Question 1

What is SetFlow?

Accepted Answer

SetFlow is an AI-native learning management system for K-12, higher education, and individual students. It combines classroom workflows, study tools, and an AI assistant called Tori. Free for individual students; per-student pricing for schools.

Question 2

What is BYODB and how is my data protected?

Accepted Answer

BYODB stands for "bring your own database." Institutions can run SetFlow against a PostgreSQL-compatible database they own and operate. SetFlow holds configuration only — student records live in the institution's database. Data in transit is TLS 1.2+, data at rest is AES-256, encryption keys are managed in hardware-backed key stores.

Question 3

Can I use SetFlow alongside Canvas?

Accepted Answer

Yes. SetFlow supports full LTI 1.3 Advantage including Core, AGS, NRPS, and Deep Linking 2.0. Students click SetFlow from inside Canvas and are auto-logged in; grades flow back to the Canvas gradebook. With BYODB, you keep student data in your own database while using SetFlow as the AI surface inside Canvas.

Question 4

Where is student data stored?

Accepted Answer

Under BYODB (the institutional plan), classroom records — names, emails, grades, submissions, messages, materials — live in your institution's own database, not on SetFlow servers. On our managed deployment, sensitive free-text profile fields are encrypted at rest so a leaked database shows ciphertext, not readable disclosure.

Question 5

What happens if SetFlow gets hacked?

Accepted Answer

Under BYODB, an attacker who compromised SetFlow's servers would find encrypted database connection strings — not the classroom records, which live in your database. On our managed deployment, sensitive free-text profile fields (bio, what you told the AI tutor, accommodation notes) are encrypted at rest, and IP addresses are hashed before storage. We keep what we need to run the service and we encrypt it.

Question 6

How does SetFlow verify LTI integrations?

Accepted Answer

Every LMS integration is verified through two layers: (1) JWT signing against the platform's published JWKS — the same mechanism used by OAuth 2.0 — and (2) DNS domain verification, where your institution proves it controls the domain by adding a TXT record we provide. This prevents anyone from impersonating your institution's LMS.

Question 7

Does SetFlow use cookies?

Accepted Answer

Yes. Session cookies are HttpOnly, Secure, and SameSite=Lax — they cannot be accessed by JavaScript and are not sent cross-site. LTI integration cookies use SameSite=None with the Partitioned attribute, which is required for the iframe context and compliant with Chrome's third-party cookie changes.

Question 8

Can SetFlow see my students' data?

Accepted Answer

SetFlow can read data from your database to provide educational services — the same way any application reads a database. We cannot copy, export, or retain that data independently. Every access is logged in your database's audit trail, not ours. You can audit every access SetFlow has ever made to your data.

Question 9

What is Tori?

Accepted Answer

Tori is the embedded AI assistant in SetFlow. For students, Tori is a Socratic tutor that explains concepts, generates flashcards, and gives draft feedback without writing the assignment. For educators, Tori drafts rubrics, generates quizzes, provides AI-assisted first-pass grading, and writes announcements.

Question 10

Where does Tori show up?

Accepted Answer

Tori appears across seven surfaces: Study mode, Tori for Educators, project workspaces, SpeedGrader, co-study rooms, supportive check-ins, and the homepage demo at /tori. Each surface uses a persona tuned to its context, with strict context isolation between surfaces.

Question 11

What roles does SetFlow support?

Accepted Answer

Five roles: Student, Educator, Founder, Team member, and School admin. Inside workspaces, members also have one of five workspace roles: Owner, Admin, Manager, Contributor, or Viewer.

Question 12

How does pricing work?

Accepted Answer

Free for individual students forever. Pro is paid monthly for power users. Team and School plans are paid per seat or per student per year, with pooled AI budgets and admin features. Enterprise adds BYODB and custom retention.

Question 13

Is SetFlow FERPA, COPPA, and GDPR compliant?

Accepted Answer

Yes. SetFlow operates as a school official with legitimate educational interest under FERPA. Under-13 students are supported through the school-authorization safe harbor under COPPA. For EEA users, SetFlow is the data processor and the school or user is the data controller under GDPR.

Question 14

Do you train AI on student data?

Accepted Answer

No. Conversations with Tori, course content, student work, and personal notes are not used to train external AI models. AI inference runs through enterprise-grade providers under data-processing agreements that prohibit training on customer data.

Question 15

Can I migrate from Canvas to SetFlow?

Accepted Answer

Yes. SetFlow imports rosters via CSV from PowerSchool, Aeries, Infinite Campus, Schoology, and most other SIS exports. Course content and assignments can be imported from Canvas. We offer migration support for institutions during the pilot period.

Question 16

What if I want to leave SetFlow?

Accepted Answer

You can export your data at any time. Personal accounts can be deleted self-serve from Settings. School accounts have configurable retention policies. With BYODB, your durable student records never left your database, so there is nothing to migrate back.

Question 17

How do I get support?

Accepted Answer

Email support@getsetflow.app for general support, security@getsetflow.app for security disclosures, privacy@getsetflow.app for data requests, and support@getsetflow.app for direct founder contact. Response within one business day on Free and Pro, four business hours on Team and School.

