This Privacy Policy describes how Greenvale (“we,” “us,” or “our”) collects, uses, discloses, and safeguards information in connection with the Greenvale Student Management System (the “Service”). The Service is designed for use by educational institutions and their authorized users.
We process personal data in accordance with applicable data protection laws, including (where applicable) the Family Educational Rights and Privacy Act (FERPA) and other relevant regulations.
We collect and process personal data provided by educational institutions, including but not limited to:
Student information (name, date of birth, student ID, enrollment data)
Academic records (grades, attendance, schedules)
Parent/guardian contact information
Staff and faculty information
When users access the Service, we may automatically collect:
IP address and approximate location
Browser type and device information
Log data (access times, pages viewed, actions taken)
We collect information necessary to create and manage user accounts, including:
Username and email address
Encrypted passwords
Account activity related to authentication (e.g., login timestamps)
We use collected information strictly for operational and service-related purposes, including:
Providing and maintaining the Service
Authenticating users and securing accounts
Managing student records and institutional data
Improving system performance and reliability
Responding to support requests
We do NOT use student data for advertising or marketing purposes.
Educational institutions retain ownership and control of all student and institutional data processed through the Service.
We act as a data processor on behalf of the institution, which is the data controller. We process data only in accordance with the institution’s instructions.
We do not sell or rent personal data. We may disclose information only in the following circumstances:
To authorized personnel within the institution
To service providers who support system operations (e.g., hosting, email delivery), under strict confidentiality agreements
When required by law or legal process
To protect the security, integrity, or rights of users or the Service
We implement industry-standard technical and organizational safeguards, including:
Encryption in transit (TLS) and at rest where applicable
Access controls and role-based permissions
Audit logging and monitoring
Secure authentication mechanisms
Despite these measures, no system can be guaranteed 100% secure.
We retain personal data only as long as necessary to provide the Service and fulfill contractual obligations with the institution, unless a longer retention period is required by law.
Upon termination of service, data will be deleted or returned in accordance with contractual agreements.
Depending on applicable law, users may have rights to:
Access their personal data
Request correction of inaccurate data
Request deletion (subject to institutional policies and legal requirements)
Requests should be directed to the relevant educational institution, which controls the data.
The Service is intended for use by educational institutions and may include data related to minors. We process such data solely on behalf of institutions and in compliance with applicable laws such as FERPA.
The Service may rely on third-party providers (e.g., cloud hosting, email services). These providers are contractually obligated to:
Process data only on our instructions
Maintain appropriate security measures
Comply with applicable data protection laws
We may update this Privacy Policy periodically. Material changes will be communicated through the Service or via institutional contacts.
For questions about this Privacy Policy, contact:
Greenvale Software, LLC
34 S 33rd St. Newark, OH 43055
privacy@greenvale-app.com
We are committed to supporting institutional compliance with:
FERPA (U.S.)
Applicable state-level student data privacy laws
Other relevant data protection regulations as applicable