TruancyTracker

Privacy Policy

Effective date: to be set at publication.

Draft. This policy is a working draft and must be reviewed by counsel before publication. It describes our intended practices for handling student data.

1. Who we are

TruancyTracker ("we", "us") provides a K-12 attendance-intervention service to schools and districts ("Schools"). This policy explains how we handle personal information in providing that service.

2. Our role

For student data, the School is the data controller and we are its service provider and "school official" under FERPA (34 CFR § 99.31(a)(1)). We process student data only under the School's direction to provide the service. We do not sell student data, use it for advertising or targeted marketing, or use it for any purpose other than providing and improving the service, consistent with FERPA and state laws such as California's SOPIPA.

3. Information we process

4. How we use it

Solely to provide the service: syncing attendance from the School's system, identifying students who meet the School's intervention thresholds, sending notices to families on the School's behalf, generating reports, and maintaining security and accountability.

5. How we share it

We do not sell personal information and we do not share it for advertising.

6. Retention & deletion

We retain data for as long as needed to provide the service to the School. On the School's request or at the end of the contract, we return the data (export) and permanently delete it.

7. Security

We protect data with encryption in transit and at rest for sensitive credentials, tenant isolation, least-privilege access, and audit logging. See our Security & Trust page.

8. Rights of parents and students

Rights to access or correct education records are exercised through the School, which controls the records. We support the School in fulfilling such requests.

9. Changes

We will update this policy as needed and post the revised effective date here.

10. Contact

[email protected]