STEP creates public credentials and private cohort evidence. This page explains what we collect, what is published, what stays private, and how learners or partners can request changes.
When a learner enrolls in STEP Campus, we collect: full name, email address, and issuing program. For university-licensed learners, we additionally record the institution name. This information appears on the public verify page.
When a learner completes a capstone, we record: the four-dimension proficiency (S, T, E, P at L1/L2/L3), the simulation scenario completed, the date of assessment, the overall certification outcome (Certified / Not Yet Certified), and the issuing program. The performance record is summarised in the scorecard and is the credential's content.
Each issued credential has a public verify page. The page shows: name, program, dimension scores, dates, issuing authority. No email, no contact information, no scenario details. The page is public so employers can confirm a credential without contacting the learner or AIR APAC.
For university-licensed cohorts, we share with the institution an aggregate dashboard: dimension distribution, scenario completion rates, and anonymised comparison against other Campus cohorts when enough data exists. Individual learner data is not shared with the institution beyond what the learner has already chosen to make public.
Issued credentials are retained for the duration of the credential's active period plus 7 years (for record-keeping and dispute resolution). STEP Campus credentials are entry-level and do not expire. The verify page remains live for the full record-keeping period.
Per-cohort data-handling notes govern cohort retention. Typical retention is 3–5 years from cohort end. Aggregate cohort data may be retained longer for cross-institutional aggregate comparison; this is anonymous data only.
"Not Yet Certified" records are kept on the learner's own account for 12 months to support re-attempt planning. They are not visible on any public page and are not shared with anyone.
A learner can withdraw their credential at any time. The verify page is taken down within 14 calendar days. The underlying record is retained in STEP records for the standard record-keeping window (above) but is not publicly visible. Withdrawal does not erase the simulation performance record from STEP records; that record is part of the credential's audit trail.
A learner can request erasure of all account-level data (name, email, university affiliation) under applicable data-protection law. Erasure requests are processed within 30 calendar days; confirmation is sent to the requester. Issued credentials are revoked and the verify page is taken down as part of the erasure.
Email hello@stepsim.com from the email address on the account, or use the credential ID shown on the verify page. We confirm identity before processing.
The simulation includes realistic workplace scenarios, including workplace conflict and time-pressure trade-offs. The program is designed for university students of typical undergraduate and graduate age, recent graduates, and adult professional learners. Programs running STEP with younger participants should screen age at the cohort intake and exclude under-18 participants from credential issuance.
The Center for AI Readiness in Asia Pacific (AIR APAC) is the credentialing authority. AIR APAC issues all STEP credentials, publishes the scoring rubric, and governs certification integrity. The STEP credential reads "Issued by AIR APAC."
Exeter Labs builds and operates the simulation
engine and the platform infrastructure.
Learners and universities interact with
stepsim.com as the STEP product
surface. Exeter Labs operates the simulation
engine, reporting views, and platform
infrastructure behind the experience.
Privacy and data inquiries: hello@stepsim.com. For a formal DPA, accessibility conformance report, or security review, email with the program name and we will scope it.
This page is the public statement of STEP's privacy and data practices. It is not a legal document. For cohort runs scoped with named partners, the contract and the data-processing agreement take precedence. For named credentialed learners in STEP Campus, the cohort data-handling note signed at enrollment is the controlling document.