Legal / Privacy Policy
EduSentrix Privacy
Last updated: May 27, 2026
This policy explains how data is handled across EduSentrix School OS and EduSentrix Learn, including role-based experiences on web and mobile.
1) Scope of this policy
- This Privacy Policy explains how Appsentrix processes personal data when you use EduSentrix.
- It applies to EduSentrix School OS, EduSentrix Learn, and related web/mobile experiences for school admins, bursars, teachers, parents, students, and platform operators.
2) Roles in data processing
- For most school operational data, the school is the data controller and Appsentrix acts as a data processor/service provider.
- For platform account, security, billing, and support operations, Appsentrix may act as a controller for required business data.
3) Data we collect
- Account and identity data (name, email, phone, role, login metadata).
- School operational data (student records, attendance, timetable, communications, fees and billing events).
- EduSentrix Learn data (learning progress, assignment activity, exam-practice interactions, and related academic context).
- Technical and security data (IP address, browser/app metadata, session logs, device signals, and audit trails).
- Support and contact data (messages, support requests, and service communications).
4) Why we process data
- To provide, secure, maintain, and improve EduSentrix services.
- To support school operations requested by authorized school users.
- To authenticate users, enforce permissions, and prevent fraud or abuse.
- To provide customer support, service notifications, and account communications.
- To meet legal, compliance, accounting, and security obligations.
5) Legal basis
- We process data based on contract performance, legitimate interests, legal obligations, and consent where required.
- Schools are responsible for their own legal basis and notice obligations when they collect student/guardian data through EduSentrix.
6) Child and student privacy
- EduSentrix handles student data only for legitimate education and school operations purposes.
- Schools and guardians remain responsible for student supervision, lawful disclosures, and policy enforcement.
- We do not knowingly use student data for unrelated advertising purposes.
7) EduSentrix Learn privacy
- EduSentrix Learn is a separate student learning experience linked to school context.
- Learn activity data is used to deliver assignments, practice, progress insights, and learning support features.
- Schools decide which students are enabled and how Learn is used under school policy.
8) Payments and financial data
- Payment processing may involve third-party providers (for example card or mobile-money processors).
- EduSentrix receives transaction metadata needed for reconciliation and reporting; sensitive payment credentials are handled by payment providers under their controls.
9) AI-assisted features and content safety
- AI features may process prompts and related context needed to generate responses.
- AI output can be inaccurate; users must review output before high-impact use.
- We may apply moderation and safety controls to reduce harmful or abusive usage.
10) Data sharing
- We do not sell personal data.
- We share data only with authorized users, contracted service providers, legal authorities (when required), and other recipients needed to deliver the service lawfully.
- Service providers are required to handle data under contractual confidentiality and security obligations.
11) International transfers
- Some providers may process data in countries outside your own.
- Where transfers occur, we apply appropriate safeguards required by applicable law and contract.
12) Security measures
- We use layered security controls including access controls, encryption in transit, logging, monitoring, and environment protections.
- No system is absolutely risk-free; users and schools should also enforce strong passwords, role controls, and endpoint security practices.
13) Data retention
- We retain data only as long as needed for service delivery, security, legal, and operational requirements.
- Backups and logs may persist for limited periods after deletion requests.
- Retention windows may differ by data type and legal requirements.
14) Data access, correction, export, and deletion
- Authorized school administrators can manage, update, and export school data according to available product capabilities.
- Requests for deletion or correction should be submitted by authorized school contacts or account owners.
- Some data may be retained where legally required or needed for fraud prevention/security investigations.
15) Cookies and analytics
- We use necessary cookies/session technologies to authenticate users, keep sessions secure, and improve performance.
- We may use product analytics to understand usage trends and improve reliability.
16) Breach and incident notification
- If we confirm a significant security incident affecting your data, we notify impacted customers within a reasonable timeframe as required by law.
- We may require immediate security actions such as credential resets and access restrictions during containment.
17) Third-party links and services
- External services linked from EduSentrix have their own privacy practices.
- We are not responsible for third-party privacy policies outside our service boundaries.
18) Policy updates
- We may update this Privacy Policy to reflect legal, security, product, or operational changes.
- Updated versions become effective on the published date.
19) Contact and privacy requests
- For privacy questions or data requests, contact support@tryedusentrix.app or call 0551171009.
- For school-specific requests, include school name, role, and sufficient details so we can verify authority and respond quickly.
