Educonnex Pty Ltd is a company based in NSW, Australia that sells and distributes software, primarily focused on school administration.

• Address: 15/1 Bounty Cl, Tuggerah, NSW Australia 2259
• Phone: +61 (02) 4304 3000
• Email: [email protected]

Educonnex is committed to protecting and respecting your privacy and as such are the Data Controller. We are subject to the privacy laws of the jurisdictions in which we operate, including the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth) and the EU General Data Protection Regulation (Regulation 2016/679) as it applies to Australia and the European Economic Area.

The purpose of this Policy is to:

• explain the types of information that we may collect from customers or authorised users; and
• how that information will be processed by us or on our behalf.

This Policy does not apply to Personal Information that may be collected by a third party or how that third party may use, handle, store or disclose your Personal Information.

For the purposes of this Policy, the following definitions apply:

• Customer means the educational institutions, whether public or private, which have subscribed to our product/s.
• Educonnex, we, our, us means Educonnex Pty Ltd; ACN 160 850 322.
• Our product/s means the suite of software produced and/or sold by Educonnex Pty Ltd.
• Personal information means a set of data that could be used to identify a specific person.
• School administrator/s means authorised school/organisation staff who have administration-level access to our product/s.
• User/s means individuals associated with our customers that have their data in our product/s.

Our servers are co-located at: Macquarie Datacentre 17-23 Talavera Rd, Macquarie Park NSW 2113. Our structure meets all privacy policy at federal and individual state and territory levels in Australia.

• We do not sell personal information.
• Our customers are responsible for the maintenance and accuracy of information.
• Educonnex does not modify data, except when directly requested to do so by an authorised school administrator.
• When not logged in to our products, we collect anonymised information or details supplied voluntarily.
• The customer owns the data associated to their school/organisation.
• We retain information for a limited period. At any time, a school administrator can request that the data associated with their school/organisation be purged from our system.
• Requests to purge information of an individual user can be requested by a school administrator.
  We will not disclose any personal information stored in our products to any individual or organisation unless compelled to do so in connection with any legal proceedings or prospective legal proceedings, or where we have a commercial agreement with a supplier that protects user data as outlined in this policy.
• We protect your information by using 128-bit encryption.
• We secure our website and other systems with technical and organisational measures against the loss, destruction, access, change or dissemination of your data by unauthorised persons.

• Access to use our products requires login credentials, such as a username and password, to identify the user.
• We record date and time of access, website URL, IP address, referrer URL, product and version information of the browser used.
• When a user is logged into our products, we record what actions are being performed using those login details.
• Educonnex and its suppliers may use cookies or web beacons. These are used to provide a user with an active session of our products, and to monitor traffic on our websites and products.
• If a user chooses to not allow cookies, it may impair or prevent usage of our products.
• We supply the nominated school administrators with login details to access their school’s/organisation’s instance of our product/s.
• Data about users is supplied to our products by customers – either by school administrators or individual users. The information is needed in order to fulfil the purposeful functionality of the products.
• School administrators are responsible for the accuracy of the data uploaded for their school/organisation, as well as ensuring the correct users have access to the correct login details.

Our products integrate with ClickSend to support delivery of SMS text messages

• ClickSend SMS API is used as a subprocessor to send SMS text messages generated by our customers from within our products.
• We may access this system internally for operational monitoring and troubleshooting only when necessary to support customer issues.
• We do not use this or any other service to contact non-administrative staff (like parents, students, or non-administrative staff) for the purpose of marketing.
• View ClickSend’s privacy policy here: https://www.clicksend.com/au/legal/privacy-policy

Our products integrate with Firebase to support delivery of push notifications

• Firebase is used as a subprocessor to transmit push notifications from within our products.
• Firebase identifies the device that a notification should be delivered to and delivers the notification.
• These notifications can be deactivated and reactivated at any time in the settings of the mobile device.
• We may access this system internally for operational monitoring and troubleshooting only when necessary to support customer issues.
• View Firebase’s privacy policy here: https://firebase.google.com/support/privacy

