QuickSchools.com Services Privacy Policy
Last Updated: [August 21, 2023]
This Services Privacy Policy describes the privacy practices of QuickSchools, Inc. (“QuickSchools,” “we,” “us” or “our”) that apply in relation to our online school management software we provide to our customers and their end users (collectively, “you,” “customer”, “school” or “user”) including when providing related technical support (collectively, our “Service”). This policy does not apply to personal information we collect and maintain in connection with our public-facing corporate website at quickschools.com (the “Site”) or otherwise outside of our Service. You can find our Website Privacy Policy for our Site here. Additionally, we have certified to the EU-US Data Privacy Framework. Our Data Privacy Framework certification can be found at the end of this policy.
Please note that in certain circumstances and jurisdictions, our customer (typically, a school or school district) is responsible for providing, or may elect to provide, disclosures to their end users regarding the use and processing of personal information by us on their behalf through the Service. For example, for our customers that are subject to European Union data protection law, the customer has the role of “controller” as defined in that law in that the customer determines the purposes and means of processing your personal information in the Service. In such cases, we act as a “processor” of the personal information on behalf of, and on the instructions of, those customers. Accordingly, the customer is ultimately responsible for required privacy disclosures regarding use of the Service within their organization. Additionally, our customers have considerable flexibility in what aspects of the Service they procure and use and how they use it, including the extent and type of personal information they elect to collect and the uses of the personal information. For these reasons, our customer (your school or school district) may provide you with their own privacy policy or notice that governs your use of our Service and supersedes or supplements the information in this policy in whole or in part. End users should contact their school or school district that makes our Service available to them to determine what privacy policy or policies governs their use of our Service.
INFORMATION WE COLLECT FROM YOU
This policy discloses information about personal information we collect and process.
"Personal information" can have somewhat different meanings under different privacy laws, but generally is information that is about or relates to a particular identified or identifiable person or information that could reasonably be linked to a particular person. The types of personal information we collect in relation to our Service depends on, among other factors, the end user’s role (e.g., customer administrator, teacher, parent, student) and how our customer elects to use our Service.
Profile Information. For each end user of our Service, we generally collect basic profile information for the user such as their name, email address, and other basic contact information as well as a user name and other login credential information. For customer personnel, this may include the individual’s title and similar work details. Generally, this information is initially submitted by an administrative user of our customer when they establish a new end user in the customer’s account.
Customer personnel. In addition to general profile information, personal information submitted for customer personnel may include information such as their personal identification numbers, home address, email addresses, academic credentials, professional development details, work history details, bank account information, and other information the customer or user may elect to submit to and store in the Service.
Employee Information. We also collect employee account information including usernames, email addresses and titles to initially set up products and services for you.
Parents. In addition to profile information, personal information submitted for parents may include information such as personal identification numbers, work addresses, employment information, credit card details, and other information the customer or user may elect to submit to and store in the Service.
Students. In addition to profile information, personal information submitted for students may include information such as their student ID, the courses in which they are enrolled, their academic and other student records, certain health information, financial information, and similar information maintained by our customer about the student.
The information submitted to our Service varies depending on the particular Service offerings our customer has procured, how the customer uses the Service, and the information they choose to submit to it. Contact the school organization through which you access our Service for more information on the personal information of your that they collect and maintain in the Service.
Technical Information. As is true of most other websites and mobile applications, the Service collects certain technical information automatically from a user’s device when they interact with the Service and stores the information in log files. The information may include internet protocol (IP) addresses for the user’s device, the region or general location where the computer or device is accessing the internet, its browser type and operating system, and other usage information about the use of our Site and Service, including a history of the pages viewed. Some of this information may be personally identifiable under applicable privacy and data protection law.
Through Cookies and Other Similar Technologies. “Cookies” include commonly used pieces of information in the form of small files that are placed on an individual’s device to enable the individual to more easily communicate and interact with the Sites. When you visit our Site, we may send one or more cookies to your device. They enable us to store information about your device which helps us, amongst other things, to provide you with a good experience when you browse our Site and enhance the level of services and functions provided. Please review our Cookie Policy for more information.
