Legal

Terms of Service, Privacy Policy, and Cookie Policy for STEMBox.io.

Last updated: January 2026

Terms of Service

1. Acceptance

By using STEMBox.io (“we”, “us”, “the site”), you agree to these Terms of Service, our Privacy Policy, and our Cookie Policy. If you do not agree, please do not use the site.

2. Description of Service

STEMBox.io provides educational content and tools for Science, Technology, Engineering, and Mathematics (STEM). This includes identity and subject pages, interactive visualizations, a problem solver, AI-generated study materials (e.g. study guides, quizzes, tests), research notes, PDF export, explorers, search, and optional use of your own OpenAI API key when we allow it.

3. Accounts

Sign-in uses passwordless magic links sent to your email. You are responsible for keeping your email secure and for all activity under your account. We use a session cookie to keep you signed in; sessions expire as configured (e.g. 14 days).

4. Acceptable Use

You must not use the site to violate any law, infringe others’ rights, transmit malware, abuse our systems (e.g. circumvent rate limits), or misuse AI-generated content or the problem solver for academic dishonesty. We may suspend or terminate access for abuse.

5. AI-Generated Content & Tools

Study materials, problem solutions, and similar outputs are generated by AI (including OpenAI models). We do not guarantee accuracy or suitability for any particular use. Always verify important results. You use AI features at your own risk.

6. Your Content

You may create research notes and generated content. You retain ownership. You grant us a license to store, process, and display this content to provide the service. We do not claim ownership of your notes or edits.

7. Intellectual Property

The site’s design, branding, and our original content are our property or our licensors’. You may not copy, scrape, or reuse them without permission, except for normal use of the site.

8. Disclaimers

The site and all content are provided “as is”. We disclaim warranties of merchantability, fitness for a particular purpose, and non-infringement. We do not guarantee uninterrupted or error-free service.

9. Limitation of Liability

To the fullest extent permitted by law, we are not liable for any indirect, incidental, special, or consequential damages arising from your use of the site or reliance on any content, including AI-generated material.

10. Changes & Contact

We may update these Terms. Continued use after changes constitutes acceptance. For questions, contact us at ralphdp21@gmail.com.

Privacy Policy

1. Who We Are

STEMBox.io is the data controller for the personal data we collect through this site. Contact: ralphdp21@gmail.com.

2. Data We Collect

  • Account & auth: Email address; session token (stored in an HTTP-only cookie); session expiry.
  • Optional API key: If you provide an OpenAI API key (when we allow it), we store it encrypted and use it only to fulfill your requests. We may store token-usage and cost metadata when you use your own key.
  • Generated content & research notes: Study materials, quizzes, tests, and research notes you create; we store these to provide the service.
  • Report-issue form: Issue type, description, email, page URL, and page title; we use these to respond and improve the site.
  • Usage & tech data: If you consent to analytics, we use Google Analytics (page views, etc.). We use rate limiting (e.g. by IP or session) to protect the service.

3. How We Use Your Data

We use your data to operate the site, authenticate you, store and display your content, send magic-link and report emails, improve our services, and (with consent) analyze usage. We do not sell your personal data.

4. Services & Third Parties

We use the following services, which may process data:

  • Hosting & database: Our app and PostgreSQL database store your account and content data.
  • Caching: Redis (or in-memory fallback) for caching and rate limiting.
  • Email: Resend and/or SMTP (e.g. Gmail) to send magic links and report emails.
  • OpenAI: Problem statements, context, and prompts for the solver and content generation are sent to OpenAI. When you use your own API key, requests go to OpenAI under your key; we store only encrypted keys and optional usage metadata.
  • Google Analytics: Used only if you accept analytics cookies; see Cookie Policy.
  • Google Fonts: We load fonts (e.g. Cabin, PT Sans) from Google; their privacy policy applies to font requests.
  • OEIS: We fetch sequence data from oeis.org on the server for relevant content; we do not send your personal data to OEIS.
  • Social sharing: Share buttons link to Twitter/X, Facebook, LinkedIn, etc. Those platforms handle their own data when you use them.
  • PDF export: Generated via Puppeteer on our servers; your content is not sent to third parties for PDF creation.

5. Retention & Security

We retain your data as long as your account exists and as needed for legal or operational purposes. We use industry-standard measures to protect data (encryption, secure cookies, etc.). We encrypt stored OpenAI API keys.

6. Your Rights

Depending on your location, you may have rights to access, correct, delete, or port your data, or to object to or restrict processing. Contact us at ralphdp21@gmail.com to exercise them. You can also delete your research notes and generated content through the site where we provide that option.

7. Updates

We may update this Privacy Policy. The “Last updated” date at the top of this page will change. Continued use after updates constitutes acceptance.

Cookie Policy

1. What We Use

We use cookies and similar storage as follows:

  • Essential — session cookie: session_token — HTTP-only, secure in production. Used to keep you signed in. Required for account features.
  • Analytics (optional): Google Analytics cookies are used only if you accept analytics via the cookie toggle in the site footer. We do not load GA unless you consent.

2. Local Storage

We use browser local storage (not cookies) for preferences and backups:

  • Cookie consent: Your choice to accept or decline analytics cookies.
  • Magic-link form: Your email for convenience when requesting sign-in links.
  • Research notes: Local backup of notes where we support it; notes are also stored on our servers when you are signed in.
  • Generated content: Sort preferences for the “My generated content” views.

3. Managing Cookies

You can enable or disable analytics cookies via the cookie toggle in the footer. Disabling analytics stops us from loading Google Analytics. The session cookie is essential for signed-in features; blocking it will prevent you from using account-specific functionality. You can also manage or delete cookies via your browser settings.

4. Updates

We may update this Cookie Policy. The “Last updated” date at the top of this page will change. Continued use after updates constitutes acceptance.

Questions? Contact us

Reach out at ralphdp21@gmail.com

Back to home