Data Processing & Compliance

When your school or institution uses TeachersFlow, you are the Data Controller and TeachersFlow is the Data Processor. A Data Processing Agreement (DPA) governs this relationship.

The full DPA is available at teachersflow.com/dpa. You accept it during org admin signup.

Regulatory Coverage

The DPA addresses compliance with:

• GDPR — EU General Data Protection Regulation
• FERPA — US Family Educational Rights and Privacy Act
• COPPA — US Children's Online Privacy Protection Act

Your Responsibilities as Data Controller

• Ensure there is a legal basis for processing student data
• Obtain necessary consents from students and parents where required
• Keep your teacher access list accurate — remove teachers who leave your institution
• Act as the primary contact for any data protection matters involving your organization

TeachersFlow's Obligations as Data Processor

• Process data only according to your documented instructions
• Implement technical and organizational security measures
• Maintain data confidentiality
• Assist with data subject access requests
• Notify you promptly of any data breaches
• Delete all data upon termination of the service

Questions

For data protection or compliance questions, contact info@teachersflow.com.