Privacy Policy

Effective date: January 1, 2026. This template policy is written for Philippine compliance-oriented SaaS applications.

Privacy Commitments

Schoolbook ("we", "our", "us") is committed to protecting personal data in accordance with the Data Privacy Act of 2012 of the Philippines.

1. Scope

This Privacy Policy applies to all users of Schoolbook systems, including but not limited to:

  • Healthcare providers and clinics.
  • Educational institutions.
  • Courts and legal offices.
  • Businesses such as pharmacies, restaurants, and service providers.

2. Information We Collect

2.1 Account Information

  • Name.
  • Email address.
  • Contact number.
  • Business or organization details.

2.2 System Data

Data entered by users into the system may include:

  • Patient records.
  • Student records.
  • Customer or transaction records.
  • Case or legal records.

2.3 Technical Data

  • IP address.
  • Login activity.
  • Device and browser information.

3. Purpose of Data Processing

We process data to:

  • Provide and maintain our services.
  • Enable system functionality such as records, scheduling, and billing.
  • Improve system performance and security.
  • Communicate service-related updates.

4. Role of Schoolbook

Schoolbook acts as a Data Processor.

The user, such as a clinic, school, or business, is the Data Controller and is responsible for:

  • Obtaining consent from their clients, patients, students, or customers.
  • Ensuring lawful processing of personal data.

5. Data Sharing

We do not sell or rent personal data.

Data may be shared only when:

  • Required by law or legal process.
  • Necessary for system operations such as hosting providers.

6. Data Protection Measures

We implement reasonable safeguards, including:

  • Secure login and authentication systems.
  • Encrypted data transmission through HTTPS.
  • Access controls.

No system is completely secure, so users also share responsibility in protecting their accounts.

7. Data Retention

Data is retained for as long as the account remains active or as otherwise required by law.

Upon account termination:

  • Data may be deleted after a grace period, typically 30 to 90 days.

8. Data Ownership and User Rights

Users retain ownership of their data.

Users have the right to:

  • Access their data.
  • Request correction of inaccurate data.
  • Download their data in available formats such as CSV or Excel.
  • Request deletion of their data.

9. Data Breach Notification

In the event of a data breach, we will take reasonable steps to mitigate the issue and notify affected users within a reasonable timeframe.

10. Third-Party Services

We may use third-party services, such as hosting providers, to operate the system. These providers are expected to implement appropriate security measures.

11. Changes to this Policy

We may update this Privacy Policy from time to time.

Users will be notified of significant changes via email or system notifications.

12. Contact Information

For questions or concerns regarding this Privacy Policy, please contact Schoolbook at [email protected].

Terms & Conditions Privacy Policy IT-Central Home