Data Processing & Security Statement

    Effective Date: August 5, 2025

    SchoolPaddi is committed to maintaining the confidentiality, integrity, and security of the data entrusted to us by schools, parents, teachers, and students. This Data Processing & Security Statement explains how SchoolPaddi processes, stores, and protects information within the platform.

    1. Purpose of Data Processing

    SchoolPaddi processes data strictly for the purpose of providing school management and learning services. Data processed within the platform supports functions such as:

    • student record management
    • academic performance tracking
    • attendance monitoring
    • parent–school communication
    • financial record tracking and receipt generation
    • event and transport management
    • learning and examination preparation tools.

    SchoolPaddi processes information only to the extent necessary to operate and improve these services.

    2. Data Controller and Data Processor

    Within the SchoolPaddi platform:

    • Schools act as the Data Controllers, meaning they determine what student, parent, or institutional data is entered into the system.
    • SchoolPaddi acts as the Data Processor, meaning we process and store data on behalf of the schools.

    Schools maintain ownership and control of the data they input into the platform.

    3. Types of Data Processed

    The platform may process the following categories of data depending on how schools use the system.

    Institutional Data: school name and contact information, administrative staff details, class structures and academic sessions.

    Student Data: student names and identification numbers, class assignments, attendance records, academic results, learning activity records.

    Parent or Guardian Data: parent names, contact details such as phone numbers or email addresses, payment-related activity linked to school services.

    System Usage Data: To improve reliability and security, the platform may collect certain technical information such as login activity, device or browser type, IP address, system usage patterns.

    4. Data Storage and Protection

    SchoolPaddi implements reasonable technical and administrative safeguards to protect data stored on the platform. Security measures may include:

    • secure server infrastructure
    • encrypted data transmission where applicable
    • restricted administrative access
    • system monitoring to detect unauthorized activity.

    Access to sensitive system components is limited to authorized personnel responsible for maintaining platform functionality and security.

    5. Data Access Control

    Access to data within SchoolPaddi is role-based. Different user roles have controlled access levels, such as school administrators, teachers, parents, students. Each role is restricted to the information necessary for its intended purpose. For example:

    • parents can access information related to their own child
    • teachers can access academic data relevant to their assigned classes.

    This structure helps maintain privacy and proper information separation.

    6. Data Retention

    SchoolPaddi retains data only for as long as it is necessary to provide services to the school. Schools may request the deletion or export of their data in accordance with their internal policies and applicable regulations.

    When accounts are terminated, reasonable efforts are made to remove or anonymize stored data within a reasonable timeframe, unless retention is required for legal or operational reasons.

    7. Data Sharing

    SchoolPaddi does not sell personal data. Data may only be shared in limited circumstances such as:

    • when necessary to deliver services requested by the school
    • when working with trusted infrastructure providers that support system operations
    • when required by law or legal authorities.

    In all cases, data sharing is limited to what is necessary for the intended purpose.

    8. Payment Processing Security

    If schools enable online payments within the platform, transactions may be processed through secure third-party payment providers. SchoolPaddi does not store sensitive financial card information on its servers. Payment providers handle financial transaction security according to their own compliance standards.

    9. System Monitoring and Security Maintenance

    SchoolPaddi regularly monitors system activity to detect potential threats, misuse, or unauthorized access attempts. Security updates and infrastructure improvements may be implemented periodically to maintain system reliability and protect platform users.

    10. Responsible Use by Schools

    Schools are responsible for ensuring that the data they upload to SchoolPaddi:

    • is accurate and authorized for use
    • respects applicable data protection regulations
    • is managed according to their internal data policies.

    SchoolPaddi provides the infrastructure for managing this data but does not control the accuracy of school-provided information.

    11. Updates to This Statement

    This Data Processing & Security Statement may be updated periodically to reflect changes in system operations, security practices, or legal requirements. Updated versions will be published on the SchoolPaddi website with the revised effective date.

    12. Contact Information

    For questions regarding data protection or platform security, please contact:
    SchoolPaddi Support
    Website: SchoolPaddi.com