We use Google Analytics internally to monitor website traffic

• Google Analytics gives statistical information and user habits when interacting with our sites.
• We use this service to observe aggregate data about traffic to, and within, our websites.
• Google Analytics does not tell us individual user details.
• We are able to see broad information, like the number of users accessing our site from a city.
• View Google’s privacy policy here: https://policies.google.com/privacy

We use Hotjar to improve our public websites

• Hotjar is a service which shows how users navigate through a website.
• We use this service to see what information is of interest to users visiting our public websites.
• The information we collect lets us improve the information we offer, and the structure of our public websites.
• The information we receive does not contain any personal information of the user.
• View Hotjar’s privacy policy here: https://www.hotjar.com/legal/policies/privacy/

We use LiveChat to provide support services

• LiveChat is a service that allows a user to chat online with our support team.
• Our public websites require the individual to supply their name and email address if they wish to use LiveChat.
• For a customer’s instance of our product, LiveChat is only available to school administrators. Our product will pass the username, email address, and school organisation to LiveChat, to allow us to identify the school administrator who has messaged us.
• Usage of LiveChat is at the discretion of the individual/school administrator.
• View LiveChat’s privacy policy here: https://www.livechat.com/legal/privacy-policy/

Our products integrate SMTP2GO to deliver emails

• SMTP2GO is used as a subprocessor to send emails generated by our customers from within our products.
• A recipient of any email generated through this system can unsubscribe from further emails, by clicking the unsubscribe link at the bottom of any of these emails or contacting their school organisation.
• We may access this system internally for operational monitoring and troubleshooting only when necessary to support customer issues.
• View SMTP2GO’s privacy policy here: https://www.smtp2go.com/privacy/

Our products integrate with Wonde

• Wonde provide a service to transfer data to our PTO product from a school’s administration software.
• We may share the name and work email address only of a school administrator with Wonde.
• Subscription to, and usage of, Wonde is at the discretion of the customer.
• View Wonde’s privacy policy here: https://www.wonde.com/au/privacy-policy

We use Zoho CRM internally to maintain our sales database

• Zoho CRM is used to maintain sales records and to establish customer relationship management for business development purposes.
• Identifying and contact information is only stored where a person has contacted us directly to request information on our products.
• View Zoho’s privacy policy here: https://www.zoho.com/privacy

We use Zoho Campaigns internally to maintain our sales and marketing database

• Zoho Campaigns is used as a marketing database for our existing customers.
• We use Zoho Campaigns to let our customers know about updates to our products and any relevant business news and articles.
• A recipient of any email generated through this system can unsubscribe from further emails, by clicking the unsubscribe link at the bottom of any of these emails.
• View Zoho’s privacy policy here: https://www.zoho.com/privacy

Our staff, partners, and subcontractors are bound by policies and agreements to protect personal data as outlined in this policy, and are not permitted to make independent use of any personal information.

• Our products are built primarily for usage by school communities. This means that children may use our products.
• Our products do not require children to disclose personal details (such as name, address, phone number, email address, social media details etc).
• If schools/organisations subscribed to our products ask children to enter personal details, this is outside of our products’ minimum requirements. The school/organisation are responsible for the protection of this information outside of our products, prevention of misuse, and vetting of individuals who access this information.
• We actively promote that parents and carers monitor their child’s/dependent’s usage of our products, and the education of the child/dependent to not supply unnecessary information online.
• Where a parent/carer is not comfortable with personal information being requested of the child/dependent, they should contact the school/organisation to discuss the concern.

• This privacy policy may be updated from time to time. Check this page to see the latest information.
• We will advise school administrators when there are significant changes to this policy.
• If you do not accept any changes made to this privacy policy, please discontinue the use of our products.
• Users should direct any questions or complaints about their data within their school’s/organisation’s instance of our product/s to that same school/organisation – this is because they are the owners and administrators of the data. The school/organisation may contact us to facilitate the response to your question or complaint, or we will respond directly to you where appropriate.
• Users should direct any questions or complaints about their data on our public websites to us directly, at [email protected]
• If you have submitted a complaint through the school/organisation or us and wish to take the matter further, you can do so by following the link on this page: https://www.oaic.gov.au/privacy/privacy-complaints/