Privacy Policy of SchoolCentral

Effective Date: 01 August 2023

At SchoolCentral, a subsidiary of In The Creative Box Pty (Ltd), we are committed to protecting your privacy and ensuring that your personal information is processed in accordance with the Protection of Personal Information Act (POPIA) of South Africa, and where applicable, international data protection regulations like the General Data Protection Regulation (GDPR).

This Privacy Policy outlines how we collect, use, and protect your personal data, and your rights regarding your data.

1. Information Collected and Purpose

We collect the following types of personal data to provide our services effectively:

  • Personal Data: Information that identifies you, such as your name, address, email address, telephone number, school affiliation, and academic records. This data is used for user registration, course enrollment, identification, and personalized communication.

  • Usage Data: Details about how you interact with our platform, including course enrollment history, session durations, and activity patterns. This helps us optimize and improve the user experience.

  • Technical Data: Information such as IP addresses, browser types, device details, and system logs. This data is used for troubleshooting technical issues, security, and analytics.

2. Lawful Processing

We process your personal data lawfully, in accordance with the principles of POPIA, which means:

  • With Your Consent: We obtain your explicit consent to process your personal data for the purposes stated in this policy.

  • For Specific, Legitimate Purposes: We collect and process your data only for clearly defined purposes, such as course administration and providing support for your learning experience.

  • Minimal and Relevant: We ensure that we collect only the data that is necessary for the purposes of processing and that it is relevant to the services we provide.

3. Data Retention and Limitation

Your personal data is retained only for as long as it is necessary to fulfill the purposes for which it was collected, or as required by law. Once the data is no longer required, it will be securely destroyed in line with our data retention policy.

4. Sharing & Disclosure

We do not sell or rent your personal data. However, we may share your data in the following instances:

  • Third-Party Service Providers: We engage trusted third-party providers to assist with course delivery, technical support, and certification. These parties are bound by strict data protection agreements and only use your data to the extent necessary to perform their services.

  • Legal Obligations: If required by law, or in response to valid legal requests, we may disclose your personal data.

  • Business Transitions: In the event of a merger, acquisition, or sale of assets, your personal data may be transferred as part of the business transaction, provided that the receiving entity complies with the same data protection standards.

5. Data Security

We have implemented technical and organizational security measures to protect your personal data from unauthorized access, alteration, or disclosure. These measures include encryption, firewalls, and regular system audits to prevent breaches.

However, while we strive to protect your personal information, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.

6. Data Subject Rights

As a data subject, you have the following rights under POPIA and GDPR (if applicable):

  • Right to Access: You can request a copy of the personal data we hold about you and verify its accuracy.

  • Right to Rectify: If any of your personal data is incorrect or incomplete, you can request corrections.

  • Right to Delete: Under certain circumstances, you may request the deletion of your personal data from our systems.

  • Right to Object: You can object to the processing of your personal data, particularly in cases where data is processed for marketing purposes or automated decision-making.

To exercise any of these rights, please contact us at info@schoolcentral.io.

7. International Data Transfers

Although SchoolCentral operates primarily in South Africa, we may transfer your data internationally to support services provided by third-party partners. We ensure that any such transfers comply with relevant data protection laws and guarantee that equivalent standards of protection are in place.

8. Age Restrictions

Our platform is not intended for children under the age of 13. We do not knowingly collect personal data from children. If we discover that we have inadvertently collected data from a child under this age, we will promptly delete it.

9. External Links

Our website may contain links to external sites. While we make efforts to ensure that these sites adhere to similar privacy standards, we are not responsible for their privacy practices. We encourage you to read their privacy policies before providing them with any personal information.

10. Policy Amendments

We reserve the right to amend this Privacy Policy as necessary to comply with evolving legal requirements or best practices. If significant changes are made, we will notify users via email or through a prominent notice on our website.

11. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at:

School Central (Pty) Ltd
Registration Number: 2018/357110/07
Registered Address: Block A Wedgefield Office Park, 17 M, Bryanston, CreativeBox, Johannesburg, 2191, South Africa
Email: info@schoolcentral.io
Website: www.schoolcentral.io