What student information do we collect?
We require all users to provide their name, email address, and a password in order to use ThingLink. You may choose to provide us with additional information. For example, if you use your account on a third-party service, such as Facebook, Twitter, or Google+ to authenticate to your ThingLink account, we may receive information about you from that third-party service, such as your registration or profile information on that service and other information that you authorize. We may receive information about you when content, such as images or videos, are uploaded to ThingLink that contain such information. If you email us, we may keep your message, email address and contact information to respond to your request.
What happens to that information if we cease to use ThingLink?
When an educational institution ceases to use ThingLink, the data ThingLink received from and on behalf of that educational institution will be destroyed or deleted. However, information that is collected from each individual student, with his or her consent or the consent of his or her parent or guardian, will remain on the system until the student’s account is deleted.
How is that information stored?
We store and process your personal data (if any) on computers located in Ireland that are protected by physical as well as technological security devices. By using the ThingLink service, you give ThingLink your consent to store, process and transfer your personal information (if any) outside of your country of residence to Ireland.
Will that information ever be used in marketing or given to a third party?
ThingLink will only use the information it receives for marketing upon first notifying and/or obtaining permission to do so from the student or their parent or guardian, if applicable. We may also use the data we receive about you to contact you if required for the provision of the service.
Additionally, ThingLink uses third party service providers in order to provide, support, and improve our service (“Third-party Providers”). When we disclose your information to our Third-party Providers, we do so under the same conditions upon which you share your data with us and limit their use of your data to the sole purpose of assisting us with providing the ThingLink service. Apart from our Third-party. Providers, ThingLink does not disclose your Personal Data to third parties unless,
- you have provided us with your express opt-in consent for doing so;
- the disclosure is reasonably necessary for us to be able to enforce our Terms of Service;
- the disclosure is reasonably necessary for the purposes of detecting and preventing fraud or security breaches, or applicable law requires us to disclose it.
We may share aggregate and anonymized User Data (provided that it does not contain any Personal Data) to select third parties.
Are we COPPA/FERPA compliant?
Yes. ThingLink complies with the Children’s Online Privacy Protection Act (COPPA) and the Federal Educational Rights and Privacy Act (FERPA).
Do I need to get permission from the parents of my students?
We are required under the Children’s Online Privacy Protection Act (COPPA), with limited exceptions, to obtain verifiable parental consent in order to collect, use or disclose personal information from children under the age of 13. COPPA allows the child’s school, school districts and other educational institutions to obtain consent for the online collection of personal information from children who are students of the school, district, or institution.