj's AI Services)
Email: nas.neeraj@gmail.com
Website: nasneeraj.com
Last Updated: November 20, 2025