P.O. Box 2012, Southeastern, PA 19399
Privacy & Security Policy
Policies Regarding Eduspire Solutions Software, Mobile Apps, and Cloud Platforms
These privacy provisions apply to www.e-hallpass.com, www.flextimemanager.com, www.schedool.com, www.studentvoicechoicer.com, and any other websites or mobile applications through which we offer client access to our software platforms.
User Data Privacy
We are committed to responsible data privacy protections and our systems are fully compliant with the Federal Educational Rights and Privacy Act (“FERPA”) at 20 U.S.C. 1232g (34 CFR Part 99), the Children’s Online Privacy Protection Act (“COPPA”), 15 U.S.C. 6501-6506, and the Protection of Pupil Rights Amendment (“PPRA”) 20 U.S.C. 1232h.
User data (including students, teachers, staff, administrators, or anyone else given login credentials to our software) used by our application may include user first and last names, user email addresses, user graduation years, and other related data that may be considered Personally Identifiable Information under relevant data privacy regulations and statutes. Clients provide this information to Eduspire Solutions rather than Eduspire Solutions collecting it directly from end users.
User data is not shared with anyone other than those working directly with Eduspire Solutions to support our software, and it will not be released to any other third parties without client authorization. Any such third parties or successor entities are also bound by privacy and data security policies that are consistent with our current policies. User data is only utilized within the context of the software platforms and is never utilized for any other purposes other than the administrative and educational purposes which support our clients. Eduspire Solutions also pledges never to collect, use, sell, or share such information for any purposes beyond the authorized educational or school purposes.
Eduspire Solutions maintains full compliance with FERPA via our secured cloud infrastructure. We take robust precautions to protect user information. All user information and data accessed in or through our software platforms is always done via an encrypted connection (SSL or SFTP), and all user data is stored only in restricted-access and encrypted databases on our protected network and servers.
When users submit sensitive information via our web-based platforms, that information is protected. Users’ personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and who are required to keep the information confidential. In addition, all sensitive information supplied is encrypted via Secure Socket Layer (SSL) technology. The computers & servers in which we store personally identifiable information are kept in a secure environment.
While we use encryption to protect sensitive information transmitted online, we also protect user information offline. Only employees who need the information to perform a specific job (for example, billing or customer service) are granted access to personally identifiable information.
Eduspire Solutions uses modern technology through our cloud infrastructure partners to provide regular automatic backups and disaster recovery options in case of accidental data loss. However, not all data may be recoverable, depending on the nature and timing of loss of any particular set of data. Eduspire Solutions also uses monitoring and third party tools to detect any possible data breaches and has a full data security and remediation plan in place for any suspected data branches or other system penetration from unauthorized users.
User Access to and Control Over Information
Any data regarding individual user accounts is owned by the school organization that is responsible for sharing user data with us. Eduspire Solutions retains user data and associated software use data at the direction of the school or district. Individual user data (including student data) can be accessed by students, parents, or other authorized parties for review or correction by requesting this data directly from the school or district. While individual user data is generally deleted only via the specific request of the original user source data provider (typically the school or the district), Eduspire Solutions does not retain user data any longer than necessary. In the case that a school or district no longer uses our software, all user data would not be retained for a period beyond one full school year after termination of services. Users may also have the ability to opt out of using our software entirely or request to have specific user account data deleted based on the policies of the user’s school or district. Please contact the school or district with any requests regarding this provision.
It is also relevant to note that certain user data is accessible from within the software to anyone whom we are instructed to give access to via user credentials of specified administrative types including teachers, staff, and other administrators. When we are instructed to create these login credentials, then they can be used to see student information from the relevant system including information such as student schedules, attendance, hall pass usage, or other items. In those cases, the client also acknowledges it is their responsibility to ensure their administrative users are also acting in compliance with relevant data privacy statutes and regulations.
Our Privacy & Security Policy may change from time to time and all updates will be published in this policy and the most recent version will always be posted publicly on our website. In the case of any material changes, all customers (i.e., each school or district) will be notified with the ability to opt out of any changes as warranted. Continued use of the software following such notifications will be interpreted as acceptance of any such changes.