Are you GDPR compliant?

Because user privacy is critically important at E-spaces, we do like to confirm a few important points in this article that your school’s data protection officer might specifically ask for:

• Data is stored securely within the European Union using 256bit AES encryption (more specifically in Dublin).

• Personal information is not sold to any third parties.

• We allow students to use E-spaces anonymously without sharing any personal data if they wish.

• Students can manage their personal data at any time using the settings page in their account.

• Personal data is used only for the specified purposes of running E-spaces. Student email, first name, last name, year group and school are collected from students.

• E-spaces uses some de-identified information for internal research and to know how our uses interact and use the platform.

• We act as a ‘data controller’ – on behalf of students. We only act on students’ behalf; all data belongs to the student.

• Teachers can request access to a student’s learning data from the student by inviting them to classes. 

• A student can manage which teachers have access to their learning data. They can do this at any time in settings page for each of the classes they choose to join.

• If a user does not login to their account for 6 years their account will be deleted and all personal data will be removed from our systems. 

• A user can delete their account at any time by getting in contact via our web chat in the corner of this page. After receiving an account deletion request a users account and all personal data associated with it will be deleted within 30 days.

• We are accredited by the UK Government-backed Cyber Essentials Accreditation

   
   

  We are registered with the Information Commisioner’s Office, you can find details of this registration here.