HOW WE USE PERSONAL INFORMATION
How We Use Personal Information Generally. QuickSchools will not use your personal information for any purpose other than the purpose for which it was originally obtained without your prior consent. We use your personal information to operate, maintain, and provide the Service in accordance with our customer agreement and to communicate with you about the Service including to provide support. We also may use personal information collected through the Service in the following ways:
-
To monitor and improve our handling of inquiries and requests;
-
For analysis to troubleshoot and improve our Service;
-
To inform you of our products updates and services offering;
-
To perform accounting, auditing, billing, reconciliation, collection, and similar administrative activities;
-
To help maintain the safety, security, and integrity of our Service and our networks, databases, and other technology assets;
-
To prevent, detect, identify, investigate, respond to, and protect against potential or actual claims, liabilities, prohibited behavior, fraud, and criminal activity;
-
To respond where required to law enforcement requests, to comply with and enforce applicable legal requirements, agreements, and policies, and to enforce our rights; and
-
To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred.
How We Use Parent and Student Information. Our Service is a set of information management tools designed to help our customers (schools and school districts) administrate and operate their organizations. Our customers procure and use different features and functionality within our Service. They also use them to manage and submit different types of personal information they maintain. Accordingly, how parent and student information is used depends on our customer’s instructions to us and their manner of using the Service. To learn more about how your school or school district uses our Service to process and store parent or student information, please consult with your school organization through which you use the Service.
Regardless of how your school uses our Service, QuickSchools uses student or parent personal information solely for the purposes of providing and maintaining our Service for our customers and as otherwise described in this policy. Student and parent personal information is not used by Quickschools for targeted advertising or other marketing purposes.
HOW WE SHARE INFORMATION WITH OTHERS
We do not rent or sell your personal information or share your personal information with third parties for their direct marketing purposes. We share personal information to our third party service providers we use to perform functions or services on our behalf and we require those service providers to maintain the privacy, confidentiality, and security of the personal information we make available to them and to only process the personal information for purposes of providing their services to us. The services these providers perform for us include software maintenance services, hosting services, email services, accounting services, CRM services, database management, and security and analytics services.
Types of Service Providers. We engage third parties to perform services on our behalf such as software maintenance services, hosting services, email service providers, database management, web analytics, and other services.
Marketing Support Services. Like many companies, we contract with third parties to provide customer relationship management (“CRM”) tools for marketing purposes. Typically, these CRM tools are available for our use through a cloud-based platform (such as Zendesk). We engage third parties to provide CRM tools that compile customer personal information and data that may be collected through various channels, such as through the Sites, telephone, direct mail, marketing materials.
Law Enforcement and Internal Operations. We may provide personal information to third parties where we are required to do so by law, or if we believe in good faith that it is reasonably necessary (i) to respond to claims asserted against QuickSchools or to comply with a legal process (for example, discovery requests, subpoenas, or warrants); (ii) to enforce or administer our policies and agreements with users; (iii) for fraud prevention, risk assessment, investigation, customer support, product development and debugging purposes; or (iv) to protect the rights, property or safety of QuickSchools, its end users, or members of the general public.
Affiliates and Business Transfer. We may share your personal information with our parent, subsidiaries, and affiliates. QuickSchools may also transfer or disclose your personal information in the context of our sale, transfer, or similar disposition of some or all of our assets in connection with a merger, acquisition, reorganization, or sale of our assets or in the event of bankruptcy.
Sharing as Directed by our Customer Agreements. We share student and other personal information in accordance with our agreements with our customers. For example, a customer agreement may provide that our Service will integrate with other similar information management services used by our customer that involves sharing of personal and other information between our Service and the other service.
