Privacy Policy

System-Wide Privacy Policy for myCampus Platform

Last Updated: October 26, 2023

1. Introduction

myCampus ("we," "us," "our," or "the Company") provides a cloud-based Software-as-a-Service (SAAS) platform ("the Platform" or "the Service") designed for educational institutions. This System-Wide Privacy Policy outlines how we collect, use, disclose, and safeguard information processed through the myCampus platform, including the myCampus TS and myCampus SP mobile applications.

This policy describes our practices as the data processor of student, parent, teacher, and staff data on behalf of our customer schools, who act as the data controllers. It also covers data for which we are the data controller, such as prospective customer and website visitor information.

By subscribing to and using the myCampus platform, the educational institution ("the Customer") acknowledges and agrees to the data practices described in this policy.

2. Scope and Roles

  • Data Controller (The School): The educational institution that subscribes to our service determines the "why" and "how" of processing personal data of its users (students, parents, staff). The school is responsible for obtaining necessary consents and providing its own privacy notice to its users.

  • Data Processor (myCampus): We act as a processor and process personal data strictly on behalf of and according to the instructions of the Data Controller, as defined in our Terms of Service and Data Processing Agreement (DPA).

3. Information Processed by the Platform

The platform processes the following types of personal data on behalf of our customer schools:

a. Account Data: Information provided by the school to create user accounts (e.g., names, email addresses, unique user IDs, roles [teacher, student, parent]).

b. Educational Data: Data generated and managed by the school through the use of our services, including but not limited to:

  • Student grades, assessments, and report cards.

  • Attendance and timetable records.

  • Assignment submissions and teacher feedback.

  • Behavioral records and disciplinary notes.

  • Internal communications between users (teachers, parents, students, administrators).

c. Technical & Usage Data (System Data): Data generated automatically by the platform to ensure security, stability, and performance:

  • Log Data: IP addresses, device type, browser type, pages visited, and access times.

  • Cookies and Identifiers: We use essential cookies and similar technologies to maintain user sessions, authenticate users, and ensure platform security.

  • Performance Data: Information related to app crashes, latency, and system performance (e.g., through Firebase Crashlytics).

4. How We Use the Information (Purposes of Processing)

We process data solely for the following purposes:

  • To Provide and Maintain the Service: To operate, host, and make the platform available to the Customer and its users.

  • To Support Our Customers: To provide technical and customer support to the school administrators.

  • To Ensure Security: To monitor for and prevent fraudulent activity, authenticate users, and protect the security of the platform.

  • To Improve the Service: To analyze aggregated, anonymized usage trends to improve functionality, user experience, and develop new features.

  • To Fulfill Legal Obligations: To comply with applicable laws, regulations, and legal processes.

5. Data Sharing and Disclosure

We do not sell or rent the processed personal data to third parties. We may share data only in the following circumstances:

  • With Service Providers (Sub-processors): We engage trusted third-party companies to perform services on our behalf, such as:

    • Cloud Hosting (e.g., AWS, Google Cloud, DigitalOcean): To store data securely.

    • Analytics & Monitoring (e.g., Google Firebase): For crash reporting and performance monitoring.

    • Customer Support Tools: To manage support tickets.
      These sub-processors are bound by strict data protection agreements and are prohibited from using data for any other purpose.

  • With the Educational Institution: All data is inherently visible and managed by the Customer school as the data controller.

  • For Legal Reasons: If required to do so by law, subpoena, or if we believe in good faith that such action is necessary to comply with the law or protect the rights and safety of others.

6. International Data Transfers

myCampus operates and stores data on servers located within India. However, if any of our sub-processors operate outside of India, we will ensure such transfers are governed by appropriate safeguards as required by applicable data protection laws.

7. Data Security

We implement robust administrative, technical, and physical security measures designed to protect the data processed by our platform against unauthorized access, alteration, disclosure, or destruction. These measures include encryption in transit (SSL/TLS), strict access controls, and regular security assessments.

8. Data Retention

We will retain personal data processed on behalf of a school for as long as the school's account is active or as needed to provide services. Upon termination of the service, we will, at the school's choice, either delete or return all personal data, in accordance with our data deletion protocols and applicable law.

9. Your Rights (For End-Users)

Since myCampus acts as a data processor, individuals (students, parents, staff) who wish to exercise their rights under data protection laws (e.g., access, correction, deletion) must primarily contact their educational institution (the data controller). We will provide our customers with commercially reasonable assistance to help them fulfill such requests.

10. Changes to This Policy

We may update this System Privacy Policy from time to time. We will notify our customer schools of any material changes by posting the new policy on this page and updating the "Last Updated" date.

11. Contact Us

For questions about this System Privacy Policy, or if you are a school administrator and need to discuss data processing agreements, please contact us at:

myCampus
Tamluk, Purba Medinipur,
West Bengal, 721636, India
Email: mycampusonline247@gmail.com