Question 18

How does Tori adapt to students with disabilities?

Accepted Answer

SetFlow supports IEP, 504, ELL, Gifted & Talented, and 15 disability types including dyslexia, ADHD, autism spectrum, dyscalculia, dysgraphia, anxiety, vision and hearing impairment, motor disability, slow processing speed, auditory and visual processing, and executive function. Each flag changes how Tori teaches that specific student — short sentences and TTS for dyslexia, micro-tasks and break reminders for ADHD, literal language for autism spectrum, real-world examples for dyscalculia. Tori never tells the student about the accommodation; she just teaches that way naturally. Teachers set accommodations once on the class roster, and Tori applies them in every single interaction.

Question 19

What is the Student Learning Model?

Accepted Answer

SetFlow's Adaptive Learning Intelligence builds a per-student model that Tori updates after every conversation. It tracks which explanation styles land (analogies vs definitions vs step-by-step), response timing, engagement patterns, breakthrough moments, frustration signals, and per-concept mastery. The model uses exponential-moving-average updates so it evolves smoothly with each session. After about 25 sessions the model reaches mature confidence — meaning Tori knows this specific student better than most tutors who have worked with them for months. The model lives in your institution's database, not on SetFlow's servers, so it travels with the student and cannot be replicated on another platform.

Question 20

Does SetFlow support IEP and 504 plans?

Accepted Answer

Yes. Teachers can mark a student with a formal plan type (IEP, 504, ELL, Gifted & Talented, or Informal) plus any combination of 15 disability flags. The plan type is stored on the StudentAccommodation row and shown on the roster, on the SpeedGrader rubric pills, and inside Tori's context for every interaction with that student. Extended time multipliers (1.5x, 2x, 3x) apply automatically to every timed quiz. TTS auto-plays for dyslexia and vision impairment. Plan changes apply immediately — no quiz-by-quiz adjustment needed.

Question 21

Can teachers see what Tori has learned about their students?

Accepted Answer

Yes. Every class roster has a one-click Student Intelligence Dashboard per student. The panel shows: a model confidence meter (0-95%, color-graded from gray to purple), accommodation badges, what works for this student (the top two explanation approaches Tori found effective), what to watch for (frustration triggers and sensitive topics), an engagement sparkline of the last 10 sessions, subject mastery for the strongest and weakest concepts, the most recent 5 sessions with breakthrough/frustration markers, and Tori's concrete recommendation for how to keep teaching this student. Teachers can reset the model if it has drifted.

Question 22

Do teachers need to update accommodations every year?

Accepted Answer

No. Set accommodations once and they apply forever — across every Tori interaction, every assignment, every classroom the student joins. The accommodation row travels with the student. Teachers (and admins) can edit at any time and the change applies immediately. Schools typically update on the IEP/504 review cadence the district requires, not on a software schedule.

Question 23

Can students see their own learning profile?

Accepted Answer

Yes — after about five Tori sessions, the student's dashboard shows a friendly self-awareness card with what Tori has figured out about how they learn: which explanation style works best for them, their engagement trend, and their strongest concepts. It's framed in encouraging, plain language — never clinical. Students cannot see the educator's teacher notes; educators cannot see what the student writes in the student notes field. Privacy is preserved on both sides.

Question 24

What data does SetFlow collect from students?

Accepted Answer

Account basics — name, email, role, school — plus the content the student creates inside SetFlow (notes, chats, assignments, quiz responses, flashcards, study sessions). In school deployments we also build an adaptive learning model from behavioural signals (response timing, engagement patterns) so Tori can teach each student in the way that works best for them; that model lives in your institution database and the student can reset it at any time. Teachers may record accessibility / accommodation data (IEP, 504, learning differences) to personalise Tori's teaching approach for that student — that data is never shared with other institutions and is never used commercially. Full details are in the Privacy Policy.

Question 25

Does SetFlow collect biometric data?

Accepted Answer

During proctored Academy exams we use the webcam to detect whether a face is present, whether multiple faces appear, and whether eye gaze moves off-screen. We store only yes/no flags for each event — never raw images, video recordings, or biometric templates. The flags are visible to instructors and are deleted 90 days after the instructor reviews the exam. This feature is only active during proctored Academy exams; nothing else uses the webcam.

Question 26

How does SetFlow comply with COPPA?

Accepted Answer

For school deployments, the school deploys SetFlow under COPPA's school-consent exception per FTC guidance — the school has obtained any required parental consent at enrolment. For direct Academy signups, when a user indicates they are under 13 we require verifiable parental consent before creating an account: the parent clicks a one-click approval link in an email and the child receives a sign-in link. Under-13 accounts run in "minor mode" — behavioural profiling, biometric proctoring, third-party analytics, and marketing email are all disabled.

Question 27

Can I opt out of the adaptive learning model?

Accepted Answer

Yes. Students can reset their learning model at any time from their account settings. School admins can reset a student's model too, or disable it for the whole tenant. For under-13 accounts the adaptive learning model is disabled by default. The model is only ever built in school deployments — individual / personal accounts do not build one.

Frequently asked questions