Data Protection & GDPR Compliance

We are committed to protecting your personal data and complying with the General Data Protection Regulation (GDPR).

Data We Collect

Personal Information
  • Account Data: Username, email address, first name, last name
  • Educational Data: School affiliation, department assignments, role within the institution
  • Teaching Data: Lesson plans, session notes, homework assignments, class progress
  • System Data: Login timestamps, IP addresses (for security purposes), consent preferences
How We Use Your Data
  • Educational Services: To provide lesson tracking, resource management, and educational analytics
  • Account Management: To manage your user account and provide customer support
  • Security: To protect against unauthorized access and maintain system security
  • Communication: To send important system notifications and updates (only with consent)

Your Rights Under GDPR

Right to Access

You can request a copy of all personal data we hold about you.

Right to Rectification

You can correct inaccurate or incomplete personal data.

Right to Erasure

You can request deletion of your personal data in certain circumstances.

Right to Restrict Processing

You can limit how we process your data in certain situations.

Right to Data Portability

You can receive your data in a structured, machine-readable format.

Right to Object

You can object to processing based on legitimate interests.

Data Protection Measures

Technical Safeguards
  • Encryption: All data is encrypted in transit using HTTPS/TLS
  • Access Controls: Role-based access with secure authentication
  • Database Security: Encrypted storage with regular security updates
  • Audit Trails: Comprehensive logging of system access and changes
Organizational Measures
  • Data Minimization: We only collect data necessary for educational services
  • Purpose Limitation: Data is only used for specified educational purposes
  • Retention Policies: Data is retained only as long as necessary
  • Staff Training: Regular data protection training for all personnel

Data Retention

  • Active User Data: Retained while your account is active and for 1 year after last login
  • Educational Records: Retained for 7 years as required by educational regulations
  • System Logs: Retained for 90 days for security and troubleshooting purposes
  • Marketing Data: Retained until consent is withdrawn

Note: You can request earlier deletion of your data at any time, subject to legal requirements.

Manage Your Data
Contact Data Protection Officer

For any data protection concerns:

dpo@teacherplanner.com
+44 (0) 123 456 7890

Compliance Status
GDPR Compliant
ISO 27001 Certified
Data Encrypted
Regular Audits

Last Updated: September 2025
Data Controller: Teacher Planner Ltd
Registration: ICO Registration Z1234567