YOUR RIGHTS AND CHOICES
Depending on the jurisdiction and laws applicable to our processing of your personal information, you may have various rights with respect to our processing of your personal information. These rights may include the right to access (including in a portable format), delete, and correct your personal information that we maintain, to withdraw your consent to our processing of your personal information where your consent is being relied upon, and to restrict and object to our processing of your personal information. While the United Kingdom is no longer a member of the European Union, an explanation of rights afforded under European Union data protection law (in English) is available on the website of the United Kingdom’s Information Commissioner’s Office. An explanation of rights afforded in certain cases to California residents under the California Consumer Privacy Act of 2018 is available on the California Attorney General’s CCPA page found here. However, the applicability of these various laws and rights to you depends on a variety of factors and the principal responsibility of determining the applicability of these rights and the appropriate response to any requests or invocation of rights lies with the applicable QuickSchools customer. Their responsibilities include:
-
ensuring that those individuals whose personal information is processed by us on their behalf receive any required disclosures or notices;
-
determining the applicability and appropriate response to personal rights requests,
-
where applicable, determining the legal basis for processing the personal information;
-
determining when obtaining your consent to processing is required or advisable and obtaining that consent; and
-
making similar determinations about what rights are required or advisable to accommodate and the proper manner of responding to rights requests.
We then assist our customers in accordance with their instructions to us in these matters. In some cases, you may be able to directly perform certain rights requests yourself by logging into your account within our Service. However, some requests and questions will require our or our customer’s assistance. If you have questions about consent options, legal bases for processing your personal information, asserting rights with respect to the processing of your personal information, or similar questions and you are not able to address the issue yourself through the Service, you may contact the school organization through which you access the Service or contact us at [email protected] or (650) 399-7075 and we will relay your request to the customer as necessary. In some cases, honoring your request will prevent us from providing the Service to you in whole or in part.
Right to Lodge a Complaint (EU). If our processing of your personal information is governed by the data protection laws of the European Union (e.g., the GDPR) and you believe there has been a violation of your rights under such data protection laws, you may file a complaint directly to your local Supervisory Authority. A list of Supervisory Authorities is available here.
RETENTION OF PERSONAL INFORMATION
We retain customer data including the personal information within it in accordance with the relevant customer agreement, our internal data retention policies, and our customer's instructions. Typically, we retain the customer data through the term of the customer's subscription to the Service and then delete or return it in coordination with the customer within a reasonable time thereafter. In certain instances, some customer data may be archived to meet legal requirements, to preserve and provide evidence in cases of litigation, or if otherwise required by law.
SECURITY
We maintain reasonable and appropriate technical and organizational security measures designed to protect personal information in our Service from loss, misuse, and unauthorized access, disclosure, alteration, and destruction taking into account the nature and sensitivity of the personal information and risks involved in its processing. We update and test these security measures regularly. We restrict access to personal information within our company to those personnel who need to have access to the information for the purposes described in this policy. In addition, we train our employees about the importance of confidentiality and maintaining the privacy and security of personal information we collect and maintain.
LINKS TO OTHER WEBSITES AND SERVICES
Customer data, including personal information within it, in the Service may be shared through customer-directed integrations of the Service with other third party services. When the information is processed by such other third party services or otherwise outside the Service, it is no longer governed by this policy. Such integrations do not imply any relationship, sponsorship, or affiliation between QuickSchools and these other services, nor does it imply any adoption or approval of the content or processing practices of such other services. QuickSchools does not have control over the policies or practices of these other services and is not responsible for their privacy practices or their content. We encourage you to review the privacy statements of any such other services to understand their personal information handling practices.
INTERNATIONAL TRANSFERS
Your personal information submitted to the Service is stored by QuickSchools on its servers and on the servers of the third party cloud-based database management and hosting services QuickSchools uses in its operation of the Service located in the United States and in other countries where QuickSchools personnel or service providers may be located. Accordingly, personal information submitted to the Service from outside of the United States will be transferred to and maintained in the United States and such other countries. We take steps to ensure that your personal information receives an adequate level of protection in the jurisdictions in which we and our service providers process it. When dealing with international transfers, we comply with the GDPR by adopting the EU-US Data Privacy Framework and the Standard Contractual Clauses pursuant to Regulation (EU) 2016/679 of the European Parliament and of the Council. For more information on this, you may contact us at our contact information below.
EU-U.S. DATA PRIVACY FRAMEWORK
QuickSchools complies with the EU-US Data Privacy Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries transferred to the United States pursuant to the Data Privacy Framework. QuickSchools has certified that it adheres to the Data Privacy Framework Principles with respect to such data. To learn more about the Data Privacy Framework program, and to view our certification page, please visit https://www.dataprivacyframework.gov/s/.
CHILDREN’S PRIVACY
We do not knowingly collect or solicit personal information from anyone under the age of 16 except in the case of student end users whose school and/or teacher has agreed to obtain the consent of the parent or guardian of that student to use the Service and submit the Student’s personal information to the Service.
YOUR CALIFORNIA PRIVACY RIGHTS
California's "Shine the Light" law (Civil Code Section § 1798.83) permits users of our Site that are California residents to request certain information regarding our disclosure of personal information to third parties for their direct marketing purposes. To make such a request, please send an email to [email protected] or call us at (650) 399 -7075.
CHANGES AND UPDATES TO THIS SERVICES PRIVACY POLICY
As our company changes from time to time, this policy is expected to change as well. We reserve the right to amend this policy, for any reason, without notice to you, other than the posting of the amended policy in which case we will update the “last updated” date at the beginning of this policy. We may send you an email reminder of our notices and material changes, but you should check this page regularly to see the current Services Privacy Policy as in effect.
QUESTIONS, CONCERNS, OR COMPLAINTS
You may contact us with your questions, comments, and complaints at:
By Email: [email protected]
By Mail:
Attn: Privacy at QuickSchools
QuickSchools, Inc.
2010 El Camino Real # 1307
Santa Clara, CA 95050
United States of America
DATA PRIVACY FRAMEWORK NOTICE
PLEASE NOTE: On July 16, 2020, the Court of Justice of the European Union (CJEU) issued a judgment, known as the Schrems II decision, which declared as “invalid” the European Commission’s Decision (EU) 2016/1250 of 12 July 2016 on the adequacy of the protection provided by the EU-U.S. Privacy Shield. As a result of the Schrems II decision, the EU-U.S. Privacy Shield Framework is no longer a valid mechanism to comply with EU data protection requirements when transferring personal data from the European Union to the United States. That decision did not relieve participants in the EU-U.S. Privacy Shield of their obligations under the EU-U.S. Privacy Shield Framework.
On the basis of the EU-U.S. Data Privacy Framework Principles, Executive Order 14086, 28 CFR part 201, and accompanying letters and materials, including the commitments by the U.S. Department of Commerce’s International Trade Administration (ITA) regarding the administration and supervision of the Data Privacy Framework (DPF) program, the European Commission was able to adopt a new adequacy decision recognizing the adequacy of protection provided by the EU-U.S. DPF. The European Commission’s new adequacy decision affirms that the strengthened safeguards in U.S. law on signals intelligence activities, new redress mechanism, and the amended privacy principles under the EU-U.S. DPF meet EU legal requirements thereby enabling participating organizations to use the EU-U.S. DPF Principles to transfer EU personal data to the United States in compliance with EU law. The Department expects that those arrangements will further facilitate transfers to U.S. organizations made in reliance on other data transfer mechanisms under EU law, such as Standard Contractual Clauses and Binding Corporate Rules.
This Data Privacy Framework Notice (this "Notice") discloses information about and applies only to our processing of personal information transferred from the EU to the U.S. in reliance on our certification under the EU-U.S. Data Privacy Framework. We have certified to and will adhere to the EU-U.S. Data Privacy Framework through our adoption and implementation of the Data Privacy Framework Principles (the "Principles") and we commit to comply with those principles with respect to all personal information we receive from the EU. We have also designated JAMS as our Alternative Dispute Resolution (ADR) Provider.
This policy may be amended or modified from time to time consistent with the EU-U.S. Data Privacy Framework. If there is any conflict between the terms in this Notice and the Data Privacy Framework Principles, the Data Privacy Framework Principles shall govern. To learn more about the Data Privacy Framework please visit https://www.dataprivacyframework.gov/s/. To view QuickSchools’ Data Privacy certification please visit https://www.dataprivacyframework.gov/s/participant-search.
Amendment. This Notice may be amended consistent with the requirements of the EU-U.S. Data Privacy Framework.
Questions or complaints. If you have any questions, concerns or complaints regarding our privacy practices, or if you’d like to exercise your choices or rights, you can contact us at the contact information provided at the end of the Services Privacy Policy.